Over Security

Over Security

33613 bookmarks
Custom sorting
The Exploit Doesn't Exist. You Can Still Prove It Works Against You
The Exploit Doesn't Exist. You Can Still Prove It Works Against You
Attackers can now weaponize newly disclosed vulnerabilities far faster than most organizations can patch them. Picus Security explains how security teams can validate exploitability before a public exploit even exists.
·bleepingcomputer.com·
The Exploit Doesn't Exist. You Can Still Prove It Works Against You
Ghost Stories: investigating an undocumented ClickFix C2 in Ghost CMS
Ghost Stories: investigating an undocumented ClickFix C2 in Ghost CMS
Read-only research into an active campaign that exploits CVE-2026-26980 in Ghost CMS. Every result below comes from public GET requests. We did not exploit the flaw, did not authenticate, and did not write anything. The main scan ran on 2026-06-11. Key findings * An active campaign is exploiting CVE-2026-26980, a SQL injection in the public Content API of Ghost CMS (versions 3.24.0 to 6.19.0, fixed in 6.19.1, released February 2026). The attackers use it to plant a JavaScript loader t
·blog.sicuranext.com·
Ghost Stories: investigating an undocumented ClickFix C2 in Ghost CMS
Attacchi crittografici: la mappa completa delle minacce che ogni CISO deve conoscere
Attacchi crittografici: la mappa completa delle minacce che ogni CISO deve conoscere
Ogni algoritmo crittografico ha i suoi punti deboli e con le tecniche giuste qualsiasi implementazione può essere compromessa. Conoscere le principali tipologie di attacchi crittografici è quindi utile per adottare le giuste contromisure. Ecco tutto quello che c’è da sapere
·cybersecurity360.it·
Attacchi crittografici: la mappa completa delle minacce che ogni CISO deve conoscere
Webinar: Why email security teams are drowning in alerts
Webinar: Why email security teams are drowning in alerts
Phishing, BEC, and account takeover attacks continue to overwhelm security teams with alerts and investigations. This webinar explores how behavioral AI can help automate detection and response workflows, reducing alert fatigue and improving operational efficiency.
·bleepingcomputer.com·
Webinar: Why email security teams are drowning in alerts
700+ Lookalike Domains Targeting Oil and Gas Companies
700+ Lookalike Domains Targeting Oil and Gas Companies
PreCrime Labs tracked 701+ suspicious domains impersonating Chevron, ExxonMobil & Shell. See how attackers stage energy sector phishing before it launches.
·bfore.ai·
700+ Lookalike Domains Targeting Oil and Gas Companies
1-15 June 2026 Cyber Attacks Timeline
1-15 June 2026 Cyber Attacks Timeline
80 cyber incidents, June 1–15 2026: cybercrime 69%, malware top attack (40%), espionage 25%. Public-facing exploits and supply-chain attacks prominent.
·hackmageddon.com·
1-15 June 2026 Cyber Attacks Timeline
MITRE ATT&CK v19: ecco le novità strutturali della nuova versione
MITRE ATT&CK v19: ecco le novità strutturali della nuova versione
Il rilascio della nuova release introduce modifiche strutturali. Il focus è sulla deprecation della tattica Defense Evasion (TA0005) e sulla sua sostituzione con due nuove tattiche: Stealthee e Impair Defenses. Ecco alcuni suggerimenti operativi e una guida alla migrazione
·cybersecurity360.it·
MITRE ATT&CK v19: ecco le novità strutturali della nuova versione
Disaster recovery: quando l’organizzazione scopre se è in grado di sopravvivere
Disaster recovery: quando l’organizzazione scopre se è in grado di sopravvivere
Il Disaster recovery, che è governo della crisi, deve cambiare prospettiva. Non basta più progettare il ripristino dei sistemi interni, occorre chiedersi da quali soggetti esterni dipende la capacità di recovery. Ecco perché serve un cambio di paradigma che sposta il tema dalla tecnologia alla governance delle dipendenze
·cybersecurity360.it·
Disaster recovery: quando l’organizzazione scopre se è in grado di sopravvivere
WhatsApp phishing attack uses fake business docs to hack PCs
WhatsApp phishing attack uses fake business docs to hack PCs
An ongoing malware campaign is targeting WhatsApp users in multiple countries with deceptive messages that push VBScript files, leading to remote system access.
·bleepingcomputer.com·
WhatsApp phishing attack uses fake business docs to hack PCs
JaredFromSubway MEV bot hacked in $15 million crypto theft
JaredFromSubway MEV bot hacked in $15 million crypto theft
The JaredFromSubway Ethereum MEV (Maximal Extractable Value) bot suffered a $15 million loss after an attacker manipulated the opportunity-detection logic by creating fake cryptocurrency trading opportunities.
·bleepingcomputer.com·
JaredFromSubway MEV bot hacked in $15 million crypto theft
FFmpeg fixes PixelSmash flaw in widely used video decoder
FFmpeg fixes PixelSmash flaw in widely used video decoder
A newly disclosed FFmpeg flaw dubbed 'PixelSmash' could be exploited for remote code execution on Jellyfin servers under certain conditions, and can also trigger a denial-of-service  condition in applications like Kodi, Emby, Nextcloud, PhotoPrism, and OBS Studio.
·bleepingcomputer.com·
FFmpeg fixes PixelSmash flaw in widely used video decoder
FortiBleed campaign used custom FortiGate sniffer to steal credentials
FortiBleed campaign used custom FortiGate sniffer to steal credentials
Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets from compromised firewalls and steal credentials.
·bleepingcomputer.com·
FortiBleed campaign used custom FortiGate sniffer to steal credentials
8 Questions to Ask Before Choosing an Incident Response Retainer
8 Questions to Ask Before Choosing an Incident Response Retainer
Before you sign an incident response retainer, ask about SLA definitions, scope, hidden costs, threat profile fit, and post-incident support. Here is what to look for.
·group-ib.com·
8 Questions to Ask Before Choosing an Incident Response Retainer
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft has confirmed that Windows 11 version 26H2 will be the next feature update and that devices running Windows 11 24H2 and 25H2 will be able to upgrade using a small enablement package.
·bleepingcomputer.com·
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft fixes AutoGen Studio flaw that enabled code execution
Microsoft fixes AutoGen Studio flaw that enabled code execution
A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers manipulate an agent into executing arbitrary commands on its host system simply by visiting a malicious webpage.
·bleepingcomputer.com·
Microsoft fixes AutoGen Studio flaw that enabled code execution
WhatsApp e crimeware: la convergenza tra malware, social engineering e strumenti leciti
WhatsApp e crimeware: la convergenza tra malware, social engineering e strumenti leciti
File VBScript malevoli distribuiti via messaggi diretti, tramite account WhatsApp violati, abusano di software RMM legittimi per ottenere persistenza e controllo dei sistemi compromessi. Ecco come mitigare i rischi legati al social engineering su WhatsApp Desktop e Web per diffondere malware
·cybersecurity360.it·
WhatsApp e crimeware: la convergenza tra malware, social engineering e strumenti leciti
Cyber Risk Assessment: come calcolare l’impatto economico degli incidenti IT
Cyber Risk Assessment: come calcolare l’impatto economico degli incidenti IT
Il Cyber Risk Assessment economico traduce il rischio cyber in numeri comprensibili al management: costi degli incidenti, perdite attese, ritorno sull'investimento in sicurezza. Questa guida illustra modelli, scenari numerici e framework operativi per quantificare l'esposizione e allocare il budget IT in modo difendibile
·cybersecurity360.it·
Cyber Risk Assessment: come calcolare l’impatto economico degli incidenti IT
Il blocco di Claude Mythos: le implicazioni per le aziende italiane ed europee
Il blocco di Claude Mythos: le implicazioni per le aziende italiane ed europee
Il provvedimento di divieto dell'export dell’accesso ai modelli Claude Mythos 5 e Fable 5 punta il dito sul fatto che Mythos è diverso da tutto ciò che lo ha preceduto. Ecco cosa significa questo blocco, qual è il rischio di “sovranità del vendor” e quali capacità hanno attirato l’interesse delle agenzie governative per usi difensivi e offensivi
·cybersecurity360.it·
Il blocco di Claude Mythos: le implicazioni per le aziende italiane ed europee
A Glimpse into the “Search Your Target” Market for Stolen Credentials
A Glimpse into the “Search Your Target” Market for Stolen Credentials
Attackers no longer need to sift through massive credential dumps. They can pay others to do it for them. Flare explores how an emerging underground market searches stolen credential databases for specific companies, domains, and accounts.
·bleepingcomputer.com·
A Glimpse into the “Search Your Target” Market for Stolen Credentials