Aggregator

New StorybyPaulo RigonatobyPaulo Rigonato@paulorigonatoProfissional de segurança cibernética com fo

New StorybyFard JohnmarbyFard Johnmar@fjohnmar | Founder at Enspektos, LLCBuilder, futurist and fou

Your browser does not support the audio element.SpeedVoice

Let’s Encrypt has announced its roadmap for post-quantum Web PKI, centering on a novel approach called Merkle Tree Certificates (MTCs), a design that delivers quantum-resistant authentication without bloating TLS handshakes or breaking the web’s performance expectations. Traditional X.509 certificate chains require significant bandwidth, which would increase substantially with the adoption of robust post-quantum algorithms. MTCs […]

The post Let’s Encrypt Unveils Merkle Tree Certificates to Secure the Web Against Quantum Threats appeared first on Cyber Security News.

The threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services (AWS), Google Cloud, and Microsoft Azure to create a covert SMTP email relay network. "Compromised business servers across the U.S., Europe, and Asia were quietly converted into SMTP proxies, verified for mail relay capability, and synced to a downstream consumer every five minutes," Hunt.io said in

Threat Intelligence / Cloud SecurityThe threat actor known as PCPJack has hijacked cloud servers a

从1～3月全球新车销售来看，中国比亚迪从上年同期的第6位跌至第11位。受中国市场低迷影响，比亚迪自2024年1～3月的8个季度以来首次跌出全球前10。一方面，印度业务强劲的铃木超过本田等，从第10位上

Власти дали генералам 18 месяцев, чтобы сформировать новое ведомство.

A keyless car can be stolen in under a minute. Two people, a pair of cheap radio amplifiers, and a fob sitting on a hallway table inside the house. That is enough. No broken glass. No alarm. No sound. Most keyless cars remain vulnerable The vulnerability runs across the global market. Germany’s largest auto club, ADAC, runs ongoing tests of keyless models against relay attacks. The rolling series has now covered more than 800 vehicles, … More →

The post Thieves can pull off keyless car theft in under a minute and here’s how to stop them appeared first on Help Net Security.

The threat intelligence community has spent decades building frameworks to assess how dange

Администраторы даже не замечали утечек из-за красивого интерфейса Microsoft.

6月5日，追觅科技创始人兼首席执行官俞浩的微博账号被禁言，页面显示「因违反相关法律法规，该用户目前处于禁言状态」。截至发稿，该账号已四天未发布新的内容，粉丝数62.8万。不过，俞浩抖音、视频号、B站平

In this Help Net Security video, Amit Gautam, CTO at Abluva, explains the security risks that autonomous AI agents bring into enterprise environments. He opens with a real case: a reconciliation agent at a financial services firm had legitimate access to a customer database. A poison instruction from upstream changed its behavior, and it scanned the entire table, extracting six million records and posting them to a Slack webhook that sent them outside the company. … More →

The post AI agent governance gets harder when agents outnumber your people appeared first on Help Net Security.

A CVSS score 6.7 AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'David Bors (@davidxbors), Catalin Iovita (@ciovita)' was reported to the affected vendor on: 2026-06-05, 16 days ago. The vendor is given until 2026-10-03 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.0 AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Lunbun LLC (Landon Peng)' was reported to the affected vendor on: 2026-06-05, 16 days ago. The vendor is given until 2026-10-03 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Microsoft has released a security update addressing a critical vulnerability in Microsoft Edge that could allow remote attackers to execute arbitrary code on vulnerable systems. Tracked as CVE-2026-45495 and reported by Orange Tsai of DEVCORE, the flaw carries a CVSS v3 score of 7.5 and requires user interaction, for example, visiting a malicious webpage or […]

The post Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code appeared first on Cyber Security News.

​头条讲的是大脑，注脚讲的是性格。

Один неосторожный клик открывает двери туда, куда пользователь точно не собирался.

Autonomous AI is taking action inside enterprise IT environments. Software is restarting services, isolating risky devices, and applying patches without waiting for a human to approve the step. The capability is spreading at the same time IT professionals are reporting frequent encounters with AI output errors that can carry operational impact. Ivanti’s 2026 AI Maturity Report, drawn from responses by 1,500 IT professionals across six countries, finds that 68% have personally seen AI produce hallucinations … More →

The post Most pros have seen AI hallucinations in IT operations appeared first on Help Net Security.