☆ Cybersecurity reporter
★ Newsletters at Risky Business
#infosec #cybersecurity
https://risky.biz
Catalin Cimpanu
Loading...
No US Cyber Force this year
New cyber military branch was voted out of the NDAA in a Senate committee
therecord.media/cyber-force-...
There's a new remote access trojan being sold online under a MaaS model. Named SilabRAT, this one is sometimes detected by some engines as "Hijackloader."
The thing that stands out here is the insane monthly price of $5,000. Yeah, good luck with that!
www.group-ib.com/blog/silabra...
"have avoided arrest" ... for now
The arrests came pouring in the other race riots last year after a few weeks
Authorities seize a crypto-laundering service named AudiA6 that was being used by ransomware crews to launder payments
www.europol.europa.eu/media-press/...
phpBB patched a major vulnerability that can allow threat actors to hijack any users' session.
The bug impacts all phpBB versions released over the past decade.
Forums are vulnerable in their default setup if OAuth authentication is enabled.
www.aikido.dev/blog/phpbb-a...
Poland passes 5-year prison sentences for "trash streaming" aka the streaming of abusive materials like crushing of animals, rape, murders, humiliation of other citizens
www.usnews.com/news/world/a...
Russian hacker part of the Void Blizzard (Laundry Bear) APT has been extradited to the US
www.reuters.com/legal/govern...
Oracle has released an out-of-band security alert for an unauth RCE in PeopleSoft
CVE-2026-35273
www.oracle.com/security-ale...
Npm will block all auto-running installation scripts starting next month with the release of version 12.0.
The change is meant to counter the rising number of supply-chain attacks taking place on the platform
github.blog/changelog/20...
A new cyber-espionage group is behind spear-phishing campaigns seeking to infect members of the Cambodian government.
Two separate campaigns have targeted the country's defense and public works sectors.
www.acronis.com/en/tru/posts...
