#bolhadev
@bolhadev.com
bot de tecnologia (use a hashtag #bolhadev)
Reposted by #bolhadev
Notícia da SecurityWeek
"China Accuses US of Cyberattack on National Time Center" #bolhasec
"China Accuses US of Cyberattack on National Time Center" #bolhasec
China Accuses US of Cyberattack on National Time Center
China accused the National Security Agency of carrying out cyberattacks on its national time center.
www.securityweek.com
November 19, 2025 at 8:30 PM
Notícia da SecurityWeek
"China Accuses US of Cyberattack on National Time Center" #bolhasec
"China Accuses US of Cyberattack on National Time Center" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
Google Sues Chinese Cybercriminals Behind 'Lighthouse' Phishing Kit
Google announced that it has filed a lawsuit against the Chinese Smishing Triad cybercrime group over its Lighthouse phishing kit.
www.securityweek.com
November 19, 2025 at 7:30 PM
Notícia da SecurityWeek
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
Thunderbird adds native support for Microsoft Exchange accounts
Thunderbird 145 has been released with full native support for Microsoft Exchange email via the Exchange Web Services (EWS) protocol.
www.bleepingcomputer.com
November 19, 2025 at 6:30 PM
Notícia da BleepingComputer
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
Pwn2Own Day 2: Hackers exploit 22 zero-days for $267,500
Security researchers collected $267,500 in cash after exploiting 22 unique zero-day vulnerabilities during the second day of the Pwn2Own Ireland 2025 hacking competition.
www.bleepingcomputer.com
November 19, 2025 at 5:30 PM
Notícia da BleepingComputer
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
Two New Web Application Risk Categories Added to OWASP Top 10
OWASP has released a revised version of its Top 10 list of critical risks to web applications, adding two new categories.
www.securityweek.com
November 19, 2025 at 4:30 PM
Notícia da SecurityWeek
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
F-Droid project threatened by Google's new dev registration rules
F-Droid is warning that the project could reach an end due to Google's new requirements for all Android developers to verify their identity.
www.bleepingcomputer.com
November 19, 2025 at 3:30 PM
Notícia da BleepingComputer
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
Decades-old ‘Finger’ protocol abused in ClickFix malware attacks
The decades-old "finger" command is making a comeback,, with threat actors using the protocol to retrieve remote commands to execute on Windows devices.
www.bleepingcomputer.com
November 19, 2025 at 2:30 PM
Notícia da BleepingComputer
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data
Oracle patched another severe E-Business Suite (EBS) vulnerability that can be exploited to gain access to sensitive data.
www.securityweek.com
November 19, 2025 at 1:30 PM
Notícia da SecurityWeek
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
Red Hat confirms security incident after hackers breach GitLab instance
An extortion group calling itself the Crimson Collective claims to have stolen nearly 570GB of compressed data across 28,000 internal development respositories belonging to Red Hat, with the company c...
www.bleepingcomputer.com
November 19, 2025 at 12:30 PM
Notícia da BleepingComputer
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools
Microsoft announced two new Windows 11 recovery features today at the Ignite developer conference, called Cloud Rebuild and Point-in-Time Restore (PITR), that aim to reduce downtime and make it easier...
www.bleepingcomputer.com
November 19, 2025 at 11:30 AM
Notícia da BleepingComputer
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
New Firefox Extensions Required to Disclose Data Collection Practices
All new Firefox extensions will be required to declare their personal data collection and transmission practices in the manifest file.
www.securityweek.com
November 19, 2025 at 2:30 AM
Notícia da SecurityWeek
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
Microsoft fixes Windows Task Manager bug affecting performance
Microsoft has resolved a known issue preventing users from quitting the Windows 11 Task Manager after installing the optional Windows 11 KB5067036 update.
www.bleepingcomputer.com
November 19, 2025 at 1:30 AM
Notícia da BleepingComputer
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Hackers use RMM tools to breach freighters and steal cargo shipments" #bolhasec
"Hackers use RMM tools to breach freighters and steal cargo shipments" #bolhasec
Hackers use RMM tools to breach freighters and steal cargo shipments
Threat actors are targeting freight brokers and trucking carriers with malicious links and emails to deploy remote monitoring and management tools (RMMs) that enable them to hijack cargo and steal phy...
www.bleepingcomputer.com
November 19, 2025 at 12:30 AM
Notícia da BleepingComputer
"Hackers use RMM tools to breach freighters and steal cargo shipments" #bolhasec
"Hackers use RMM tools to breach freighters and steal cargo shipments" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"MITRE Hackers’ Backdoor Has Targeted Windows for Years" #bolhasec
"MITRE Hackers’ Backdoor Has Targeted Windows for Years" #bolhasec
MITRE Hackers' Backdoor Has Targeted Windows for Years
Windows versions of the BrickStorm backdoor that the Chinese APT used in the MITRE hack last year have been active for years.
www.securityweek.com
November 18, 2025 at 11:30 PM
Notícia da SecurityWeek
"MITRE Hackers’ Backdoor Has Targeted Windows for Years" #bolhasec
"MITRE Hackers’ Backdoor Has Targeted Windows for Years" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Unauthenticated RCE Flaw Patched in DrayTek Routers" #bolhasec
"Unauthenticated RCE Flaw Patched in DrayTek Routers" #bolhasec
Unauthenticated RCE Flaw Patched in DrayTek Routers
DrayTek on Thursday announced patches for an unauthenticated remote code execution (RCE) vulnerability affecting DrayOS routers.
www.securityweek.com
November 18, 2025 at 9:30 PM
Notícia da SecurityWeek
"Unauthenticated RCE Flaw Patched in DrayTek Routers" #bolhasec
"Unauthenticated RCE Flaw Patched in DrayTek Routers" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Google sues to dismantle Chinese platform behind global toll scams" #bolhasec
"Google sues to dismantle Chinese platform behind global toll scams" #bolhasec
Google sues to dismantle Chinese phishing platform behind US toll scams
Google has filed a lawsuit to dismantle the "Lighthouse" phishing-as-a-service platform used by cybercriminals worldwide to steal credit card information through SMS phishing attacks impersonating the...
www.bleepingcomputer.com
November 18, 2025 at 8:30 PM
Notícia da BleepingComputer
"Google sues to dismantle Chinese platform behind global toll scams" #bolhasec
"Google sues to dismantle Chinese platform behind global toll scams" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors" #bolhasec
"Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors" #bolhasec
Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors
Microsoft has released an emergency Windows 10 KB5072653 out-of-band update to resolve ongoing issues with installing the November extended security updates.
www.bleepingcomputer.com
November 18, 2025 at 7:30 PM
Notícia da BleepingComputer
"Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors" #bolhasec
"Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Google warns of new AI-powered malware families deployed in the wild" #bolhasec
"Google warns of new AI-powered malware families deployed in the wild" #bolhasec
Google warns of new AI-powered malware families deployed in the wild
Google's Threat Intelligence Group (GTIG) has identified a major shift this year, with adversaries leveraging artificial intelligence to deploy new malware families that integrate large language model...
www.bleepingcomputer.com
November 18, 2025 at 6:30 PM
Notícia da BleepingComputer
"Google warns of new AI-powered malware families deployed in the wild" #bolhasec
"Google warns of new AI-powered malware families deployed in the wild" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"GlassWorm malware returns on OpenVSX with 3 new VSCode extensions" #bolhasec
"GlassWorm malware returns on OpenVSX with 3 new VSCode extensions" #bolhasec
GlassWorm malware returns on OpenVSX with 3 new VSCode extensions
The GlassWorm malware campaign, which impacted the OpenVSX and Visual Studio Code marketplaces last month, has returned with three new VSCode extensions that have already been downloaded over 10,000 t...
www.bleepingcomputer.com
November 18, 2025 at 5:30 PM
Notícia da BleepingComputer
"GlassWorm malware returns on OpenVSX with 3 new VSCode extensions" #bolhasec
"GlassWorm malware returns on OpenVSX with 3 new VSCode extensions" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Microsoft Reduces Israel’s Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza" #bolhasec
"Microsoft Reduces Israel’s Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza" #bolhasec
Microsoft Reduces Israel's Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza
Microsoft disabled services to a unit of the Israeli military due to AI and cloud products were being used for surveillance of Palestinians.
www.securityweek.com
November 18, 2025 at 4:30 PM
Notícia da SecurityWeek
"Microsoft Reduces Israel’s Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza" #bolhasec
"Microsoft Reduces Israel’s Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk" #bolhasec
"RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk" #bolhasec
RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk
The ImunifyAV malware scanner for Linux server, used by tens of millions of websites, is vulnerable to a remote code execution vulnerability that could be exploited to compromise the hosting environme...
www.bleepingcomputer.com
November 18, 2025 at 3:30 PM
Notícia da BleepingComputer
"RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk" #bolhasec
"RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"SIM Farm Dismantled in Europe, Seven Arrested" #bolhasec
"SIM Farm Dismantled in Europe, Seven Arrested" #bolhasec
SIM Farm Dismantled in Europe, Seven Arrested
Seven individuals were arrested in a law enforcement operation targeting a SIM farm and the sophisticated cybercrime platform it supported.
www.securityweek.com
November 18, 2025 at 12:30 PM
Notícia da SecurityWeek
"SIM Farm Dismantled in Europe, Seven Arrested" #bolhasec
"SIM Farm Dismantled in Europe, Seven Arrested" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Hackers exploit WordPress plugin Post SMTP to hijack admin accounts" #bolhasec
"Hackers exploit WordPress plugin Post SMTP to hijack admin accounts" #bolhasec
Hackers exploit WordPress plugin Post SMTP to hijack admin accounts
Threat actors are actively exploiting a critical vulnerability in the Post SMTP plugin installed on more than 400,000 WordPress sites, to take complete control by hijacking administrator accounts.
www.bleepingcomputer.com
November 18, 2025 at 1:30 AM
Notícia da BleepingComputer
"Hackers exploit WordPress plugin Post SMTP to hijack admin accounts" #bolhasec
"Hackers exploit WordPress plugin Post SMTP to hijack admin accounts" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Ahold Delhaize confirms data theft after INC ransomware claims attack" #bolhasec
"Ahold Delhaize confirms data theft after INC ransomware claims attack" #bolhasec
Ahold Delhaize confirms data theft after INC ransomware claims attack
Food retail giant Ahold Delhaize confirms that data was stolen from its U.S. business systems during a November 2024 cyberattack.
www.bleepingcomputer.com
November 18, 2025 at 12:30 AM
Notícia da BleepingComputer
"Ahold Delhaize confirms data theft after INC ransomware claims attack" #bolhasec
"Ahold Delhaize confirms data theft after INC ransomware claims attack" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"American Archive of Public Broadcasting fixes bug exposing restricted media" #bolhasec
"American Archive of Public Broadcasting fixes bug exposing restricted media" #bolhasec
American Archive of Public Broadcasting fixes bug exposing restricted media
A vulnerability in the American Archive of Public Broadcasting's website allowed downloading of protected and private media for years, with the flaw quietly patched this month.
www.bleepingcomputer.com
November 17, 2025 at 11:30 PM
Notícia da BleepingComputer
"American Archive of Public Broadcasting fixes bug exposing restricted media" #bolhasec
"American Archive of Public Broadcasting fixes bug exposing restricted media" #bolhasec