Direct Links | Infosec News Feeds
The San Francisco Beat
SFInfoSec aggregates the latest news, podcasts and books covering Cyber Security, Hacking, Infosec, Online Privacy, Cryptography, Threat Research and Vulnerability Disclosures from all the leading sources.
Threatpost The First Stop For Security News
- Student Loan Breach Exposes 2.5M Records
by Nate Nelson on August 31, 2022 at 12:57 pm2.5 million people were affected, in a breach that could spell more trouble […]
- Watering Hole Attacks Push ScanBox Keylogger
by Nate Nelson on August 30, 2022 at 4:00 pmResearchers uncover a watering hole attack likely carried out by APT TA423, […]
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
by Nate Nelson on August 29, 2022 at 2:56 pmOver 130 companies tangled in sprawling phishing campaign that spoofed a […]
Krebs on Security In-depth security news and investigation
- Scattered Spider Hackers Plead Guilty on Day 1 of Trial
by BrianKrebs on June 23, 2026 at 4:12 pmTwo men pleaded guilty in the United Kingdom this week to criminal charges […]
- ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
by BrianKrebs on June 18, 2026 at 5:37 pmFor the past four years, a sprawling Android-based botnet called Popa has […]
- Who Runs the Ransomware Group ‘The Gentlemen?’
by BrianKrebs on June 10, 2026 at 2:03 pmA cybercrime group known as The Gentlemen has emerged as the second most active […]
darkreading Public RSS feed
- Meeting Trump’s 2030 Quantum Deadline…
by Alexander Culafi on June 26, 2026 at 1:30 pmGetting accurate visibility into IT and OT systems will be compounded by […]
- Thanks for Crushing the Submissions…
by Becky Bracken on June 26, 2026 at 1:00 pmIt might be taking a bit longer than usual to respond to your submissions — […]
- Robinhood Cuts Access Approval Time to…
on June 25, 2026 at 10:42 pmThe fintech company’s engineering-first application security team re-engineered […]
Blog RSS Feed Fortra Blog
- 3 Years In: How Is AI Doing? SANS Weighs In
by Katrina Thompson on December 15, 2025 at 8:09 amIt’s no secret that AI is “here.” It’s been here for three years now, […]
- What Is Log Management and Why you Need itby Anirudh Chand on November 24, 2025 at 6:00 am
It is arguable that log management forms the basis of modern cybersecurity. […]
- What Did We Learn from the NCSC’s 2025 Annual Review?by Josh Breaker-Rolfe on November 21, 2025 at 11:47 am
Earlier this year, the UK’s National Cyber Security Centre (NCSC) released […]
Security Latest Channel Description
- British Police Built a Sprawling Crime-Prediction Machine. Some Results…
by Matt Burgess, Mark Wilding on June 25, 2026 at 10:00 amAs UK police embrace the AI revolution, a WIRED investigation reveals the messy […]
- Dialog Claims It Was Hacked. A Misconfigured Website Left Its Members Exposed
by Dell Cameron, Dhruv Mehrotra on June 23, 2026 at 7:18 pmThe private events group, cofounded by Peter Thiel, says a “criminal” […]
- OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on…
by Lily Hay Newman on June 22, 2026 at 5:00 pmAmid concerns about AI models’ cybersecurity capabilities, OpenAI revealed an […]
- One Million Passports Leaked Onlineby Bruce Schneier on June 26, 2026 at 11:03 am
A database of almost a million passports from around the world was leaked […]
- AI and Liabilityby Bruce Schneier on June 25, 2026 at 5:03 pm
Earlier this month, a German court ruled that Google is liable for its AI […]
- Interesting Paper Exploring Prompt Injectionby Bruce Schneier on June 25, 2026 at 11:23 am
This is a fascinating explotation of how LLMs fall for prompt injection […]
GRAHAM CLULEY Cybersecurity keynote speaker
- Smashing Security podcast #473: How a hacker could have Rickrolled the entire…by Graham Cluley on June 24, 2026 at 11:10 pm
A polite caller from your bank says there is a problem with your account. Don’t […]
- Hacker hijacks Brazil’s national alert system, sending “misanthropy” to…by Graham Cluley on June 23, 2026 at 12:16 pm
Emergency alert systems work because people believe them. Every time one of […]
- Apple’s Hide My Email tweak leaves privacy fans fumingby Graham Cluley on June 19, 2026 at 3:47 pm
Apple has long marketed itself as the privacy-first tech giant. So why is it […]
Cyber Defense Magazine InfoSec Knowledge is Power
- Openclaw And The Agentic AI Inflection Point: From “Cool Demo” To Governed…
by News team on June 26, 2026 at 3:00 pmOpenClaw’s rapid adoption, and the ecosystem forming around it, signal a […]
- Reasonable Reliance: The Test Duty-Holders Are Quietly Being Held To
by News team on June 26, 2026 at 1:00 pmAfter a serious incident, investigations usually begin with documentation, but […]
- The Moment Of Reliance: The Question Safety Governance Cannot Currently Answer
by News team on June 25, 2026 at 3:00 pmAfter a serious incident, the first question asked is rarely technical. It is […]
BleepingComputer BleepingComputer – All Stories
- Your First GRC Agent: A Red Teamer’s Walkthroughby Sponsored by Anecdotes on June 26, 2026 at 2:01 pm
AI won’t replace GRC analysts, but it can eliminate much of the repetitive […]
- Anthropic is testing desktop-like Claude Cowork for mobileby Mayank Parmar on June 25, 2026 at 10:53 pm
Anthropic appears to be testing Claude Cowork support on mobile, allowing you […]
- Poland busts SIM-swapping gang tied to millions in crypto theftby Bill Toulas on June 25, 2026 at 10:37 pm
Authorities in Poland have arrested four members of an organized cybercrime […]
TechCrunch Startup and Technology News
- Early Bird pricing ends tonight for TechCrunch Founder Summitby TechCrunch Events on June 26, 2026 at 1:00 pm
Save up to $190 on your pass to TechCrunch Founder Summit 2026. Early Bird […]
- Robotaxis drive miles just to get cleaned and charged; this new startup wants…by Kirsten Korosec on June 26, 2026 at 1:00 pm
Aseon Labs, which came out of Y Combinator’s 2026 spring cohort, has raised $10 […]
- The White House is asking OpenAI to slow roll the release of its new model over…by Lucas Ropek on June 25, 2026 at 11:34 pm
OpenAI reportedly plans to share its newest model, GPT 5.6, with a select group […]
The Hacker News Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to [email protected]
- New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries
by [email protected] (The Hacker News) on June 26, 2026 at 1:57 pmA flaw in the Linux kernel’s traffic-control subsystem can let a local […]
- Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
by [email protected] (The Hacker News) on June 26, 2026 at 1:53 pmA high-severity flaw in Amazon Q Developer let a malicious repository run […]
- CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue
by [email protected] (The Hacker News) on June 26, 2026 at 12:31 pmThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday […]
The DFIR Report Actionable Cyber Threat Intelligence
- Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomwareby editor on May 11, 2026 at 2:05 pm
The EtherRAT malware family was first reported by Sysdig back in December 2025. At that time, the initial access vector was exploitation of CVE-2025-55182 (React2Shell) targeting Linux servers. In March 2026, a Windows variant campaign was reported by Atos, with their investigation showing evidence of activity going back to the previous December. In April, we The post Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomware appeared first on The DFIR Report.
- Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvestingby editor on April 22, 2026 at 2:51 pm
Key Takeaways We identified an exposed server that provided unusual visibility into a large-scale, multi-victim exploitation and collection operation. Artifacts on the host showed that Claude Code and OpenClaw were embedded in the operator’s day-to-day workflow, supporting troubleshooting, orchestration, and refinement of the collection pipeline. This AI-assisted workflow resulted in the modular platform Bissa scanner The post Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvesting appeared first on The DFIR Report.
- Apache ActiveMQ Exploit Leads to LockBit Ransomwareby editor on February 23, 2026 at 2:09 pm
Key Takeaways An audio version of this report can be found on Spotify, Apple, YouTube, Audible, & Amazon. This intrusion began in mid-February 2024 after a threat actor exploited a vulnerability (CVE-2023-46604) on an exposed Apache ActiveMQ server. The threat actor was able to perform remote code execution (RCE) by using a Java Spring class and a custom Java Spring The post Apache ActiveMQ Exploit Leads to LockBit Ransomware appeared first on The DFIR Report.
Biz & IT – Ars Technica Serving the Technologist since 1998. News, reviews, and analysis.
- Notion killing Skiff-influenced email app since most users use AI agents instead
by Scharon Harding on June 25, 2026 at 7:04 pmNotion is “going all in on using agents to run your inbox.”
- One-two punch delivered in global operation disrupts cybercrime “assembly line”
by Dan Goodin on June 24, 2026 at 9:03 pm“Operation Endgame” simultaneously disrupts two widely used crime tools.
- White House drastically shortens deadline for dropping quantum-vulnerable crypto
by Dan Goodin on June 23, 2026 at 10:30 pmOrder warns of national security risks if post-quantum cryptography isn’t […]
Websec Cybersecurity Blog Expert insights, trends, research findings, and best practices from Websec security team to help you strengthen your organization’s security posture.
- A Comparison Between the Real User ID and the Effective User ID is not Enough to Prevent Privilege Escalationby Websec Security Team on October 3, 2023 at 7:39 pm
In Unix-like systems, processes have a real and effective user ID determining their access permissions. While usually identical, they can differ in situations like when the setuid bit is activated in executables.
- Websec DevSecOps Webinarby Websec Security Team on August 29, 2022 at 12:00 am
Roberto Salgado and Kobalt.io’s Miki Fukushima are hosting a free webinar on September 20, 2022 covering why application security matters, the shift to developer-first security, and a practical roadmap for embedding security into DevSecOps.
- CVE-2022-21404: Another story of developers fixing vulnerabilities unknowingly because of CodeQLby Websec Security Team on May 19, 2022 at 6:18 pm
How CodeQL may help reduce false negatives within Open-Source projects. Taking a look into a deserialization vulnerability within Oracle Helidon (CVE-2022-21404).