⚠️ VULNERABILITY DISCLOSURE 2[−]
14 SepHow Curl Beat the Odds with Decades of Security WinsFor over 20 years, Curl has been quietly dominating as one of the most secure and well-maintained open-source tools in the world. In this short, viewers get a glimpse into what makes Curl so unique — from detailed vulnerability logs to long-term studies that most projects only dr…YOUTUBE.COM
14 SepFBI warns of UNC6040, UNC6395 hackers stealing Salesforce dataThe FBI has issued a FLASH alert warning that two threat clusters, tracked as UNC6040 and UNC6395, are compromising organizations' Salesforce environments to steal data and extort victims. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 2[−]
14 SepWeb Searches For Archives, (Sun, Sep 14th)Johannes wrote a diary entry " Increasing Searches for ZIP Files " where he analyzed the increase of requests for ZIP files (like backup.zip, web.zip, ...) for our web honeypots.
ISC.SANS.EDU
14 SepUpcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak: I’m speaking and signing books at the Cambridge Public Library on October 22, 2025 at 6 PM ET. The event is sponsored by Harvard Bookstore. I’m giving a virtual talk about my book Rewiring Democracy at 1 PM ET on O…SCHNEIER.COM
📡 INFOSEC NEWS 1[−]
14 SepNew VoidProxy phishing service targets Microsoft 365, Google accountsA newly discovered phishing-as-a-service (PhaaS) platform, named VoidProxy, targets Microsoft 365 and Google accounts, including those protected by third-party single sign-on (SSO) providers such as Okta. [...]BLEEPINGCOMPUTER.COM