White House drastically shortens deadline for dropping quantum-vulnerable crypto
Order warns of national security risks if post-quantum cryptography isn't adopted in time.
Order warns of national security risks if post-quantum cryptography isn't adopted in time.
A high-severity SSRF vulnerability, tracked as CVE-2026-20230, in Cisco Unified Communications Manager Server is now being exploited in attacks. [...]
Os responsáveis pela campanha FortiBleed, que comprometeu dezenas de milhares de firewalls Fortinet, instalaram nos dispositivos invadidos um sniffer personalizado para interceptar o tráfego de login de 24 protocolos diferentes, obtendo hashes e também senhas não criptografadas. …
O mercado global e nacional de resseguros está reavaliando de forma criteriosa seus modelos de precificação, capacidade de retenção e gestão de cenários catastróficos. O movimento decorre do aumento na complexidade das intrusões digitais e, principalmente, da crescente interdepen…
Um novo estudo publicado pelo Team82, braço de investigação de ameaças da Claroty (especialista em proteção de sistemas ciberfísicos – CPS), revelou severas vulnerabilidades estruturais em equipamentos essenciais de infraestrutura de data centers. As falhas foram identificadas em…
A Cedro Textil, tradicional indústria têxtil brasileira fundada em 1872, identificou um incidente de segurança cibernética que afetou parte de seus ambientes tecnológicos e impactou a operação de determinados sistemas corporativos, de acordo com um fato relevante publicado pela c…
Tata Electronics has confirmed in a statement to BleepingComputer that it was the target of a cyberattack that impacted parts of its IT infrastructure. [...]
A maioria das instituições financeiras globais (77%) já experimentou pelo menos um ataque cibernético com impacto mensurável, de acordo com o relatório “A lacuna da resiliência cibernética nos serviços financeiros”, publicado pela Cohesity e hoje disponibilizado no Brasil em port…
More victims have emerged after attackers breached application vendor Klue and used its OAuth tokens to steal customers' Salesforce data.
Microsoft has released the KB5095093 preview cumulative update for Windows 11 24H2 and 25H2, which fixes numerous bugs and begins rolling out new features, including the new Point-in-Time restore feature. [...]
Uma vulnerabilidade de alta severidade que permaneceu oculta por oito anos no ecossistema de segurança Samsung Knox expôs milhões de smartphones e tablets da linha Galaxy a riscos de comprometimento profundo do sistema operacional. A falha estrutural permitia a corrupção da memór…
Healthcare technology company Xsolis says that sensitive data belonging to nearly 1.4 million individuals was compromised in a phishing attack that gave attackers access to its network. [...]
DC, United States, 23rd June 2026, CyberNewswire
The CI/CD workflow weakness affects Microsoft's Azure Sentinel, Google's AI Agent Development Kit, Apache's Doris analytics database, Cloudflare's Workers SDK, and Python Software Foundation's Black.
A new macOS ClickFix campaign is using Terminal commands to silently download, mount, and launch info-stealing malware from malicious disk image (DMG) files. [...]
LastPass has confirmed it was affected by the Klue supply chain incident, saying an unauthorised actor used stolen…
A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as FortiBleed that has targeted over 430,000 FortiGate firewalls globally. The campaign, active since February 2026, involves coll…
By Nick Bonds, Esq - Artificial intelligence is rapidly transforming the healthcare landscape, touching everything from how drugs are developed to how care is delivered and how claims are processed. For self-funded plans and their partners, AI presents meaningful opportunities to…
Novee Security reveals Cordyceps, a CI/CD vulnerability in GitHub Actions workflows that let anonymous users poison builds and expose tokens across major projects today.
April 2026 Healthcare Data Breach Report The HIPAA Journal