New BioShocking attack manipulates AI browser into data theft
A new prompt injection attack dubbed "BioShocking" could trick AI-powered browsers into treating real-world risky actions as part of a fictional scenario, causing them to ignore any safety guardrails.
Microsoft accelerates quantum-safe roadmap as risks grow
Microsoft announced today that it is accelerating its quantum-safe security roadmap, saying advances in quantum computing are bringing the need to replace today's encryption standards sooner than previously expected.
Malicious PyPI packages give hackers control of Telegram bot servers
A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram forks that allow attackers to read arbitrary files on compromised servers.
Fake Perplexity extension on Chrome Web Store tracked searches
A malicious extension in the Chrome Web Store is masquerading as the Perplexity AI answer engine, intercepting search traffic and collecting browsing information.
Architetture multicloud protette: criteri di segmentazione logica per la difesa degli asset
Criteri di segmentazione e sicurezza logica in ambienti multicloud: architettura, microsegmentazione, controllo degli accessi unificato e monitoraggio continuo della conformità
Nuova campagna di smishing sfrutta APCOA Flow per sottrarre dati delle carte di pagamento
Nel mese di giugno 2026 D3Lab ha rilevato almeno quattro campagne di smishing che sfruttano il brand APCOA Flow per simulare multe relative a parcheggi non pagati. L'obiettivo dei criminali è sottrarre i dati delle carte di pagamento delle vittime attraverso un sofisticato kit di phishing riconducib
Rainbow Tables: ecco perché le password “normali” non bastano più
Le Rainbow Table consentono di recuperare in pochi istanti le password partendo dagli hash precedentemente sottratti dai criminal hacker. Tra GPU, key stretching, salting e pepper, la protezione delle credenziali richiede oggi strategie più evolute delle tradizionali policy sulle password. Ecco perché e quali
Lessons from the Underground: How to Combat Business Email Compromise
Business Email Compromise is more than an email scam. It's a coordinated operation involving compromised accounts, financial research, and cash-out networks. Flare explores how underground forums reveal how BEC attacks are planned and executed.
Security audit of the Symfony YAML component, a PHP library to parse and dump YAML. Facilitated by the Open Source Technology Improvement Fund (OSTIF) and performed by Shielder.
Cyber risk, la compliance non basta più: cresce il divario tra aziende conformi e quelle protette
La nuova stagione regolatoria non è garanzia assoluta rispetto al cyber risk. Essere compliant non significa automaticamente essere protetti né dagli attacchi né sul piano assicurativo. Ecco perché c'è un disallineamento tra requisiti normativi e condizioni assicurative e bisogna colmare il gap tra richieste normative e coperture della polizza
Closing the Supplier Security Gap: How a US Manufacturer Cut Third-Party Risk and Doubled SOC Triage Speed
See how a US automotive manufacturer secured supplier file intake, cut Tier 1 escalations, doubled SOC triage speed, and scaled without adding headcount.
Closing the Supplier Security Gap: How a US Manufacturer Cut Third-Party Risk and Doubled SOC Triage Speed
See how a US automotive manufacturer secured supplier file intake, cut Tier 1 escalations, doubled SOC triage speed, and scaled without adding headcount.
Closing the Supplier Security Gap: How a US Manufacturer Cut Third-Party Risk and Doubled SOC Triage Speed
See how a US automotive manufacturer secured supplier file intake, cut Tier 1 escalations, doubled SOC triage speed, and scaled without adding headcount.
Closing the Supplier Security Gap: How a US Manufacturer Cut Third-Party Risk and Doubled SOC Triage Speed
See how a US automotive manufacturer secured supplier file intake, cut Tier 1 escalations, doubled SOC triage speed, and scaled without adding headcount.
Rapid-Deployable Cloud Malware Analysis Lab on AWS
Every time I changed laptops I found myself rebuilding the same malware analysis environment from scratch. Local VMs worked well enough until they didn’t: snapshots became stale, the host machine slowed down, and after a few months I was no longer entirely sure whether the environment was still clean. Moving to an Apple Silicon Mac finally forced me to rethink the entire workflow. Rather than fighting emulation layers or maintaining increasingly heavy local VMs, I decided to move the analysis environment into AWS.
Rapid-Deployable Cloud Malware Analysis Lab on AWS
Every time I changed laptops I found myself rebuilding the same malware analysis environment from scratch. Local VMs worked well enough until they didn’t: snapshots became stale, the host machine slowed down, and after a few months I was no longer entirely sure whether the environment was still clean. Moving to an Apple Silicon Mac finally forced me to rethink the entire workflow. Rather than fighting emulation layers or maintaining increasingly heavy local VMs, I decided to move the analysis environment into AWS.
Rapid-Deployable Cloud Malware Analysis Lab on AWS
Every time I changed laptops I found myself rebuilding the same malware analysis environment from scratch. Local VMs worked well enough until they didn’t: snapshots became stale, the host machine slowed down, and after a few months I was no longer entirely sure whether the environment was still clean. Moving to an Apple Silicon Mac finally forced me to rethink the entire workflow. Rather than fighting emulation layers or maintaining increasingly heavy local VMs, I decided to move the analysis environment into AWS.
Rapid-Deployable Cloud Malware Analysis Lab on AWS
Every time I changed laptops I found myself rebuilding the same malware analysis environment from scratch. Local VMs worked well enough until they didn’t: snapshots became stale, the host machine slowed down, and after a few months I was no longer entirely sure whether the environment was still clean. Moving to an Apple Silicon Mac finally forced me to rethink the entire workflow. Rather than fighting emulation layers or maintaining increasingly heavy local VMs, I decided to move the analysis environment into AWS.
Closing the Supplier Security Gap: How a US Manufacturer Cut Third-Party Risk and Doubled SOC Triage Speed
See how a US automotive manufacturer secured supplier file intake, cut Tier 1 escalations, doubled SOC triage speed, and scaled without adding headcount.
Rapid-Deployable Cloud Malware Analysis Lab on AWS
Every time I changed laptops I found myself rebuilding the same malware analysis environment from scratch. Local VMs worked well enough until they didn’t: snapshots became stale, the host machine slowed down, and after a few months I was no longer entirely sure whether the environment was still clean. Moving to an Apple Silicon Mac finally forced me to rethink the entire workflow. Rather than fighting emulation layers or maintaining increasingly heavy local VMs, I decided to move the analysis environment into AWS.
Business Continuity: andare avanti, mentre tutto si ferma
Il vero significato del Business Continuity Plan non è un documento da archiviare, ma una vera e propria struttura di sopravvivenza. Ecco perché oggi rappresenta il livello più alto della resilienza organizzativa richiesta dalla NIS 2
EvilTokens, il phishing che si guadagna l’accesso ai dispositivi senza rubare password
I cyber criminali guadagnano l’accesso senza necessità di rubare le credenziali: il kit di phishing-as-a-service, che colpisce gli account Microsoft 365 tramite OAuth 2.0, inganna le vittime inducendole ad effettuare l'accesso a Microsoft in modo legittimo, con l'autenticazione a due fattori, su un sito autentico. Ecco perché EvilTokens preoccupa