DESTAQUES

Ameaças Cibernéticas

1630 notícias
Ameaças Cibernéticas Bleeping Computer 🇺🇸

FBI disrupts massive AI-powered phishing service using a million URLs

In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal credit card data and passwords. [...]

Ameaças Cibernéticas Bleeping Computer 🇺🇸

Ex-school district employee jailed for hacks on former employer

A former  IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the former employer that disrupted classroom operations, deleted accounts, and caused tens of thousands of dollars in damages. [...]

Ameaças Cibernéticas The Hacker News 🇺🇸

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk has released security updates to address a critical security flaw in Splunk Enterprise that could be exploited to conduct unauthenticated file operations and even remote code execution. The vulnerability, tracked as CVE-2026-20253, is rated 9.8 on the CVSS scoring system.…

Ameaças Cibernéticas The Hacker News 🇺🇸

400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer

Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a Rust binary built to harvest developer secrets. When it lands with root, it can…

Ameaças Cibernéticas The Hacker News 🇺🇸

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing

Google on Friday said it's pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting Americans. The network is said to be behind the development and management of a phis…

Ameaças Cibernéticas The Hacker News 🇺🇸

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code

Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) coding agents into running arbitrary code on developer machines. Called Agentjacking by Tenet Security, the attack can be triggered by means of a fake erro…

Ameaças Cibernéticas Boletim Sec 🇧🇷

Malware ligado ao Irã usa BLUERABBIT para criptografar arquivos

Pesquisadores associam o malware a um ator de ameaças com vínculos ao Irã. A ferramenta foi escrita em Go e projetada para se misturar ao tráfego normal de redes corporativas, dificultando a detecção por equipes de segurança. O BLUERABBIT se destaca por reunir funções típicas de …

Ameaças Cibernéticas Boletim Sec 🇧🇷

Ataques exploram falha crítica no Ivanti Sentry

Uma vulnerabilidade crítica no Ivanti Sentry passou a ser explorada ativamente poucos dias após a divulgação pública de um código de prova de conceito. A falha, rastreada como CVE-2026-10520, permite execução remota de código com privilégios de root em appliances vulneráveis. O p…

Ameaças Cibernéticas CISO Advisor 🇧🇷

Falhas de IoT levam a recorde de CVEs em 2026

A projeção de CVEs para 2026 aponta para um volume recorde, impulsionada pelo crescimento acelerado da superfície de ataque com dispositivos de Internet das Coisas (IoT), alerta Erick Nascimento, CEO da Huge Networks. Falhas em câmeras, roteadores, sensores e dispositivos conecta…

Link copiado!