ReversingLabs researchers have uncovered a sophisticated malware campaign by Banana Squad targeting developers through 67 compromised GitHub repositories. The threat group used advanced obfuscation techniques to disguise malicious Python tools as legitimate security software, successfully evading detection while compromising developer systems.
#SecurityLand #ThreatHorizon #CyberSecurity #GitHub #Malware #SupplyChain #BananaSquad
🚨Critical security vulnerability (CVSS 10.0) discovered in Pterodactyl Panel! Attackers can execute code without authentication. Game server admins must update to v1.11.11 immediately to prevent compromise.
#SecurityLand #CyberWatch #Cybersecurity #GameServers #Pterodactyl #SecurityVulnerability #CVSS
XenServer VM Tools vulnerabilities let attackers gain kernel privileges on Windows VMs. If you run virtualized Windows environments, patch NOW!
#SecurityLand #CyberWatch #XenServer #CVE #VirtualizationSecurity #Windows #Vulnerability
🚨 $223M stolen from Cetus Protocol but there's hope: Sui validators froze the funds! Unprecedented blockchain recovery effort underway. Will crypto's newest safety net work?
#SecurityLand #BreachBreakdown #Cybersecurity #CetusProtocol #DeFi #Blockchain #CetusHack
ENISA announces Cyber EUnnovate 2025, a premier cybersecurity innovation conference in Athens exploring AI integration, post-quantum readiness, and secure semiconductor technologies. Join industry leaders on September 11, 2025.
#SecurityLand #News #CyberEUnnovate #ENISA #Cybersecurity #Innovation #Conference #PostQuantum #AI
Europol coordinates international law enforcement operation Operation RapTor, successfully dismantling major dark web criminal networks with 270 arrests across ten countries, seizure of €184 million, and significant disruption to illegal online marketplaces.
#SecurityLand #News #Cybersecurity #LawEnforcement #DarkWeb #Darknet #LEA #RapTor #Europol #Cybercrime
🚨 FBI & CISA issue joint advisory on LummaC2 malware targeting critical infrastructure. This sophisticated information stealer uses fake CAPTCHAs and software impersonation to steal financial credentials, crypto wallets, and MFA details. 71.7% increase in attacks reported. Organizations must implement comprehensive defense strategies immediately.
#SecurityLand #ThreatHorizon #Cybersecurity #Malware #LummaC2 #CriticalInfrastructure #FBI #CISA
Critical security flaws discovered in VMware core products including vCenter Server and ESXi. Vulnerabilities could allow command execution and service disruption. Updates available now to protect your infrastructure.
#SecurityLand #CyberWatch #Broadcom #VMware #Vulnerability #PatchNow #SecurityVulnerability #Technology
CERT Orange Polska successfully defended against a massive 1.3 Tbps DDoS attack targeting a major Polish company. Learn how their preparation and expertise prevented what could have been devastating digital damage.
#SecurityLand #CyberWatch #Poland #DDoS #Cyberattack #Cybersecurity #CERT #DDoSAttack
CISA has issued an urgent advisory about six actively exploited vulnerabilities affecting Ivanti EPMM, Zimbra, Output Messenger, and other enterprise systems. Learn which systems are at risk and what actions your organization should take immediately to protect critical infrastructure.
#SecurityLand #CyberWatch #CISA #Vulnerability #Ivanti #EPMM #Zimbra #OutputMessenger #EnterpriseSecurity #SecurityExploit #CriticalInfrastructure #Government
Read More: https://www.security.land/us-government-warns-about-six-actively-exploited-vulnerabilities/
The Tor Project just released Oniux, a game-changing security tool that uses Linux namespaces to force all application traffic through Tor. Unlike traditional solutions, Oniux provides kernel-level isolation that prevents even accidental data leaks. Perfect for journalists, researchers, and privacy advocates who need rock-solid traffic isolation.
#SecurityLand #SkillsLab #TOR #Oniux #TorProject #OpenSource #Network #Linux #NetworkIsolation
Pwn2Own Berlin concludes with Singapore's STAR Labs claiming the "Master of Pwn" title and $320,000! Ethical hackers uncovered 28 zero-day vulnerabilities across AI platforms, virtualization software, and operating systems, demonstrating how security competitions drive industry improvement.
#SecurityLand #News #Cybersecurity #Event #Pwn2Own #ZeroDay #Vulnerability #Research #OffensiveCon
🚨 A critical vulnerability (CVE-2025-47275) in the Auth0 SDK exposes Symfony, Laravel, and WordPress users to brute-force session attacks. Okta has released patches—learn how to protect your application now.
#SecurityLand #CyberWatch #Auth0 #Okta #PHP #Laravel #WordPress #Symfony #Vulnerability #Patch
89 million Steam authentication SMS records appear on dark web, but Valve insists no direct breach occurred. What does this mean for your account security? Discover what data was actually exposed and why gaming's biggest platform says your account remains safe.
#SecurityLand #News #DataBreach #Steam #Valve #DataLeak #SMS
Critical vulnerability allows attackers to bypass authentication on Fortinet devices. Is your network infrastructure at risk? Discover which versions are vulnerable and how to protect your systems immediately.
#SecurityLand #CyberWatch #CyberSecurity #Fortinet #Vulnerability #FortiOS
A previously unknown ransomware group called Nova is making headlines with its bold entry into the cybercrime scene. Security researchers have just begun tracking the group after it claimed responsibility for multiple attacks — one of the most recent targeting the Municipality of Pisa.
#SecurityLand #ThreatHorizon #CyberThreat #Ransomware #NovaGroup #CyberSecurity #Pisa #EmergingThreats #Cybercrime
Read More: https://www.security.land/new-ransomware-group-nova-emerges-latest-target-municipality-of-pisa/
Japan's Ministry of Defense confirms losing roughly 1700 documents from the 90s containing personal info. An apology has been issued.
#SecurityLand #CyberWatch #Japan #DataLoss #Privacy #Japan #MinistryOfDefense #DataSecurity
Read More: https://www.security.land/japan-ministry-of-defense-reports-loss-of-personal-data-documents/
🚨 The Amsterdam Police and FBI have successfully dismantled Anyproxy, a criminal proxy service used by cybercriminals for two decades to commit phishing, ransomware, and data theft. Discover the details of Operation Moonlander and find out how to protect your own devices!
#SecurityLand #News #Anyproxy #Cybercrime #FBI #AmsterdamPolice #Infosec #Politie #NL #USA #Proxy
The Essential Guide to Incident Response for Small Businesses cuts through the jargon to provide practical, actionable steps for preparing for, responding to, and recovering from security incidents.
#SecurityLand #BusinessShield #Cybersecurity #IncidentResponse #Guide #SmallBusiness
Read More: https://www.security.land/the-essential-guide-to-incident-response-for-small-businesses/
Toronto largest school board confronts every parent's nightmare as student records remain compromised despite ransom payment. The TDSB PowerSchool breach exposes decades of sensitive student information with cybercriminals now making direct extortion attempts.
#SecurityLand #BreachBreakdown #DataBreach #School #Ransom #CyberSecurity #Education
Read More: https://www.security.land/tdsb-student-data-breach-ransom-paid-but-information-still-compromised/
