Over Security

Cloudflare has shared more details about a recent 25-minute Border Gateway Protocol (BGP) route leak affecting IPv6 traffic, which caused measurable congestion, packet loss, and approximately 12 Gbps of dropped traffic.

The European Commission is now investigating whether X properly assessed risks before deploying its Grok artificial intelligence tool, following its use to generate sexually explicit images.

La Commissione Europea aggiorna le FAQ sul Data Act, fornendo chiarimenti pratici su accesso e uso dei dati, interoperabilità dei servizi digitali e rispetto delle norme UE, tra cui il GDPR, per supportare aziende e professionisti nella compliance e nella gestione sicura dei dati. Tutto quello che c’è da sapere

A new malware toolkit called 'Stanley' spoofs websites while keeping the address bar intact and guarantees Chrome Web Store approval.

Internet security watchdog Shadowserver tracks nearly 800,000 IP addresses with Telnet fingerprints amid ongoing attacks exploiting a critical authentication bypass vulnerability in the GNU InetUtils telnetd server.

Okta misconfigurations can quietly weaken identity security as SaaS environments evolve. Nudge Security shows six Okta security settings teams often overlook and how to fix them.

I ricercatori di ESET hanno scoperto che il tentativo di attacco contro le infrastutture del settore energetico in Polonia sarebbe opera di Sandworm.

Negli ultimi dodici mesi l’attività cyber della Russia è aumentata contro Paesi Nato ed europei, colpendo più spesso infrastrutture critiche. Il caso più recente è l’attacco di fine dicembre 2025 alla rete elettrica polacca. La cosa più grave è che il conflitto si è normalizzato. Può essere un passo verso l'escalation

The defense mechanisms that NPM introduced after the 'Shai-Hulud' supply-chain attacks have weaknesses that allow threat actors to bypass them via Git dependencies.

CISA has flagged a critical VMware vCenter Server vulnerability as actively exploited and ordered U.S. federal agencies to secure their servers within three weeks.

Learn how high-quality TI feeds reduce alert fatigue, prevents analyst burnout, and compensate for staff shortages in your SOC.

La Cina sta blindando le proprie comunicazioni investendo nella cifratura quantistica, mentre sta potenziando la capacità di calcolo dedicata alla "decryption" dei sistemi altrui. Questa asimmetria dà vita a un rischio che molti sottovalutano, ma che è già operativo: la strategia "Harvest Now, Decrypt Later". Ecco il triangolo del rischio, fra AI, Quantum e spazio

OpenAI is testing a big upgrade for ChatGPT's temporary chat feature. The update will allow you to retain personalization in temporary chat, and still block temporary chat from influencing your account.

The 1Password digital vault and password manager has added built-in protection against phishing URLs to help users identify malicious pages and prevent them from sharing account credentials with threat actors.

Resource Corporation of America (RCA) is a U.S.-based company operating in the healthcare financial and administrative services sector, headquartered in Clear

The 1Password digital vault and password manager has added built-in protection against phishing URLs to help users identify malicious pages and prevent them from sharing account credentials with threat actors.

Microsoft is investigating reports that some Windows 11 devices are failing to boot with "UNMOUNTABLE_BOOT_VOLUME" errors after installing the January 2026 Patch Tuesday security updates.

Dalle normative più severe e le crescenti minacce informatiche all'aumento delle aspettative dei clienti, il rischio per la privacy non è più un problema esclusivamente IT. È una priorità aziendale a livello di Consiglio di amministrazione

Anche quest’anno l’ass. Berghem-In-The-Middle sarà concentrata sull’organizzazione del nostro evento principale, No Hat Computer Security Conference, che in ogni edizione …

GitLab has become the de facto standard for managing the software lifecycle within enterprises. It offers a huge number of features, adapts to almost any requirement, and for this reason it is a broad and complex piece of software.

Microsoft has released emergency, out-of-band updates on Saturday for Windows 10, Windows 11, and Windows Server to fix an issue that prevented Microsoft Outlook from opening when using PSTs stored in cloud storage.

A cyberattack targeting Poland's power grid in late December 2025 has been linked to the Russian state-sponsored hacking group Sandworm, which attempted to deploy a new destructive data-wiping malware dubbed DynoWiper during the attack..

The North Korean hacker group Konni (Opal Sleet, TA406) is using AI-generated PowerShell malware to target developers and engineers in the blockchain sector.

Il primo hackerspace bresciano, nato per promuovere la cultura open-source tramite la condivisione di idee, risorse ed esperienze!

The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, enabling threat actors to breach corporate SaaS platforms and steal company data for extortion.