Direct Links | Infosec News Feeds
The San Francisco Beat
SFInfoSec aggregates the latest news, podcasts and books covering Cyber Security, Hacking, Infosec, Online Privacy, Cryptography, Threat Research and Vulnerability Disclosures from all the leading sources.
Threatpost The First Stop For Security News
- Student Loan Breach Exposes 2.5M Records
by Nate Nelson on August 31, 2022 at 12:57 pm2.5 million people were affected, in a breach that could spell more trouble […]
- Watering Hole Attacks Push ScanBox Keylogger
by Nate Nelson on August 30, 2022 at 4:00 pmResearchers uncover a watering hole attack likely carried out by APT TA423, […]
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
by Nate Nelson on August 29, 2022 at 2:56 pmOver 130 companies tangled in sprawling phishing campaign that spoofed a […]
Krebs on Security In-depth security news and investigation
- ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
by BrianKrebs on June 18, 2026 at 5:37 pmFor the past four years, a sprawling Android-based botnet called Popa has […]
- Who Runs the Ransomware Group ‘The Gentlemen?’
by BrianKrebs on June 10, 2026 at 2:03 pmA cybercrime group known as The Gentlemen has emerged as the second most active […]
- A Record-Breaking Patch Tuesday for June 2026
by BrianKrebs on June 9, 2026 at 10:07 pmMicrosoft today released software updates to plug nearly 200 security holes […]
darkreading Public RSS feed
- Novo Nordisk Breach Exposes Software…
by Jai Vijayan on June 18, 2026 at 8:05 pmA leaked GitHub token underscores what most organizations get wrong: Treating […]
- Operation Escaneo Signals Shift in…
by Alexander Culafi on June 18, 2026 at 7:09 pmThe threat group’s curious business model may combine opportunistic […]
- FIFA Bug Exposes World Cup Streams to…
by Nate Nelson on June 18, 2026 at 6:20 pmA hacker could have “Rickrolled” the World Cup — or worse — thanks to […]
Blog RSS Feed Fortra Blog
- 3 Years In: How Is AI Doing? SANS Weighs Inby Katrina Thompson on December 15, 2025 at 8:09 am
It’s no secret that AI is “here.” It’s been here for three years now, […]
- What Is Log Management and Why you Need itby Anirudh Chand on November 24, 2025 at 6:00 am
It is arguable that log management forms the basis of modern cybersecurity. […]
- What Did We Learn from the NCSC’s 2025 Annual Review?by Josh Breaker-Rolfe on November 21, 2025 at 11:47 am
Earlier this year, the UK’s National Cyber Security Centre (NCSC) released […]
Security Latest Channel Description
- How the Peter Thiel-Linked Dialog Club Secretly Ranks Its Members
by Dell Cameron, Dhruv Mehrotra, Yulia Almazova on June 18, 2026 at 10:12 pmLeaked files show the invite-only network grades members by their money and […]
- How to Watch the Knicks Parade on NYC Traffic Surveillance Cameras
by Maddy Varner on June 18, 2026 at 11:00 amArtist Morry Kolman will be livestreaming feeds of the NBA champions’ […]
- The UK Will Scan Asylum-Seekers’ Faces for Age Checks—Despite Knowing the…
by Matt Burgess, Maddy Varner, May Bulman, Gabriel Geiger on June 18, 2026 at 6:00 amInternal Home Office tests of age-verification technology show the risks of […]
- Embedding Forbidden Text in Spyware to Discourage AI Analysisby Bruce Schneier on June 18, 2026 at 11:04 am
At least one malware developer is adding text about nuclear and biological […]
- AI Use by the US Governmentby Bruce Schneier on June 17, 2026 at 11:04 am
On 14 April, the Trump administration quietly acknowledged the widespread use […]
- Flock Cameras Are Being Used for Stalkingby Bruce Schneier on June 16, 2026 at 11:03 am
There are over a dozen cases around the country where police officers are using […]
Cyber Defense Magazine InfoSec Knowledge is Power
- Cyber Security Market Insights & Trends Driving The Next Wave Of Protection
by News team on June 17, 2026 at 1:00 pmPreviously, cyber security was largely thought of as a backend function, […]
- AI is Not Solving Cybersecurity Burnout Yet, New ISSA and Omdia Research Warns
by Stevin on June 16, 2026 at 8:06 pmWhy Cybersecurity Professionals Are Considering the Exit Door in the Age of […]
- Crypto’s Biggest Unresolved Risk Is Not Theft Of Assets, It’s The Collapse…
by News team on June 16, 2026 at 1:00 pmDeepfake and synthetic identity attacks on major financial institutions are […]
BleepingComputer BleepingComputer – All Stories
- CISA warns Fortinet users to secure devices after FortiBleed leakby Sergiu Gatlan on June 19, 2026 at 6:47 am
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged […]
- Gentlemen ransomware uses multiple EDR killers to disable defensesby Bill Toulas on June 18, 2026 at 10:31 pm
The Gentlemen ransomware-as-a-service (RaaS) is actively developing and […]
- Nintendo confirms data stolen in WebMD subsidiary cyberattackby Bill Toulas on June 18, 2026 at 6:31 pm
Nintendo of America has confirmed to BleepingComputer that threat actors stole […]
TechCrunch Startup and Technology News
- Telegram ban in India sparks a rush to VPNs, rival appsby Jagmeet Singh on June 19, 2026 at 1:01 am
Telegram argues India should block specific content, not an entire platform […]
- Source: Elastic agrees to buy CRV-backed DeductiveAI for up to $85Mby Marina Temkin on June 19, 2026 at 12:51 am
DeductiveAI, a startup that uses AI to catch and resolve bugs in software, was […]
- AI inference startup Baseten reportedly raising $1.5B months after its last…by Dominic-Madori Davis on June 18, 2026 at 9:20 pm
Startup Baseten is reportedly close to finalizing a $1.5 billion round at a $13 […]
The Hacker News Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to [email protected]
- F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution
by [email protected] (The Hacker News) on June 18, 2026 at 5:32 pmF5 has released security updates to address two critical security flaws in […]
- Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network
by [email protected] (The Hacker News) on June 18, 2026 at 3:33 pmIf an autonomous AI agent interacts with your company’s core intellectual […]
- ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code…
by [email protected] (The Hacker News) on June 18, 2026 at 3:27 pmThe internet did not break this week. It got used exactly as designed, which is […]
The DFIR Report Actionable Cyber Threat Intelligence
- Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomwareby editor on May 11, 2026 at 2:05 pm
The EtherRAT malware family was first reported by Sysdig back in December 2025. At that time, the initial access vector was exploitation of CVE-2025-55182 (React2Shell) targeting Linux servers. In March 2026, a Windows variant campaign was reported by Atos, with their investigation showing evidence of activity going back to the previous December. In April, we The post Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomware appeared first on The DFIR Report.
- Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvestingby editor on April 22, 2026 at 2:51 pm
Key Takeaways We identified an exposed server that provided unusual visibility into a large-scale, multi-victim exploitation and collection operation. Artifacts on the host showed that Claude Code and OpenClaw were embedded in the operator’s day-to-day workflow, supporting troubleshooting, orchestration, and refinement of the collection pipeline. This AI-assisted workflow resulted in the modular platform Bissa scanner The post Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvesting appeared first on The DFIR Report.
- Apache ActiveMQ Exploit Leads to LockBit Ransomwareby editor on February 23, 2026 at 2:09 pm
Key Takeaways An audio version of this report can be found on Spotify, Apple, YouTube, Audible, & Amazon. This intrusion began in mid-February 2024 after a threat actor exploited a vulnerability (CVE-2023-46604) on an exposed Apache ActiveMQ server. The threat actor was able to perform remote code execution (RCE) by using a Java Spring class and a custom Java Spring The post Apache ActiveMQ Exploit Leads to LockBit Ransomware appeared first on The DFIR Report.
Biz & IT – Ars Technica Serving the Technologist since 1998. News, reviews, and analysis.
- Microsoft discovers new lightweight backdoor that steals cryptocurrency
by Dan Goodin on June 18, 2026 at 11:28 pmCrypto Clipper spreads over USB and communicates over Tor.
- Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds
by Dan Goodin on June 18, 2026 at 7:41 pmThe vulnerability, disclosed 12 months ago, affects multiple manufacturers.
- Before SpaceX IPO, investors in China secretly acquired stakes
by stin Elliott and Joshua Kaplan, ProPublica on June 18, 2026 at 5:42 pmOne previously unreported SpaceX investor has ties to Chinese military […]
Websec Cybersecurity Blog Expert insights, trends, research findings, and best practices from Websec security team to help you strengthen your organization’s security posture.
- A Comparison Between the Real User ID and the Effective User ID is not Enough to Prevent Privilege Escalationby Websec Security Team on October 3, 2023 at 7:39 pm
In Unix-like systems, processes have a real and effective user ID determining their access permissions. While usually identical, they can differ in situations like when the setuid bit is activated in executables.
- Websec DevSecOps Webinarby Websec Security Team on August 29, 2022 at 12:00 am
Roberto Salgado and Kobalt.io’s Miki Fukushima are hosting a free webinar on September 20, 2022 covering why application security matters, the shift to developer-first security, and a practical roadmap for embedding security into DevSecOps.
- CVE-2022-21404: Another story of developers fixing vulnerabilities unknowingly because of CodeQLby Websec Security Team on May 19, 2022 at 6:18 pm
How CodeQL may help reduce false negatives within Open-Source projects. Taking a look into a deserialization vulnerability within Oracle Helidon (CVE-2022-21404).