Over Security

In March 2026, the League of Legends custom skins service Divine Skins suffered a data breach. The incident was disclosed via the service's Discord server, where Divine Skins stated that an unauthorised third party accessed part of its systems, deleted all skins from the database and exposed email addresses and usernames. The data also contained a history of purchases made by users.

In March 2026, the Turkish restaurant chain Baydöner suffered a data breach which was subsequently published to a public hacking forum. The incident exposed over 1.2M unique email addresses along with names, phone numbers, cities of residence and plaintext passwords. A small number of records also included Turkish national ID number and date of birth. In their disclosure notice, Baydöner stated that payment and financial data was not affected.

Microsoft has released an out-of-band (OOB) update to fix a security vulnerabilities affecting Windows 11 Enterprise devices that receive hotpatch updates instead of the regular Patch Tuesday cumulative updates.

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

A deep dive into building Early Cascade Injection in Rust using NTDLL shim engine internals, position-independent stubs, pointer encoding, and APC-based payload execution.

Diversity and inclusion in cybersecurity are widely discussed, but the real challenge is turning those conversations into action.

Microsoft is investigating a new issue affecting some Samsung laptops running Windows 11 after installing the February 2026 security updates, in which users lose access to their C:\ drive and are unable to launch applications.

The FBI is asking gamers who installed Steam titles containing malware to provide information as part of an ongoing investigation into eight malicious games uploaded to the gaming platform.

New York cyber regulations for water organizations to take effect in 2027

Pmi italiane meno immature, ma strada ancora lunga da percorrere per asdottare le misure di protezione adeguate ai rischi cyber. Ecco cosa fotografa il Cyber Index PMI 2025 che misura l'indice di maturità delle Pmi

Poland's National Centre for Nuclear Research (NCBJ) says hackers targeted its IT infrastructure, but the attack was detected and blocked before causing any impact.

​Microsoft is investigating several issues causing email synchronization and connection problems when using the classic Outlook desktop client.

Sottovalutare l'importanza reportistica nella gestione della sicurezza cyber è un punto di fallimento inevitabile, anche perché non consente all'organizzazione di disporre di una chiara visione strategica e impedisce la predisposizione di misure di mitigazione del rischio adeguate

The FBI believes a series of video games published on Steam in the last two years were embedded with malware by the same hacker.

Il gruppo hacker noto come Handala ha rivendicato un attacco informatico contro Stryker, multinazionale specializzata in dispositivi medici e tecnologie sanitarie utilizzate in ospedali di tutto il mondo. Ecco perché sembra un segnale di escalation nella dimensione digitale dello scontro

Hypervisor migrations can introduce hidden risks that threaten data availability and recovery. Acronis explains why verified backups and cross-platform recovery are essential during VMware transitions.

L’adozione degli agenti AI nelle aziende sta accelerando ben oltre la fase sperimentale e finalmente sempre più organizzazioni stanno affidando a questi sistemi compiti operativi concreti. Purtroppo, spesso questo vuol dire anche dar loro accesso a dati interni, interazioni con strumenti di produttività, repository documentali, shell di sistema, workflow di automazione e persino funzioni di …

Gli attaccanti stanno seguendo da vicino l’evoluzione del quantum perché i computer quantistici minacciano di demolire le basi della crittografia. Ecco cos'è l'agilità crittografica e quali sono i cinque livelli critici da valutare

The Australian 2025 Commonwealth Cyber Security report highlights PSPF compliance, Essential Eight maturity gains, and future resilience priorities.

Cyble' CEO Beenu Arora on India’s AI security rise, $4.6T AI investment, deepfakes, cyber risks, and why AI security will define the next era.

Critical SolarWinds, Ivanti EPMM, Microsoft Office, and Siemens ICS vulnerabilities are being discussed on underground forums, while 15 CISA ICS advisories impacted Energy and Critical Manufacturing sectors.

Cyble uncovers SURXRAT’s evolution across versions, built on ArsinkRAT code, and now downloading large LLM modules signaling an expansion of its operational capabilities.

Cyble weekly vulnerability report tracked 1,102 IT vulnerabilities and 18 ICS flaws in one week, with 166 PoCs available and 9 KEV additions.

ENISA’s Cybersecurity Exercise Methodology supports NIS2 and EU Cybersecurity Act compliance while strengthening cyber resilience.

Middle East tensions soar as Iran, US, and Israel engage in cyber and military strikes, triggering a hybrid conflict with global security implications.

Cyble has identified a new Linux threat named ClipXDaemon that targets cryptocurrency users by intercepting and manipulating copied wallet addresses.