Over Security

NoName057 is a pro-Russian hacker group that was targeted by Europol’s Operation Eastwood in July 2025.

Microsoft has resolved a known issue that was causing security applications to incorrectly flag a core Windows component, the company said in a service alert posted this week.

In our previous article, we reported on the ransomware attack against Avosina Healthcare Solutions, a company providing billing and IT support services to

Microsoft Patch Tuesday gennaio 2026: 112 vulnerabilità corrette e tre zero-day, una già sfruttata. Aggiornamenti critici per Windows e Secure Boot

Microsoft ha annunciato lo smantellamento di un servizio di abbonamento globale dedicato alla criminalità informatica responsabile di frodi per 40 milioni di dollari in un anno solo negli Usa. Ecco cosa significa questa operazione contro il marketplace RedVDS che unisce un approccio legale e operativo

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push Security shares new insights from continued tracking, community research, and evolving attacker techniques.

Researchers identified an attack method dubbed "Reprompt" that could allow attackers to infiltrate a user's Microsoft Copilot session and issue commands to exfiltrate sensitive data.

Cyberattack forces Belgian hospital to transfer critical care patients

Cloud marketplace and distributor Pax8 has confirmed that it mistakenly sent an email to fewer than 40 UK-based partners containing a spreadsheet with internal business information, including MSP customer and Microsoft licensing data.

The Department of Education in Victoria, Australia, notified parents that attackers gained access to a database containing the personal information of current and former students.

Terryn’s path to cybersecurity started with a fascination for criminal forensics and a knack for jailbreaking his family's tech — interests that eventually steered him toward the fast-paced world of digital investigations.

"Truman Show" è una nuova forma di frode finanziaria che genera una realtà sintetica alimentata dall'IA per ingannare le vittime.

La missione SAGA e le mosse di Cina, Usa e Russia: la corsa globale per proteggere i dati grazie alla fisica dei fotoni è entrata nel vivo

Microsoft confirmed that a recent Windows 365 update is blocking customers from accessing their Microsoft 365 Cloud PC sessions.

Il report WEF 2026 smonta l'illusione del controllo tecnologico. L'AI moltiplica rischi sotto l'etichetta dell'innovazione, la geopolitica rende il cyber spazio asimmetrico e le supply chain rivelano dipendenze invisibili. La cyber security diventa capacità di scegliere sotto vincolo, rendendo espliciti i compromessi tra protezione e business

Learn about a new phishing campaign targeting German manufacturing companies using CVE-2024-43451.

Monroe University revealed that threat actors stole the personal, financial, and health information of over 320,000 people after breaching its systems in a December 2024 cyberattack.

This blogpost explore how Landlock as an interesting security mechanism and a valuable source of telemetry for detection engineering.

La sicurezza informatica nell’era dell’intelligenza artificiale e del calcolo quantistico: cosa ci aspetta e come prepararsi ad anticipare le minacce prima che diventino reali

Explore the tactics used in selective content attacks targeting Googlebot and how to recognize and address these vulnerabilities.

Officials of Ukraine's Defense Forces were targeted in a charity-themed campaign between October and December 2025 that delivered backdoor malware called PluggyApe.

A newly discovered advanced cloud-native Linux malware framework named VoidLink focuses on cloud environments, providing attackers with custom loaders, implants, rootkits, and plugins designed for modern infrastructures.