24Articles
4Categories
2025-06-21Date
⚠️ VULNERABILITY DISCLOSURE 5[−]
21 JunAI Vulnerabilities and the Gentle Singularity: A Deep Dive with Project SynapseIn this thought-provoking episode of Project Synapse, host Jim and his friends Marcel Gagne and John Pinard delve into the complexities of artificial intelligence, especially in the context of cybersecurity. The discussion kicks off by revisiting a blog post by Sam Altman about r…CYBERSECURITYTODAY.LIBSYN.COM
21 JunThe $120M DeFi Scam No One Saw Coming! 😱A hacker just pulled off one of the most shocking DeFi exploits, manipulating a price feed to trick a crypto platform into minting millions. This is the BonkDAO hack—a $120M lesson in how vulnerable Web3 still is. How did they do it? And why does crypto keep falling for the same …YOUTUBE.COM
21 JunWhy Your Security Strategy is Failing (And How to Fix It) 🚨Most companies are stuck in a never-ending game of security whack-a-mole—patching one vulnerability at a time while missing the bigger picture. In this short, cybersecurity expert Jack reveals why traditional AppSec strategies are failing and how a shift in mindset can make all t…YOUTUBE.COM
21 JunOpen Directories Exposes Publically Available tools Used by HackersA series of misconfigured web servers have been uncovered, revealing a treasure trove of publicly accessible tools and tactics employed by malicious actors targeting critical infrastructure. These exposed open directories, discovered through Hunt’s advanced scanning capabil…GBHACKERS.COM
21 JunWordPress Motors theme flaw mass-exploited to hijack admin accountsHackers are exploiting a critical privilege escalation vulnerability in the WordPress theme "Motors" to hijack administrator accounts and gain complete control of a targeted site. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 5[−]
21 JunAflac Finds Suspicious Activity on US Network That May Impact Social Security Numbers, Other DataAflac said that it’s in the early stages of a review of the incident, and so far is unable to determine the total number of affected individuals. The post Aflac Finds Suspicious Activity on US Network That May Impact Social Security Numbers, Other Data appeared first on SecurityW…SECURITYWEEK.COM
21 JunScattered Spider Behind Cyberattacks on M&S and Co-op, Causing Up to $592M in DamagesThe April 2025 cyber attacks targeting U.K. retailers Marks & Spencer and Co-op have been classified as a "single combined cyber event." That's according to an assessment from the Cyber Monitoring Centre (CMC), a U.K.-based independent, non-profit body set up by the insurance…THEHACKERNEWS.COM
21 JunHow Fast Can a Hacker Move Through Your Network?When a breach happens, it’s not just about if they get in — it’s about how fast they move once they’re inside. In this short, Greg explains how lateral movement works and how security teams use real-time network diagrams to trace attacker pathways instantly. With context-rich ins…YOUTUBE.COM
21 JunSurge in XSS Cyberattacks Targets Popular Webmail Platforms, ESET ReportsA recent report from ESET has uncovered a sophisticated cyber espionage campaign by the Russia-aligned Sednit group, targeting high-value webmail platforms through cross-site scripting (XSS) attacks. Dubbed Operation RoundPress, this operation has compromised popular webmail serv…GBHACKERS.COM
21 JunCyber War Games: Can YOU Spot the Threat?In a high-stakes cybersecurity drill, the red team launches a simulated attack while the blue team scrambles to detect and neutralize the threat. But what happens when the defenders spot something unusual? This real-world cyber war game puts security experts to the test—can they …YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 13[−]
21 JunReview: Learning Kali Linux, 2nd Editionsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/06/16/review-learning-kali-linux-2nd-edition/INFOSEC.PUB
21 JunADS & Python Tools, (Sat, Jun 21st)Ehsaan Mavani talks about Alternate Data Streams (ADS) in diary entry " Alternate Data Streams ? Adversary Defense Evasion and Detection [Guest Diary] ". ISC.SANS.EDU
21 JunWeekly Update 457Presently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. Firstly, apologies for the annoying clipping in the audio. I use a Rode VideoMic that's a shotgun style that plugs straight into the iPhone and it's usually…TROYHUNT.COM
21 JunIranian Hacktivist Attacking Israeli Military, Government, and Infrastructure TargetsOver 35 different pro-Iranian hacktivist organizations launched a coordinated attack on Israeli military, government, and key infrastructure targets in a dramatic escalation of cyberwarfare. This surge in activity starkly contrasts with the limited response from just 4-5 identifi…GBHACKERS.COM
21 JunWhy Blockchain Is Still a Nerd’s Playground 🧑‍💻Most people still don’t understand blockchain — and that’s a problem. In this short, a cybersecurity expert breaks down why Web3 hasn’t gone mainstream and how bridging Web2 and Web3 could change everything. It’s not just about finance anymore — it’s about making tech for everyon…YOUTUBE.COM
21 JunMicrosoft Announces New Graph Powered Detection of Hybrid Attack Targeting OrganizationsMicrosoft has unveiled a groundbreaking advancement in cybersecurity with the integration of the Enterprise Exposure Graph into its threat detection and response capabilities. This cutting-edge solution, part of Microsoft Defender XDR and Microsoft Security Exposure Management (M…GBHACKERS.COM
21 JunHow ‘Need to Know’ is Failing in the Age of AICybersecurity is built on the "need to know" principle—but is it failing in the age of AI? 🤯 Right now, access control decisions rely on human discretion, but what happens when large language models need to follow the same rules? There’s no codified system, just fragmented data p…YOUTUBE.COM
21 JunCyber Security Card Gamesubmitted by LockheedTheDragon to cybersecurity 1 points | 0 comments I’m trying to find out the name of this card game? I took this photo 7 years ago. I’m also interested in any other cyber security related games people know of. I’m already aware of Elevation of Privilege (EoP) …SH.ITJUST.WORKS
21 JunHow to Scale Your Cloud Security Like a ProScaling cloud security isn't just about tech—it's about empowering experts! 🚀 In this short, Marina Segal explains how her team of cloud pros is revolutionizing security by automating workflows and making engineers superhuman. Think of it like a self-driving car—autopilot for sec…YOUTUBE.COM
21 JunDuckDuckGo Browser’s Scam Blocker to Guard Against Phishing and Malware SitesDuckDuckGo has rolled out an advanced update to its browser’s built-in Scam Blocker, a robust security feature designed to shield users from a wide array of online threats, including phishing sites, malware, and sophisticated scams. Now integrated into the DuckDuckGo browser for …GBHACKERS.COM
21 JunCISOs: Want Influence? Stop Playing It SafeCybersecurity leaders are done playing it safe—and it's about time. In this powerful clip, Ben Carr and Jinan Budge dive deep into the mindset shift CISOs must embrace if they want real influence. Playing by the old rules won’t cut it anymore. From challenging the status quo to p…YOUTUBE.COM
21 JunCyberWarfare on the Rise With Surge in Hacktivist Activity Following Israel-IranCyberspace has become a crucial battlefield in addition to conventional combat since the open conflict between Israel and Iran broke out. Following Israeli airstrikes on Iranian nuclear and military sites and Iran’s retaliatory missile salvos, both nations recognized as formidabl…GBHACKERS.COM
21 JunRussian hackers bypass Gmail MFA using stolen app passwordsRussian hackers bypass multi-factor authentication and access Gmail accounts by leveraging app-specific passwords in advanced social engineering attacks that impersonate U.S. Department of State officials. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 1[−]
21 JunWhen a 'Lazy' Web Hacker Dives into Binary Protocols...When a self-proclaimed "lazy" web hacker ventures beyond JavaScript and HTML into the depths of binary protocols, the result is jaw-dropping. He uncovers how SQL injection isn't just alive — it's evolving, with query smuggling at the protocol level. 🤯 Cybersecurity experts couldn…YOUTUBE.COM