Officials argue the policy is necessary to protect citizens due to a sharp increase in online fraud and cybercrime.
#CybersecurityNews
CISA has added CVE-2021-26829
(OpenPLC/ScadaBR XSS) to the Known Exploited Vulnerabilities Catalog.
XSS vulnerabilities in ICS/SCADA environments remain a dependable avenue for attackers, and CISA is urging organizations - not just federal - to prioritize remediation.
How does your team track and respond to KEV updates?
🔔 Follow TechNadu for balanced, non-sensational cybersecurity coverage.
#infosec #CISA #KEV #ICS #SCADA #OpenPLC #OTSecurity #XSS #vulnerabilitymanagement #riskmanagement #cybersecuritynews #threatintel
A threat actor claims to have leaked 2.3TB of data from Almaviva, the IT services provider for FS Italiane Group.
Experts say the structure and recency of the files look consistent with modern ransomware/data broker operations.
Almaviva confirmed a cyber incident, isolated affected systems, and notified authorities. Core services remain operational.
💬 Thoughts on the broader supply-chain implications?
👍 Follow TechNadu for more threat intelligence coverage.
#Infosec #ThreatIntel #DataBreach #Italy #FSItaliane #Almaviva #RansomwareOps #CriticalInfrastructure #CyberSecurityNews
OFAC + U.K. + Australia sanction Media Land LLC for providing bulletproof hosting to LockBit, BlackSuit, Play, Evil Corp & Black Basta.
Volosovik (Yalishanda), Zatolokin & Pankova named, along with ML Cloud, MLT & DC Kirishi.
Follow @technadu for continuous threat intel.
#CybersecurityNews #Ransomware #LockBit #ThreatIntel
CISA has issued a 7-day patch directive for actively exploited Fortinet FortiWeb vulnerability CVE-2025-64446 (rated 9.1 critical).
Researchers have confirmed exploitation, and reports indicate a zero-day version was being sold on underground forums. Hundreds of vulnerable appliances are visible online.
Is this an example of a necessary emergency directive - or a sign that vendors need more transparent patch timelines?
💬 Share your thoughts.
👍 Follow us for more detailed, unbiased cybersecurity coverage.
#Infosec #CISA #Fortinet #CVE202564446 #ThreatHunting #VulnerabilityManagement #CybersecurityNews
More on the proposed ban of #tplink #routers in the #USA
#CybersecurityNews #CyberSecurity #soho
https://krebsonsecurity.com/2025/11/drilling-down-on-uncle-sams-proposed-tp-link-ban
Global law enforcement just took down a cybercrime network that hit 4.3M victims and caused over €300M in losses. How did cutting-edge tech and unprecedented international teamwork pull it off? Discover the story behind Operation Chargeback.
#operationchargeback
#cybercrime
#creditcardfraud
#internationalcooperation
#lawenforcement
#financialcrime
#europol
#cybersecuritynews
#moneylaundering
100,000 WordPress Sites Affected by Privilege Escalation Vulnerability in AI Engine WordPress Plugin
We urge users to update their sites with the latest patched version of AI Engine, (3.1.4) and change the token in the settings page, as soon as possible.
#wordpress #wordpressecurity #wordpresssecuritynews #cybersecurity #cybersecuritynews #wordfence #bugbounty
A hidden bug from 2014 in the Linux kernel is making a comeback—this time fueling ransomware attacks on major systems. Could your setup be at risk?
#cve20241086
#linuxsecurity
#ransomware
#privilegeescalation
#cybersecuritynews
A former L3Harris exec just pleaded guilty to selling $35M in digital exploits for crypto. How deep does this cyber arms race really go? Dive into the dark side of the digital marketplace.
🐔 Why did the chicken cross the road? To read our latest DIESEC Top 5 Cybersecurity News Round-up! 📰
As spooky season hits full swing, we’re covering the scariest thing of all — cyber attacks.
This week:
🎃 Gift card fraud on the rise
🚗 The chilling cost of the Jaguar Land Rover hack
💀 Plus 3 more must-read stories
Read more 👉 https://diesec.com/2025/10/top-5-cybersecurity-news-stories-october-23-2025/
"Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft's July Patch"
https://thehackernews.com/2025/10/chinese-threat-actors-exploit-toolshell.html
I've lost count on how many times Microsoft has patched a security flaw only for the patch to not work or be bypassed.
I'm sure "FUCK Microsoft!!" is what many admin's are saying right now.
Microsoft bullshit like this is why I run #Linux
#CyberSecurityNews #TechNews #Chinese #Exploit #Microsoft #SharePoint #Windows #WindowsServer
"#Hackers Deploy #Linux #Rootkits via #Cisco #SNMP Flaw in 'Zero Disco' Attacks"
https://thehackernews.com/2025/10/hackers-deploy-linux-rootkits-via-cisco.html
In all my years in cybersecurity, I've always felt SNMP was not a good idea & should be turned off.
I know many network admins will dislike me saying that but I always turn it off.
Even the version with tacked on security #SNMPv3 has had #Vulnerabilities & many places run older SNMP & not v3.
I feel maybe it's time for something new.
Pyrzout
(@)jos1264(@)social.skynetcloud.site
Windows 11 24H2/25H2 Update Blocks Mouse and Keyboard in Recovery Mode https://cybersecuritynews.com/windows-11-24h2-25h2-update-blocks-recovery/ #cybersecuritynews #TechNews #Windows
📰 BREAKING CYBERSECURITY NEWS! 📰
It’s Friday — almost the weekend 🎉 and time for our top 5 cybersecurity stories of the week.
This week’s headlines:
🏦 Breach at Sotheby’s — is your data on the auction block?
💥 Prosper breach exposes 176M user accounts
🧠 Plus 3 more must-know stories
Read more 👉 https://diesec.com/2025/10/top-5-cybersecurity-news-stories-october-17-2025/
https://get.mypost.to/35oK5Q
Along with the release of Kali Linux 2025.3, a major update introduces an...
#cybersecurity #Nmap #plugin #cybersecuritynews
A VPN review that actually matters: Proton VPN gets a glowing report! Nonprofit-owned, solid security protocols, great for torrenting, and a free tier with *no data limits*. They even debunked a WireGuard vulnerability claim. What feature makes or breaks a VPN for you?
https://www.engadget.com/cybersecurity/vpn/proton-vpn-review-2025-a-nonprofit-service-with-premium-performance-153046073.html?src=rss #VPNReview #PrivacyTech #CybersecurityNews #Proton
A $4.5 million prize pool isn’t just for show—it’s sparking a cybersecurity revolution. Top companies are backing a contest that dares hackers to nail vulnerabilities in cloud and AI tools. Ready to see the future of digital defense?
https://thedefendopsdiaries.com/zeroday-cloud-hacking-contest-a-new-era-for-cloud-and-ai-security/
#cloudsecurity
#zerodaycontest
#aisecurity
#bugbounty
#cybersecuritynews
Microsoft Defender is stirring up trouble—bogus BIOS alerts, misflagged emails, even Mac crashes. Can your trusted security tool really keep up when glitches hit?
#microsoftdefender
#securitysoftware
#falsepositives
#cybersecuritynews
#machinelearningsecurity
Tired of buggy add-ons ruining your browsing? Mozilla’s new rollback feature lets developers undo a problematic update in just 24 hours—keeping your experience smooth and secure. Curious how it works?
#firefox
#mozilla
#browsersecurity
#addondevelopment
#cybersecuritynews
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst