
Direct Links | Infosec News Feeds
The San Francisco Beat
SFInfoSec aggregates the latest news, podcasts and books covering Cyber Security, Hacking, Infosec, Online Privacy, Cryptography, Threat Research and Vulnerability Disclosures from all the leading sources.
Threatpost The First Stop For Security News
- Student Loan Breach Exposes 2.5M Recordsby Nate Nelson on August 31, 2022 at 12:57 pm
2.5 million people were affected, in a breach that could spell more trouble […]
- Watering Hole Attacks Push ScanBox Keyloggerby Nate Nelson on August 30, 2022 at 4:00 pm
Researchers uncover a watering hole attack likely carried out by APT TA423, […]
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firmsby Nate Nelson on August 29, 2022 at 2:56 pm
Over 130 companies tangled in sprawling phishing campaign that spoofed a […]
Krebs on Security In-depth security news and investigation
- Microsoft Patches a Record 570 Security Flawsby BrianKrebs on July 14, 2026 at 7:22 pm
Microsoft Corp. today released software updates to plug at least 570 security […]
- Lessons Learned from CISA’s Recent GitHub Leakby BrianKrebs on July 13, 2026 at 3:03 pm
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a […]
- Felons, Fraudsters Flog Offensive Cybersecurity Startupby BrianKrebs on July 8, 2026 at 12:31 pm
A cybersecurity startup dangling millions of dollars to acquire zero-day […]
darkreading Public RSS feed
- Inc Ransomware Exploits SonicWall SMA…by Nate Nelson on July 17, 2026 at 8:01 pm
When chained together, the two vulnerabilities allow threat actors to gain […]
- The Real AI Threat Is Blind Trustby R. Justin Martin on July 17, 2026 at 4:43 pm
AI models left to both interpret and execute commands eliminate critical […]
- Gold Eagle Clearinghouse Targets…by Alexander Culafi on July 17, 2026 at 1:00 pm
The White House launched Gold Eagle to coordinate vulnerability response in a […]
Blog RSS Feed Fortra Blog
- 3 Years In: How Is AI Doing? SANS Weighs Inby Katrina Thompson on December 15, 2025 at 8:09 am
It’s no secret that AI is “here.” It’s been here for three years now, […]
- What Is Log Management and Why you Need itby Anirudh Chand on November 24, 2025 at 6:00 am
It is arguable that log management forms the basis of modern cybersecurity. […]
- What Did We Learn from the NCSC’s 2025 Annual Review?by Josh Breaker-Rolfe on November 21, 2025 at 11:47 am
Earlier this year, the UK’s National Cyber Security Centre (NCSC) released […]
Security Latest Channel Description
- Your Period Tracker Is (Probably) Spying on Youby Andy Greenberg, Dell Cameron, Lily Hay Newman on July 18, 2026 at 10:30 am
Plus: Russian cyberspies turn to infrastructure hacking, DHS repeatedly fails […]
- Prompt Injection Attacks Are Thwarting AI Hacking Agentsby Dan Goodin, Ars Technica on July 18, 2026 at 9:00 am
“Context bombing” tricks malicious AI agents into shutting down before they […]
- San Francisco Demands Apple and Google Delete AI ‘Nudify’ Apps From App…by Matt Burgess on July 17, 2026 at 10:00 am
The City Attorney’s Office sent the tech giants cease-and-desist letters this […]
- Friday Squid Blogging: Squid Washing Up on Cape Cod Beachby Bruce Schneier on July 17, 2026 at 9:01 pm
Lots of articles about this. As usual, you can also use this squid post to talk […]
- Details of Alan Turing’s Voice Encryption Systemby Bruce Schneier on July 17, 2026 at 11:02 am
Really interesting piece of cryptographic history: In November 2023, a large […]
- Protecting Privacy in an AI Eraby Bruce Schneier on July 16, 2026 at 2:34 pm
Daniel Solove argues in the Wall Street Journal (alternate link) that giving […]
GRAHAM CLULEY Cybersecurity keynote speaker
- Google’s Gemini lets strangers send messages from your locked Android phoneby Graham Cluley on July 17, 2026 at 10:30 pm
Gemini, Google’s AI assistant, is supposed to make life easier for Android […]
- Anubis ransomware: what you need to knowby Graham Cluley on July 16, 2026 at 9:05 pm
The Anubis ransomware-as-a-service (RaaS) operation has hit some healthcare […]
- Smashing Security podcast #476: Remote-control rickshaws and rogue book…by Graham Cluley on July 16, 2026 at 9:02 am
An app has appeared in India that lets anyone with a smartphone stop a passing […]
BleepingComputer BleepingComputer – All Stories
- WordPress Core “wp2shell” RCE flaws get public exploits, patch nowby Lawrence Abrams on July 18, 2026 at 5:22 pm
Public exploits have been released for the critical “wp2shell” remote code […]
- Microsoft warns of surge in ACR Stealer attacks on customersby Bill Toulas on July 18, 2026 at 2:17 pm
Microsoft has observed a surge in attacks using the ACR Stealer malware to […]
- The Future of Age Verification: Your Face Never Leaves Your Deviceby Sponsored by Incode on July 18, 2026 at 1:15 pm
As age verification laws expand worldwide, organizations face growing pressure […]
TechCrunch Startup and Technology News
- Kimi: Threat or menace?by Anthony Ha on July 18, 2026 at 6:51 pm
Chinese company Moonshot AI released a new version of its Kimi model this week, […]
- All the EVs that were discontinued or killed off in the U.S. this yearby Kirsten Korosec on July 18, 2026 at 4:30 pm
Th Honda Prologue will no longer be sold in the U.S., joining a growing list of […]
- Federal employees can download TikTok on their work phones againby Anthony Ha on July 18, 2026 at 3:54 pm
The Department of Justice says that federal employees can now download TikTok […]
The Hacker News Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to [email protected]
- New wp2shell WordPress Core Flaw Lets Unauthenticated Attackers Run Codeby [email protected] (The Hacker News) on July 17, 2026 at 9:20 pm
Updated July 18, 2026: the two flaws now carry CVE IDs, the full mechanism has […]
- OpenSSL HollowByte Flaw Could Freeze Server Memory with 11-Byte TLS Requestsby [email protected] (The Hacker News) on July 17, 2026 at 8:20 pm
Eleven bytes will make an unpatched OpenSSL server set aside up to 131 KB of […]
- Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RATby [email protected] (The Hacker News) on July 17, 2026 at 6:54 pm
Cybersecurity researchers have discovered a cluster of seven malicious npm […]
The DFIR Report Actionable Cyber Threat Intelligence
- From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akiraby editor on June 29, 2026 at 1:07 pm
Key Takeaways This case was first reported to customers in a threat brief released in July 2025 and in a public flash alert in August 2025 in partnership with Swisscom B2B CSIRT, which observed another intrusion tied to the same campaign. This report contains data from both intrusions. We plan to release a DFIR Labs The post From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akira appeared first on The DFIR Report.
- Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomwareby editor on May 11, 2026 at 2:05 pm
The EtherRAT malware family was first reported by Sysdig back in December 2025. At that time, the initial access vector was exploitation of CVE-2025-55182 (React2Shell) targeting Linux servers. In March 2026, a Windows variant campaign was reported by Atos, with their investigation showing evidence of activity going back to the previous December. In April, we The post Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomware appeared first on The DFIR Report.
- Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvestingby editor on April 22, 2026 at 2:51 pm
Key Takeaways We identified an exposed server that provided unusual visibility into a large-scale, multi-victim exploitation and collection operation. Artifacts on the host showed that Claude Code and OpenClaw were embedded in the operator’s day-to-day workflow, supporting troubleshooting, orchestration, and refinement of the collection pipeline. This AI-assisted workflow resulted in the modular platform Bissa scanner The post Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvesting appeared first on The DFIR Report.
Biz & IT – Ars Technica Serving the Technologist since 1998. News, reviews, and analysis.
- HP fined 1.4 billion rupees for “cartelization” of ink cartridges, toner,…by Scharon Harding on July 16, 2026 at 10:02 pm
Resellers threatened to ditch HP printing supplies for counterfeits.
- Now, even Russia’s most elite hackers are using Clickfix to infect devicesby Dan Goodin on July 16, 2026 at 7:28 pm
The social-engineering technique has primarily been a tool of financially […]
- Energy IPOs surge as investors hunt for ways to play AI boomby Martha Muir in New York on July 16, 2026 at 3:48 pm
Companies coming to market are raising money at fastest pace this century.
Websec Cybersecurity Blog Expert insights, trends, research findings, and best practices from Websec security team to help you strengthen your organization’s security posture.
- A Comparison Between the Real User ID and the Effective User ID is not Enough to Prevent Privilege Escalationby Websec Security Team on October 3, 2023 at 7:39 pm
In Unix-like systems, processes have a real and effective user ID determining their access permissions. While usually identical, they can differ in situations like when the setuid bit is activated in executables.
- Websec DevSecOps Webinarby Websec Security Team on August 29, 2022 at 12:00 am
Roberto Salgado and Kobalt.io’s Miki Fukushima are hosting a free webinar on September 20, 2022 covering why application security matters, the shift to developer-first security, and a practical roadmap for embedding security into DevSecOps.
- CVE-2022-21404: Another story of developers fixing vulnerabilities unknowingly because of CodeQLby Websec Security Team on May 19, 2022 at 6:18 pm
How CodeQL may help reduce false negatives within Open-Source projects. Taking a look into a deserialization vulnerability within Oracle Helidon (CVE-2022-21404).
















