Over Security

I modelli linguistici di grandi dimensioni (LLM) testimoniano potenzialità in crescita sia nel generare codice che nelle attività cyber. Ecco quali vantaggi offre Anthropic Claude Code Security e come mitigare i rischi

Google's Threat Intelligence Group (GTIG), Mandiant, and partners disrupted a global espionage campaign attributed to a suspected Chinese threat actor that used SaaS API calls to hide malicious traffic in attacks targeting telecom and government networks.

Avere attivi SPF e DMARC sulla posta elettronica non basta per bloccare le e-mail di phishing, è necessario configurarli correttamente. Perché la prevenzione da sola non basta: serve un rilevamento attivo delle credenziali compromesse

Cisco Talos is tracking the active exploitation of CVE-2026-20127, a vulnerability in Cisco Catalyst SD-WAN Controller, formerly vSmart, that allows an unauthenticated remote attacker to bypass authentication and obtain administrative privileges.

Marquis Software Solutions has filed a lawsuit against SonicWall, accusing the cybersecurity company of gross negligence and misrepresentation that allegedly led to a ransomware attack disrupting operations at 74 U.S. banks.

OpenClaw has sparked heavy Telegram and dark web chatter, but Flare's data shows more research hype than mass exploitation. Flare explains how its telemetry found real supply-chain risk in the skills marketplace, yet limited signs of large-scale criminal operationalization.

Cyble weekly vulnerability report tracked 1,102 IT vulnerabilities and 18 ICS flaws in one week, with 166 PoCs available and 9 KEV additions.

Taiwan networking provider Zyxel has released security updates to address a critical vulnerability affecting over a dozen router models that can allow unauthenticated attackers to gain remote command execution on unpatched devices.

Learn how you can quantify preemptive cybersecurity value. Shift from reactive 'assume breach' to a predictive approach, measuring ROI through cost reduction and averted breach costs.

The U.S. Treasury Department has sanctioned a Russian exploit broker who bought stolen hacking tools from a former executive of a U.S. defense contractor.

L’evoluzione degli strumenti di intelligenza artificiale sta fortemente influenzando una profonda trasformazione della cyber security. Comprenderne i trend e le direzioni future diventa sempre più complesso. Ecco cosa è accaduto recentemente e cosa ci si può attendere nel prossimo futuro

Marquis sues SonicWall, alleging its cloud backup service breach led to a 2025 ransomware attack impacting 400,000+ individuals.

Build intelligence-driven threat monitoring that reduces risk, cuts noise, and strengthens SOC performance.

Managed Detection & Response services (MDR) 24/7 for network, endpoint, cloud, SaaS and OT, against every type of cyber attack

Venerdì scorso Anthropic ha presentato Claude Code Security, una nuova funzione che analizza intere codebase alla ricerca di vulnerabilità e propone patch correttive. Il rilascio, per ora, è in modalità research preview limitata per clienti enterprise e team, mentre i maintainer open source possono chiedere accesso gratuito accelerato. L’effetto immediato, però, non si è visto …

The former head of Trenchant, a specialized U.S. defense contractor unit, was sentenced Tuesday to more than seven years in federal prison for stealing and selling zero-day exploits to a Russian exploit broker whose clients include the Russian government.

Gli attacchi informatici guidati dall'IA sono la principale preoccupazione dell'anno per i professionisti della sicurezza cyber, secondo la nuova ricerca ISACA. Analizziamo i dati salienti

Microsoft has released the KB5077241 optional cumulative update for Windows 11, which comes with 29 changes, including improvements to BitLocker, a new network speed test tool, and native System Monitor (Sysmon) functionality.

In October 2025, retailer Canadian Tire was the victim of a data breach that exposed almost 42M records. The data contained 38M unique email addresses along with names, phone numbers and physical addresses. Passwords were stored as PBKDF2 hashes and for a subset of records, dates of birth and partial credit card data were also included (card type, expiry and masked card number). In its disclosure notice, Canadian Tire advised that the incident did not impact bank account information or loyalty program data.

SURXRAT evolves from ArsinkRAT roots, adds LLM module downloads, and operates via Telegram MaaS with surveillance and ransomware features.

The evolving marketplace for exploits suggests the fight against zero-day exploits theft is only entering its next phase.

While law enforcement cooperation is improving, the broader fight against scam centers in Southeast Asia will depend heavily on financial disruption.

Hacktive Security - Advanced Cyber Security Services

A financially motivated threat group dubbed "Diesel Vortex" is stealing credentials from freight and logistics operators in the U.S. and Europe in phishing attacks using 52 domains.

Secondo le analisi condotte da ricercatori e gruppi per i diritti digitali, la localizzazione dei manifestanti sarebbe avvenuta attraverso i dati di posizione emessi dai loro dispositivi mobili. Ecco come funziona l'infrastruttura di sorveglianza digitale tra le più estese al mondo, ora impiegata sistematicamente per tracciare, identificare e neutralizzare il dissenso politico in Iran

In Italia aumentano le notifiche ricevute dal CSIRT Italia, dopo l'entrata in vigore dei nuovi obblighi previsti dal Decreto legislativo n. 138/2024 con cui è stata recepita in Italia la Direttiva NIS 2. Ecco i dati dell'ACN relativi al mese di gennaio e le principali cyber minacce