Direct Links | Infosec News Feeds
The San Francisco Beat
SFInfoSec aggregates the latest news, podcasts and books covering Cyber Security, Hacking, Infosec, Online Privacy, Cryptography, Threat Research and Vulnerability Disclosures from all the leading sources.
Threatpost The First Stop For Security News
- Student Loan Breach Exposes 2.5M Records
by Nate Nelson on August 31, 2022 at 12:57 pm2.5 million people were affected, in a breach that could spell more trouble […]
- Watering Hole Attacks Push ScanBox Keylogger
by Nate Nelson on August 30, 2022 at 4:00 pmResearchers uncover a watering hole attack likely carried out by APT TA423, […]
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
by Nate Nelson on August 29, 2022 at 2:56 pmOver 130 companies tangled in sprawling phishing campaign that spoofed a […]
Krebs on Security In-depth security news and investigation
- Scattered Spider Hackers Plead Guilty on Day 1 of Trial
by BrianKrebs on June 23, 2026 at 4:12 pmTwo men pleaded guilty in the United Kingdom this week to criminal charges […]
- ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
by BrianKrebs on June 18, 2026 at 5:37 pmFor the past four years, a sprawling Android-based botnet called Popa has […]
- Who Runs the Ransomware Group ‘The Gentlemen?’
by BrianKrebs on June 10, 2026 at 2:03 pmA cybercrime group known as The Gentlemen has emerged as the second most active […]
darkreading Public RSS feed
- AI-Generated Workflows Are a Silent…
by Yelena Mujibur Sheikh on June 30, 2026 at 1:00 pmTeams are dealing with a truly dangerous problem — automation that works, but […]
- NIST Enrichment Reductions Impact CVE…
by Rob Wright on June 29, 2026 at 10:46 pmThe National Institute of Standards and Technology (NIST) scaled back on the […]
- ‘Djinn’ Stealer Targets Cloud, AI…
by Jai Vijayan on June 29, 2026 at 9:29 pmThe infostealer was delivered via CVE-2026-48558, a critical authentication […]
Blog RSS Feed Fortra Blog
- 3 Years In: How Is AI Doing? SANS Weighs In
by Katrina Thompson on December 15, 2025 at 8:09 amIt’s no secret that AI is “here.” It’s been here for three years now, […]
- What Is Log Management and Why you Need itby Anirudh Chand on November 24, 2025 at 6:00 am
It is arguable that log management forms the basis of modern cybersecurity. […]
- What Did We Learn from the NCSC’s 2025 Annual Review?by Josh Breaker-Rolfe on November 21, 2025 at 11:47 am
Earlier this year, the UK’s National Cyber Security Centre (NCSC) released […]
Security Latest Channel Description
- Meta Contractors Posed as Teens to Prompt Rival Chatbots About Suicide, Sex,…
by Dhruv Mehrotra, Joel Khalili on June 29, 2026 at 9:49 pmHundreds of contractors working on a project for Meta pretended to be kids in […]
- Top Google Security Staff Warn Search Data Could Be Hacked if EU Rules Change
by Matt Burgess on June 29, 2026 at 10:00 amEurope’s pro-competition proposals could see Google Search and Android […]
- Security News This Week: LastPass Users Had Their Data Stolen—Again
by Lily Hay Newman on June 27, 2026 at 10:30 amPlus: Former national security advisor John Bolton pleads guilty in […]
- The Realities of AI Video Surveillanceby Bruce Schneier on June 30, 2026 at 12:05 pm
The Financial Times has a good article on how AI is changing the capabilities […]
- Factoring RSA Keys with Many Zerosby Bruce Schneier on June 29, 2026 at 4:05 pm
Interesting research on a new class of weak RSA keys: keys with lots of zeros. […]
- Robot Police Officersby Bruce Schneier on June 29, 2026 at 10:55 am
We’ve taken one small step towards robot police officers: a drone capable of […]
GRAHAM CLULEY Cybersecurity keynote speaker
- USB drives carrying China-linked malware infected Japanese military networks…by Graham Cluley on June 30, 2026 at 10:25 am
Read more in my article on the Hot for Security blog.
- Smashing Security podcast #473: How a hacker could have Rickrolled the entire…by Graham Cluley on June 24, 2026 at 11:10 pm
A polite caller from your bank says there is a problem with your account. Don’t […]
- Hacker hijacks Brazil’s national alert system, sending “misanthropy” to…by Graham Cluley on June 23, 2026 at 12:16 pm
Emergency alert systems work because people believe them. Every time one of […]
Cyber Defense Magazine InfoSec Knowledge is Power
- CISA Warns Attackers Are Targeting Critical Internal Business Platforms
by Stevin on June 29, 2026 at 12:00 pmIt Targets Government Agencies, Hospital Networks, and Major Enterprise […]
- Return On Risk: The New Measure Of Cyber Resilience
by News team on June 28, 2026 at 3:00 pmROI was never designed to measure preparedness against compounding business […]
- Path to StateRAMP
by News team on June 28, 2026 at 1:00 pmFor many software companies, StateRAMP is initially viewed as a compliance […]
BleepingComputer BleepingComputer – All Stories
- Insurance giant Aflac discloses data breach after subsidiary hackby Sergiu Gatlan on June 30, 2026 at 11:12 am
American insurance giant Aflac has disclosed a new data breach after attackers […]
- Microsoft adds smarter bot protection to Teams meetingsby Sergiu Gatlan on June 30, 2026 at 10:52 am
Microsoft has introduced a new Teams admin policy that allows organizers to […]
- Kali Linux 2026.2 released with 9 new tools, NetHunter updatesby Sergiu Gatlan on June 30, 2026 at 9:46 am
Kali Linux 2026.2, the second release of the year, is now available for […]
TechCrunch Startup and Technology News
- Crypto exchange OKX wants AI agents to hire and pay each otherby Jagmeet Singh on June 30, 2026 at 9:00 am
OKX is bringing together payments, identity and reputation into a marketplace […]
- The AI jobs debate just got messierby Rebecca Bellan on June 30, 2026 at 4:01 am
A new report finds “high-intensity AI adopters” saw headcount increase 10.2%. […]
- Vibe coding platform Base44 launches own model as AI startups seek defensibilityby Anna Heim on June 30, 2026 at 2:28 am
Wix-owned vibe coding platform Base44 has started rolling out its own AI model […]
The Hacker News Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to [email protected]
- What the Numbers Say About FIFA 2026 Cyber Risk
by [email protected] (The Hacker News) on June 30, 2026 at 11:30 amThe FIFA World Cup 2026 opened on June 11. By that date, according to Check […]
- Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn…
by [email protected] (The Hacker News) on June 30, 2026 at 11:18 amAn unknown threat actor has been observed exploiting a recently disclosed […]
- AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass…
by [email protected] (The Hacker News) on June 30, 2026 at 9:27 amTwo researchers have found six security flaws in AirDrop and Quick Share, the […]
The DFIR Report Actionable Cyber Threat Intelligence
- From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akiraby editor on June 29, 2026 at 1:07 pm
Key Takeaways This case was first reported to customers in a threat brief released in July 2025 and in a public flash alert in August 2025 in partnership with Swisscom B2B CSIRT, which observed another intrusion tied to the same campaign. This report contains data from both intrusions. We plan to release a DFIR Labs The post From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akira appeared first on The DFIR Report.
- Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomwareby editor on May 11, 2026 at 2:05 pm
The EtherRAT malware family was first reported by Sysdig back in December 2025. At that time, the initial access vector was exploitation of CVE-2025-55182 (React2Shell) targeting Linux servers. In March 2026, a Windows variant campaign was reported by Atos, with their investigation showing evidence of activity going back to the previous December. In April, we The post Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomware appeared first on The DFIR Report.
- Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvestingby editor on April 22, 2026 at 2:51 pm
Key Takeaways We identified an exposed server that provided unusual visibility into a large-scale, multi-victim exploitation and collection operation. Artifacts on the host showed that Claude Code and OpenClaw were embedded in the operator’s day-to-day workflow, supporting troubleshooting, orchestration, and refinement of the collection pipeline. This AI-assisted workflow resulted in the modular platform Bissa scanner The post Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvesting appeared first on The DFIR Report.
Biz & IT – Ars Technica Serving the Technologist since 1998. News, reviews, and analysis.
- US offers $10 million for info on group behind Signal and WhatsApp hacking spree
by Dan Goodin on June 29, 2026 at 10:05 pmOperation by two Russia-state groups has been ongoing since at least March.
- Notion killing Skiff-influenced email app since most users use AI agents instead
by Scharon Harding on June 25, 2026 at 7:04 pmNotion is “going all in on using agents to run your inbox.”
- One-two punch delivered in global operation disrupts cybercrime “assembly line”
by Dan Goodin on June 24, 2026 at 9:03 pm“Operation Endgame” simultaneously disrupts two widely used crime tools.
Websec Cybersecurity Blog Expert insights, trends, research findings, and best practices from Websec security team to help you strengthen your organization’s security posture.
- A Comparison Between the Real User ID and the Effective User ID is not Enough to Prevent Privilege Escalationby Websec Security Team on October 3, 2023 at 7:39 pm
In Unix-like systems, processes have a real and effective user ID determining their access permissions. While usually identical, they can differ in situations like when the setuid bit is activated in executables.
- Websec DevSecOps Webinarby Websec Security Team on August 29, 2022 at 12:00 am
Roberto Salgado and Kobalt.io’s Miki Fukushima are hosting a free webinar on September 20, 2022 covering why application security matters, the shift to developer-first security, and a practical roadmap for embedding security into DevSecOps.
- CVE-2022-21404: Another story of developers fixing vulnerabilities unknowingly because of CodeQLby Websec Security Team on May 19, 2022 at 6:18 pm
How CodeQL may help reduce false negatives within Open-Source projects. Taking a look into a deserialization vulnerability within Oracle Helidon (CVE-2022-21404).