News

KI in der Cybersicherheit: Gekommen, um zu bleiben

Bys s January 19, 2026

Post Content

News

Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Bys s December 23, 2024

A sudden disruption of a major phishing-as-a-service provider leads to the rise of another…that looks very familiar

Read More Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
News

Qilin Leads April 2025 Ransomware Spike with 45 Breaches Using NETXLOADER Malware
Bys s May 8, 2025

Threat actors with ties to the Qilin ransomware family have leveraged malware known as SmokeLoader along with a previously undocumented .NET compiled loader codenamed NETXLOADER as part of a campaign observed in November 2024. “NETXLOADER is a new .NET-based loader that plays a critical role in cyber attacks,” Trend Micro researchers Jacob Santos, Raymart Yambot,…

Read More Qilin Leads April 2025 Ransomware Spike with 45 Breaches Using NETXLOADER Malware
News

How to Automate CVE and Vulnerability Advisory Response with Tines
Bys s May 2, 2025

Run by the team at workflow orchestration and AI platform Tines, the Tines library features pre-built workflows shared by security practitioners from across the community – all free to import and deploy through the platform’s Community Edition. A recent standout is a workflow that automates monitoring for security advisories from CISA and other vendors, enriches…

Read More How to Automate CVE and Vulnerability Advisory Response with Tines
News

HHS Office for Civil Rights Settles Phishing Attack Breach with Health Care Network for $600,000
Bys s April 24, 2025

Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement with PIH Health, Inc. (PIH), a California health care network, over potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). The violations stem from a phishing attack that exposed unsecured electronic protected health…

Read More HHS Office for Civil Rights Settles Phishing Attack Breach with Health Care Network for $600,000
News

Microsoft Detects “SesameOp” Backdoor Using OpenAI’s API as a Stealth Command Channel
Bys s November 4, 2025

Microsoft has disclosed details of a novel backdoor dubbed SesameOp that uses OpenAI Assistants Application Programming Interface (API) for command-and-control (C2) communications. “Instead of relying on more traditional methods, the threat actor behind this backdoor abuses OpenAI as a C2 channel as a way to stealthily communicate and orchestrate malicious activities within the compromised

Read More Microsoft Detects “SesameOp” Backdoor Using OpenAI’s API as a Stealth Command Channel
News

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers
Bys s April 25, 2025

Cybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully exploited, could enable attackers to gain unauthorized access to files, inject malicious data, and tamper with logs under certain conditions. The vulnerabilities, flagged by cybersecurity vendor OPSWAT, are listed below – CVE-2025-27610 (CVSS score: 7.5) – A path…

Read More Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

Similar Posts