#CISA warns of five-year-old #GitLab flaw exploited in attacks
BleepingComputer
CISA warns of five-year-old GitLab flaw exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their systems against a five-year-old GitLab ...
 #FOSS #cybersecurity
#EDRkiller tool uses signed #kernel driver from forensic software
BleepingComputer
EDR killer tool uses signed kernel driver from forensic software
Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in attempts to deactivate...
 #EnCase #cybersecurity #EDR #DigitalForensics
New #AmaranthDragon #cyberespionage group exploits #WinRAR flaw
BleepingComputer
New Amaranth Dragon cyberespionage group exploits WinRAR flaw
A new threat actor called Amaranth Dragon, linked to APT41 state-sponsored Chinese operations, exploited the CVE-2025-8088 vulnerability in WinRAR ...
 #cybersecurity
#FBI Couldn’t Get into #WaPo Reporter’s #iPhone Because It Had #LockdownMode Enabled
404 Media
FBI Couldn’t Get into WaPo Reporter’s iPhone Because It Had Lockdown Mode Enabled
Lockdown Mode is a sometimes overlooked feature of Apple devices that broadly make them harder to hack. A court record indicates the feature might ...
 #cybersecurity #Apple #journalism
US #spy #satellite agency declassifies high-flying #ColdWar listening post
Ars Technica
US spy satellite agency declassifies high-flying Cold War listening post
The JUMPSEAT satellites loitered over the North Pole to spy on the Soviet Union.
 #surveillance #JUMPSEAT
#Coinbase confirms insider breach linked to leaked support tool screenshots
BleepingComputer
Coinbase confirms insider breach linked to leaked support tool screenshots
Coinbase has confirmed an insider breach after a contractor improperly accessed the data of approximately thirty customers, which BleepingComputer ...
 #cybersecurity #privacy #DataBreach
#StepFinance says compromised execs' devices led to $40M #crypto theft
BleepingComputer
Step Finance says compromised execs' devices led to $40M crypto theft
Step Finance announced that it lost $40 million worth of digital assets after hackers compromised devices belonging to the company's team of e...
 #cybersecurity #finance
Wave of #Citrix #NetScaler scans use thousands of residential proxies
BleepingComputer
Wave of Citrix NetScaler scans use thousands of residential proxies
A coordinated reconnaissance campaign targeting Citrix NetScaler infrastructure over the past week used tens of thousands of residential proxies to...
 #cybersecurity #proxy