
Direct Links | Infosec News Feeds
The San Francisco Beat
SFInfoSec aggregates the latest news, podcasts and books covering Cyber Security, Hacking, Infosec, Online Privacy, Cryptography, Threat Research and Vulnerability Disclosures from all the leading sources.
Threatpost The First Stop For Security News
- Student Loan Breach Exposes 2.5M Recordsby Nate Nelson on August 31, 2022 at 12:57 pm
2.5 million people were affected, in a breach that could spell more trouble […]
- Watering Hole Attacks Push ScanBox Keyloggerby Nate Nelson on August 30, 2022 at 4:00 pm
Researchers uncover a watering hole attack likely carried out by APT TA423, […]
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firmsby Nate Nelson on August 29, 2022 at 2:56 pm
Over 130 companies tangled in sprawling phishing campaign that spoofed a […]
Krebs on Security In-depth security news and investigation
- FBI Seizes NetNut Proxy Platform, Popa Botnetby BrianKrebs on July 2, 2026 at 7:27 pm
The Federal Bureau of Investigation (FBI) said today it worked with industry […]
- Scattered Spider Hackers Plead Guilty on Day 1 of Trialby BrianKrebs on June 23, 2026 at 4:12 pm
Two men pleaded guilty in the United Kingdom this week to criminal charges […]
- ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firmby BrianKrebs on June 18, 2026 at 5:37 pm
For the past four years, a sprawling Android-based botnet called Popa has […]
darkreading Public RSS feed
- Chinese LLMs Broaden the Gap Between…by Robert Lemos on July 3, 2026 at 1:01 pm
Two new models from Chinese firms compete with top US mainstream and frontier […]
- Aussies Face Reduced Cybercrime Risk,…by Nate Nelson on July 2, 2026 at 11:01 pm
Improved institutional safeguards and stricter regulations have pushed the […]
- Apple Reverses Age-Old Patch Policy to…by Nate Nelson on July 2, 2026 at 7:31 pm
Expect more compressed patching cycles from Apple going forward, as attackers […]
Blog RSS Feed Fortra Blog
- 3 Years In: How Is AI Doing? SANS Weighs Inby Katrina Thompson on December 15, 2025 at 8:09 am
It’s no secret that AI is “here.” It’s been here for three years now, […]
- What Is Log Management and Why you Need itby Anirudh Chand on November 24, 2025 at 6:00 am
It is arguable that log management forms the basis of modern cybersecurity. […]
- What Did We Learn from the NCSC’s 2025 Annual Review?by Josh Breaker-Rolfe on November 21, 2025 at 11:47 am
Earlier this year, the UK’s National Cyber Security Centre (NCSC) released […]
Security Latest Channel Description
- ICE’s Internal Watchdog Is Now Investigating Online Criticsby Maddy Varner on July 6, 2026 at 10:00 am
The Office of Professional Responsibility has opened more than 100 cases over […]
- Security Roundup: Apple’s Hide My Email Service Fails to Hide Your Emailby Matt Burgess, Lily Hay Newman on July 4, 2026 at 10:30 am
Plus: Alleged Scattered Spider hacking member extradited, dozens of license […]
- EU Politicians Investigated Pegasus Spyware. Then It Ended Up on One of Their…by Lily Hay Newman, Matt Burgess on July 3, 2026 at 5:00 am
“It is a direct attack on the rule of law,” says one European Parliament […]
- France to Stop Certifying Non-Quantum-Safe Encryptionby Bruce Schneier on July 6, 2026 at 10:45 am
France is accelerating its transition to post-quantum encryption: France’s […]
- Flock Cameras Can Surveil Cars Without License Platesby Bruce Schneier on July 3, 2026 at 11:15 am
This is from a 2024 company presentation: Officers can also tap into data […]
- Cybersecurity Mission Creep in the USby Bruce Schneier on July 2, 2026 at 11:11 am
Interesting paper: “Cybersecurity Mission Creep.” Abstract: Cybersecurity […]
GRAHAM CLULEY Cybersecurity keynote speaker
- The Gentlemen ransomware: what you need to knowby Graham Cluley on July 2, 2026 at 4:50 pm
Who Are The Gentlemen? Despite the impeccably polite name, there is nothing […]
- Smashing Security podcast #474: Polymarket can predict the future. So how did…by Graham Cluley on July 1, 2026 at 11:12 pm
Polymarket has built an entire business on predicting the future. So how did it […]
- Scammers race to cash in on Venezuelan earthquake disasterby Graham Cluley on June 30, 2026 at 9:04 pm
Scammers wasted no time exploiting Venezuela’s devastating earthquake, with […]
BleepingComputer BleepingComputer – All Stories
- Flipper Zero firmware development continues with community helpby Bill Toulas on July 5, 2026 at 2:14 pm
Flipper Devices says development of the Flipper Zero firmware will continue, […]
- JadePuffer ransomware used AI agent to automate entire attackby Bill Toulas on July 4, 2026 at 2:16 pm
Researchers identified what they believe is the first documented case of a […]
- NetNut proxy network disrupted, 2 million infected devices cut offby Ionut Ilascu on July 3, 2026 at 5:50 pm
A joint operation involving Google has disrupted NetNut, a residential proxy […]
TechCrunch Startup and Technology News
- Smart glasses maker Even Realities hits $1B valuation with $150M funding led by…by Kate Park on July 6, 2026 at 9:00 am
Even Realities, an ex-Apple team building camera-free smart glasses, raised […]
- This humanoid robotics company is going public, but its CEO isn’t promising a…by Connie Loizos on July 6, 2026 at 6:05 am
While other humanoid startups chase sky-high valuations, Agility Robotics is […]
- Uber’s European expansion plans may have hit a speed bumpby Anthony Ha on July 5, 2026 at 9:35 pm
Back in February, Uber announced ambitious plans to launch in seven new […]
The Hacker News Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to [email protected]
- New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissionsby [email protected] (The Hacker News) on July 6, 2026 at 8:50 am
Researchers at Shandong University have shown a fast new way to pull data off […]
- New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOSby [email protected] (The Hacker News) on July 6, 2026 at 8:13 am
Cybersecurity researchers have flagged a novel Java-based remote access trojan […]
- Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited…by [email protected] (The Hacker News) on July 6, 2026 at 7:27 am
Researchers found a flaw in Opera GX, the gaming-focused version of the Opera […]
The DFIR Report Actionable Cyber Threat Intelligence
- From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akiraby editor on June 29, 2026 at 1:07 pm
Key Takeaways This case was first reported to customers in a threat brief released in July 2025 and in a public flash alert in August 2025 in partnership with Swisscom B2B CSIRT, which observed another intrusion tied to the same campaign. This report contains data from both intrusions. We plan to release a DFIR Labs The post From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akira appeared first on The DFIR Report.
- Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomwareby editor on May 11, 2026 at 2:05 pm
The EtherRAT malware family was first reported by Sysdig back in December 2025. At that time, the initial access vector was exploitation of CVE-2025-55182 (React2Shell) targeting Linux servers. In March 2026, a Windows variant campaign was reported by Atos, with their investigation showing evidence of activity going back to the previous December. In April, we The post Flash Alert: EtherRat and TukTuk C2 End in The Gentleman Ransomware appeared first on The DFIR Report.
- Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvestingby editor on April 22, 2026 at 2:51 pm
Key Takeaways We identified an exposed server that provided unusual visibility into a large-scale, multi-victim exploitation and collection operation. Artifacts on the host showed that Claude Code and OpenClaw were embedded in the operator’s day-to-day workflow, supporting troubleshooting, orchestration, and refinement of the collection pipeline. This AI-assisted workflow resulted in the modular platform Bissa scanner The post Bissa Scanner Exposed: AI-Assisted Mass Exploitation and Credential Harvesting appeared first on The DFIR Report.
Biz & IT – Ars Technica Serving the Technologist since 1998. News, reviews, and analysis.
- Newly discovered PamStealer isn’t your typical macOS malwareby Dan Goodin on July 2, 2026 at 7:38 pm
The discovery underscores the increased effort being poured into Mac […]
- T-Mobile moving tens of thousands of virtual machines off VMware amid lawsuitby Scharon Harding on July 1, 2026 at 9:21 pm
T-Mobile wants Broadcom to keep supporting its VMware perpetual licenses.
- New attack provides one more reason why AI browsers are a bad ideaby Dan Goodin on June 30, 2026 at 8:03 pm
Telling an LLM that 2 + 2 = 5 is enough to make it follow forbidden […]
Websec Cybersecurity Blog Expert insights, trends, research findings, and best practices from Websec security team to help you strengthen your organization’s security posture.
- A Comparison Between the Real User ID and the Effective User ID is not Enough to Prevent Privilege Escalationby Websec Security Team on October 3, 2023 at 7:39 pm
In Unix-like systems, processes have a real and effective user ID determining their access permissions. While usually identical, they can differ in situations like when the setuid bit is activated in executables.
- Websec DevSecOps Webinarby Websec Security Team on August 29, 2022 at 12:00 am
Roberto Salgado and Kobalt.io’s Miki Fukushima are hosting a free webinar on September 20, 2022 covering why application security matters, the shift to developer-first security, and a practical roadmap for embedding security into DevSecOps.
- CVE-2022-21404: Another story of developers fixing vulnerabilities unknowingly because of CodeQLby Websec Security Team on May 19, 2022 at 6:18 pm
How CodeQL may help reduce false negatives within Open-Source projects. Taking a look into a deserialization vulnerability within Oracle Helidon (CVE-2022-21404).

















