The Human Element: Turning Threat Actor OPSEC Fails into Investigative Breakthroughs
In this post, we explore how the psychological traps of operational security can unmask even the most sophisticated actors.
Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches
South Korea has fined luxury fashion brands Louis Vuitton, Christian Dior Couture, and Tiffany $25 million for failing to implement adequate security measures, which facilitated unauthorized access and the exposure of data belonging to more than 5.5 million customers.
Space emerges as new front in great power competition, officials warn
Ring ends partnership plans with Flock days after privacy blowback from Super Bowl ad
EU can’t be ‘naive’ about enemies shutting down critical infrastructure, warns tech official
False estensioni AI su Chrome: rubano API e sessioni
Un’inquietante campagna di cyberspionaggio ha colpito almeno 260.000 utenti Chrome, sfruttando il crescente interesse verso gli assistenti basati su intelligenza artificiale. Dietro un’apparente offerta di tool utili per scrivere, riassumere o leggere le email, si celano invece estensioni malevole progettate per rubare dati sensibili e informazioni personali. AiFrame: l’infrastruttura della truffa L’indagine è stata condotta …
NATO must impose costs on Russia, China over cyber and hybrid attacks, says deputy chief
China may be rehearsing a digital siege, Taiwan warns
Sintesi riepilogativa delle campagne malevole nella settimana del 7 – 13 febbraio
Turning IBM QRadar Alerts into Action with Criminal IP
Criminal IP now integrates with IBM QRadar SIEM and SOAR to bring external IP-based threat intelligence directly into detection and response workflows. See how risk scoring and automated enrichment help SOC teams prioritize high-risk IPs and accelerate investigations without leaving QRadar.
Estonia spy chief calls on Europe to invest in its own offensive cyber capabilities
Sicuri del business sicuro
Dover decidere fra fare business e occuparsi della sicurezza cyber rivela un terribile errore di fondo da parte delle organizzazioni, dal momento che non c'è alcuna scelta alternativa ma occorre perseguire strategie integrate. Altrimenti, la sorte sarà quella di trovarsi esclusi dai mercati digitali
CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks
US needs to impose ‘real costs’ on bad actors, State Department cyber official says
US needs to impose ‘real costs’ on bad actors, State Department cyber official says
OpenAI, tra accelerazione difensiva e rischio abuso: che cambia col Trusted Access for Cyber
Non tutte le richieste “cyber” sono buone o cattive e le politiche di blocco generalizzato, adottate per prevenire danni, possono creare frizione proprio per chi opera in buona fede. L’obiettivo di Trusted Access for Cyber di OpenAI è ridurre questi attriti senza abbassare le protezioni di base
Europe must adapt to ‘permanent’ cyber and hybrid threats, Sweden warns
CISA flags critical Microsoft SCCM flaw as exploited in attacks
CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks.
Malware con AI: ma quanto c’è da preoccuparsi? Facciamo chiarezza
Emergono casi di malware che interrogano LLM e di agentic AI che orchestrano intrusioni end-to-end. Ma quanto sono una novità di cui preoccuparsi? Chiariamo davvero come stanno le cose. Dai filoni PromptFlux e PromptSteal (token, comandi al volo) alla campagna GTG-1002 descritta da Anthropic, fino ai prototipi ransomware “auto-composing” e al rischio distillazione
Romance Scams Proliferate Domain Registrations Ahead of Valentine’s Day
Analysis of 3280+ suspicious 'love/dating' domains registered before Valentine's Day for romance scams, crypto fraud, and dating app credential harvesting.
The Cyber Express Weekly Roundup: Escalating Breaches, Regulatory Crackdowns, and Global Cybercrime Developments
The Cyber Express weekly roundup reveals global cyberattacks, regulatory actions, ransomware, crypto scams, and new AI content rules.
Microsoft fixes bug that blocked Google Chrome from launching
Microsoft has fixed a known issue causing its Family Safety parental control service to block Windows users from launching Google Chrome and other web browsers.
60,000 Records Exposed in Cyberattack on Uzbekistan Government
The Uzbekistan cyberattack targeted three government information systems over a four-day period in late January.
Adversaries Exploiting Proprietary AI Capabilities, API Traffic to Scale Cyberattacks
GTIG AI Threat Tracker reveals how threat actors exploit proprietary AI and API traffic for phishing, malware, and intelligence operations in 2025.
Disney Agrees Record $2.75Mn Settlement for Opt-Out Failures
While the enforcement action stems from California law, the Disney CCPA settlement has international implications.
Diritti senza allarme: il GDPR e la difficoltà di percepire il danno che non si vede
Nella pratica quotidiana di molte organizzazioni, la violazione dei diritti e delle libertà fondamentali delle persone continua a essere percepita come un problema secondario, spesso tollerabile, raramente urgente. Ecco perché bisogna dare concretezza al GDPR
8,000+ ChatGPT API Keys Left Publicly Accessible
Over 8,000 ChatGPT API keys exposed across GitHub repositories and live websites, enabling abuse, fraud, and large-scale AI misuse.
Truffe telefoniche con abuso di piattaforme Saas legittime: come proteggersi
L'abuso del SaaS è un'evoluzione strategica nelle tattiche di phishing, dove la truffa telefonica elude il controllo, consentendo alle campagne di bypassare le tecnologie di rilevamento focalizzate sui link malevoli e di spostare la fase finale di sfruttamento verso il social engineering basato sulla voce. Ecco perché l'approccio è pericoloso
Russia tries to block WhatsApp, Telegram in communication blockade
The Russian government is attempting to block WhatsApp in the country as its crackdown on communication platforms not under its control intensifies.
Bitwarden introduces ‘Cupid Vault’ for secure password sharing
Bitwarden has launched a new system called 'Cupid Vault' that allows users to safely share passwords with trusted email addresses.
Critical BeyondTrust RCE flaw now exploited in attacks, patch now
A critical pre-authentication remote code execution vulnerability in BeyondTrust Remote Support and Privileged Remote Access appliances is now being exploited in attacks after a PoC was published online.