US organizations are being advised to make sure they have systems in place to detect and honor Global Privacy Control (GPC) signals,…
Date Archives September 2025
Adobe Commerce and Magento users: Patch critical SessionReaper flaw now
Adobe issued an emergency patch for one of the most severe vulnerabilities ever discovered in the Magento Open Source ecommerce platform and…
Neues Phishing-Framework umgeht Multi-Faktor-Authentifizierung
Phishing 2.0 nutzt Subdomain-Rotation und Geoblocking. janews – Shutterstock.com Eine kürzlich aufgedeckte Phishing-Kampagne steht in Verbindung mit Salty2FA, einem Phishing-as-a-Service-(PhaaS-)Framework. Es soll…
Cursor’s autorun lets hackers execute arbitrary code
Oasis Security has uncovered a flaw in the widely used AI-powered code editor Cursor that lets malicious repositories silently execute code the…
Ransomware upstart ‘The Gentlemen’ raises the stakes for OT‑heavy sectors
A new threat actor, The Gentlemen, has emerged as a fast-moving ransomware group that has rapidly expanded its activity across Asia Pacific,…
What the Salesloft Drift breaches reveal about 4th-party risk
The recent SalesLoft Drift breaches revealed an uncomfortable truth that keeps me up at night, and should keep every CISO awake, too….
6 hot cybersecurity trends
It may be hard to believe, but ChatGPT, which brought generative AI to the masses and triggered an explosion of enterprise interest,…
OT-Security: Warum der Blick auf Open Source lohnt
Auch im OT-Security-Bereich stellen Open-Source-Lösungen eine kostengünstige Alternative zu kommerziellen Tools dar. MY STOCKERS – Shutterstock.com OT-Security als strategischer Erfolgsfaktor Die zunehmende…
Patch Tuesday priorities: Vulnerabilities in SAP NetWeaver and Microsoft NTLM and Hyper-V
CISOs with SAP NetWeaver AS Java servers in their environments should make sure admins patch two highly critical vulnerabilities as soon as…
Smart GPUGate malware exploits GitHub and Google Ads for evasive targeting
Security researchers at Arctic Wolf have uncovered a novel malware campaign targeting users in Western Europe, delivered through Google Ads and employing…