BolhaSec
@bolhasec.com
#bolhasec pra ser retweetado
@sushicomabacate.com
@sushicomabacate.com
Notícia da BleepingComputer
"Microsoft investigates Windows 11 boot failures after January updates" #bolhasec
"Microsoft investigates Windows 11 boot failures after January updates" #bolhasec
Microsoft investigates Windows 11 boot failures after January updates
Microsoft is investigating reports that some Windows 11 devices are failing to boot with "UNMOUNTABLE_BOOT_VOLUME" errors after installing the January 2026 Patch Tuesday security updates.
www.bleepingcomputer.com
February 3, 2026 at 1:30 PM
Notícia da BleepingComputer
"Microsoft investigates Windows 11 boot failures after January updates" #bolhasec
"Microsoft investigates Windows 11 boot failures after January updates" #bolhasec
Notícia da BleepingComputer
"Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies" #bolhasec
"Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies" #bolhasec
Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies
The defense mechanisms that NPM introduced after the 'Shai-Hulud' supply-chain attacks have weaknesses that allow threat actors to bypass them via Git dependencies.
www.bleepingcomputer.com
February 3, 2026 at 12:30 PM
Notícia da BleepingComputer
"Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies" #bolhasec
"Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies" #bolhasec
Notícia da BleepingComputer
"Cisco fixes Unified Communications RCE zero day exploited in attacks" #bolhasec
"Cisco fixes Unified Communications RCE zero day exploited in attacks" #bolhasec
Cisco fixes Unified Communications RCE zero day exploited in attacks
Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been actively exploited as a zero-day in attacks.
www.bleepingcomputer.com
February 3, 2026 at 2:30 AM
Notícia da BleepingComputer
"Cisco fixes Unified Communications RCE zero day exploited in attacks" #bolhasec
"Cisco fixes Unified Communications RCE zero day exploited in attacks" #bolhasec
Notícia da BleepingComputer
"Windows 11 KB5068861 & KB5068865 cumulative updates released" #bolhasec
"Windows 11 KB5068861 & KB5068865 cumulative updates released" #bolhasec
Windows 11 KB5068861 & KB5068865 cumulative updates released
Microsoft has released Windows 11 KB5068861 and KB5068865 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features.
www.bleepingcomputer.com
February 3, 2026 at 1:30 AM
Notícia da BleepingComputer
"Windows 11 KB5068861 & KB5068865 cumulative updates released" #bolhasec
"Windows 11 KB5068861 & KB5068865 cumulative updates released" #bolhasec
Notícia da SecurityWeek
"‘Stanley’ Malware Toolkit Enables Phishing via Website Spoofing" #bolhasec
"‘Stanley’ Malware Toolkit Enables Phishing via Website Spoofing" #bolhasec
'Stanley' Malware Toolkit Enables Phishing via Website Spoofing
The Stanley website-spoofing malware toolkit displays legitimate URLs in the address bar while serving phishing pages to users.
www.securityweek.com
February 3, 2026 at 12:30 AM
Notícia da SecurityWeek
"‘Stanley’ Malware Toolkit Enables Phishing via Website Spoofing" #bolhasec
"‘Stanley’ Malware Toolkit Enables Phishing via Website Spoofing" #bolhasec
Notícia da SecurityWeek
"ShinyHunters-Branded Extortion Activity Expands, Escalates" #bolhasec
"ShinyHunters-Branded Extortion Activity Expands, Escalates" #bolhasec
ShinyHunters-Branded Extortion Activity Expands, Escalates
Mandiant has observed an increase in ShinyHunters-branded attacks using evolved vishing and credential harvesting.
www.securityweek.com
February 2, 2026 at 11:30 PM
Notícia da SecurityWeek
"ShinyHunters-Branded Extortion Activity Expands, Escalates" #bolhasec
"ShinyHunters-Branded Extortion Activity Expands, Escalates" #bolhasec
Notícia da SecurityWeek
"WitnessAI Raises $58 Million for AI Security Platform" #bolhasec
"WitnessAI Raises $58 Million for AI Security Platform" #bolhasec
WitnessAI Raises $58 Million for AI Security Platform
AI security firm WitnessAI has raised $58 million in strategic funding to accelerate its global go-to-market and product expansion efforts.
www.securityweek.com
February 2, 2026 at 10:30 PM
Notícia da SecurityWeek
"WitnessAI Raises $58 Million for AI Security Platform" #bolhasec
"WitnessAI Raises $58 Million for AI Security Platform" #bolhasec
Notícia da SecurityWeek
"New ‘Reprompt’ Attack Silently Siphons Microsoft Copilot Data" #bolhasec
"New ‘Reprompt’ Attack Silently Siphons Microsoft Copilot Data" #bolhasec
New 'Reprompt' Attack Silently Siphons Microsoft Copilot Data
The Reprompt Copilot attack bypassed the LLMs data leak protections, leading to stealth information exfiltration after the chat was closed
www.securityweek.com
February 2, 2026 at 9:30 PM
Notícia da SecurityWeek
"New ‘Reprompt’ Attack Silently Siphons Microsoft Copilot Data" #bolhasec
"New ‘Reprompt’ Attack Silently Siphons Microsoft Copilot Data" #bolhasec
Notícia da SecurityWeek
"2024 VMware Flaw Now in Attackers’ Crosshairs" #bolhasec
"2024 VMware Flaw Now in Attackers’ Crosshairs" #bolhasec
2024 VMware Flaw Now in Attackers' Crosshairs
CISA and Broadcom warn that threat actors are exploiting CVE-2024-37079, a VMware vCenter Server vulnerability disclosed in 2024.
www.securityweek.com
February 2, 2026 at 8:30 PM
Notícia da SecurityWeek
"2024 VMware Flaw Now in Attackers’ Crosshairs" #bolhasec
"2024 VMware Flaw Now in Attackers’ Crosshairs" #bolhasec
Notícia da BleepingComputer
"Infamous message board 4chan taken down following major hack" #bolhasec
"Infamous message board 4chan taken down following major hack" #bolhasec
Infamous message board 4chan taken down following major hack
4chan, a notorious online forum, was taken offline earlier today after what appears to be a significant hack and has since been loading intermittently.
www.bleepingcomputer.com
February 2, 2026 at 5:30 PM
Notícia da BleepingComputer
"Infamous message board 4chan taken down following major hack" #bolhasec
"Infamous message board 4chan taken down following major hack" #bolhasec
Notícia da SecurityWeek
"Fresh SmarterMail Flaw Exploited for Admin Access" #bolhasec
"Fresh SmarterMail Flaw Exploited for Admin Access" #bolhasec
Fresh SmarterMail Flaw Exploited for Admin Access
Threat actors started exploiting a SmarterMail authentication bypass flaw for remote code execution only days after patches were released.
www.securityweek.com
February 2, 2026 at 4:30 PM
Notícia da SecurityWeek
"Fresh SmarterMail Flaw Exploited for Admin Access" #bolhasec
"Fresh SmarterMail Flaw Exploited for Admin Access" #bolhasec
Notícia da SecurityWeek
"Verisoul Raises $8.8 Million for Fraud Prevention" #bolhasec
"Verisoul Raises $8.8 Million for Fraud Prevention" #bolhasec
Verisoul Raises $8.8 Million for Fraud Prevention
Verisoul has raised $8.8 million in Series A funding for a SaaS platform that identifies and stops fake accounts and fraud.
www.securityweek.com
February 2, 2026 at 3:30 PM
Notícia da SecurityWeek
"Verisoul Raises $8.8 Million for Fraud Prevention" #bolhasec
"Verisoul Raises $8.8 Million for Fraud Prevention" #bolhasec
Notícia da BleepingComputer
"OpenAI says ChatGPT won't use your health information to train its models" #bolhasec
"OpenAI says ChatGPT won't use your health information to train its models" #bolhasec
OpenAI says ChatGPT won't use your health information to train its models
OpenAI is rolling out ChatGPT Health, which is a dedicated space for health conversations. Amidst privacy concerns, OpenAI said it won't use your health data.
www.bleepingcomputer.com
February 2, 2026 at 2:30 PM
Notícia da BleepingComputer
"OpenAI says ChatGPT won't use your health information to train its models" #bolhasec
"OpenAI says ChatGPT won't use your health information to train its models" #bolhasec
Notícia da SecurityWeek
"Portal26 Raises $9 Million for Gen-AI Adoption Platform" #bolhasec
"Portal26 Raises $9 Million for Gen-AI Adoption Platform" #bolhasec
Portal26 Raises $9 Million for Gen-AI Adoption Platform
Portal26 has raised $9 million in a Series A funding round that brings the total raised by the company to $15 million.
www.securityweek.com
February 2, 2026 at 1:30 PM
Notícia da SecurityWeek
"Portal26 Raises $9 Million for Gen-AI Adoption Platform" #bolhasec
"Portal26 Raises $9 Million for Gen-AI Adoption Platform" #bolhasec
Notícia da SecurityWeek
"MITRE Launches New Security Framework for Embedded Systems " #bolhasec
"MITRE Launches New Security Framework for Embedded Systems " #bolhasec
MITRE Launches New Security Framework for Embedded Systems
MITRE launched Embedded Systems Threat Matrix (ESTM), a cybersecurity framework designed for protecting critical embedded systems.
www.securityweek.com
February 2, 2026 at 12:30 PM
Notícia da SecurityWeek
"MITRE Launches New Security Framework for Embedded Systems " #bolhasec
"MITRE Launches New Security Framework for Embedded Systems " #bolhasec
Notícia da SecurityWeek
"New Wave of Attacks Targeting FortiGate Firewalls" #bolhasec
"New Wave of Attacks Targeting FortiGate Firewalls" #bolhasec
New Wave of Attacks Targeting FortiGate Firewalls
Attacks targeting FortiGate firewalls are surging amid fears that two recent Fortinet vulnerabilities have not been properly patched.
www.securityweek.com
February 2, 2026 at 11:30 AM
Notícia da SecurityWeek
"New Wave of Attacks Targeting FortiGate Firewalls" #bolhasec
"New Wave of Attacks Targeting FortiGate Firewalls" #bolhasec
Notícia da BleepingComputer
"U.S. convicts ex-Google engineer for sending AI tech data to China" #bolhasec
"U.S. convicts ex-Google engineer for sending AI tech data to China" #bolhasec
U.S. convicts ex-Google engineer for sending AI tech data to China
A U.S. federal jury has convicted Linwei Ding, a former software engineer at Google, for stealing AI supercomputer data from his employer and secretly sharing it with Chinese tech firms.
www.bleepingcomputer.com
February 2, 2026 at 2:30 AM
Notícia da BleepingComputer
"U.S. convicts ex-Google engineer for sending AI tech data to China" #bolhasec
"U.S. convicts ex-Google engineer for sending AI tech data to China" #bolhasec
Notícia da BleepingComputer
"France fines Free Mobile €42 million over 2024 data breach incident" #bolhasec
"France fines Free Mobile €42 million over 2024 data breach incident" #bolhasec
France fines Free Mobile €42 million over 2024 data breach incident
The French data protection authority (CNIL) has imposed cumulative fines of €42 million on Free Mobile and its parent company, Free, for inadequate protection of customer data against cyber threats.
www.bleepingcomputer.com
February 2, 2026 at 1:30 AM
Notícia da BleepingComputer
"France fines Free Mobile €42 million over 2024 data breach incident" #bolhasec
"France fines Free Mobile €42 million over 2024 data breach incident" #bolhasec
Notícia da SecurityWeek
"TP-Link Patches Vulnerability Exposing VIGI Cameras to Remote Hacking" #bolhasec
"TP-Link Patches Vulnerability Exposing VIGI Cameras to Remote Hacking" #bolhasec
TP-Link Patches Vulnerability Exposing VIGI Cameras to Remote Hacking
TP-Link has patched a serious vulnerability that can be exploited to take control of more than 32 of its VIGI camera models.
www.securityweek.com
February 2, 2026 at 12:30 AM
Notícia da SecurityWeek
"TP-Link Patches Vulnerability Exposing VIGI Cameras to Remote Hacking" #bolhasec
"TP-Link Patches Vulnerability Exposing VIGI Cameras to Remote Hacking" #bolhasec
Notícia da SecurityWeek
"Upwind Raises $250 Million at $1.5 Billion Valuation" #bolhasec
"Upwind Raises $250 Million at $1.5 Billion Valuation" #bolhasec
Upwind Raises $250 Million at $1.5 Billion Valuation
Cloud security provider Upwind has raised $250 million in a Series B funding round that brings its valuation to $1.5 billion.
www.securityweek.com
February 1, 2026 at 11:30 PM
Notícia da SecurityWeek
"Upwind Raises $250 Million at $1.5 Billion Valuation" #bolhasec
"Upwind Raises $250 Million at $1.5 Billion Valuation" #bolhasec
Notícia da SecurityWeek
"Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm" #bolhasec
"Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm" #bolhasec
Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm
A threat actor has published tens of thousands of malicious NPM packages that contain a self-replicating worm, security researchers warn.
www.securityweek.com
February 1, 2026 at 10:30 PM
Notícia da SecurityWeek
"Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm" #bolhasec
"Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm" #bolhasec
Notícia da BleepingComputer
"Nike investigates data breach after extortion gang leaks files" #bolhasec
"Nike investigates data breach after extortion gang leaks files" #bolhasec
Nike investigates data breach after extortion gang leaks files
Nike is investigating what it described as a "potential cyber security incident" after the World Leaks ransomware gang leaked 1.4 TB of files allegedly stolen from the sportswear giant.
www.bleepingcomputer.com
February 1, 2026 at 9:30 PM
Notícia da BleepingComputer
"Nike investigates data breach after extortion gang leaks files" #bolhasec
"Nike investigates data breach after extortion gang leaks files" #bolhasec
Notícia da SecurityWeek
"Over 100 Organizations Targeted in ShinyHunters Phishing Campaign" #bolhasec
"Over 100 Organizations Targeted in ShinyHunters Phishing Campaign" #bolhasec
Over 100 Organizations Targeted in ShinyHunters Phishing Campaign
Many major organizations appear to have been targeted in a recent cybercrime campaign linked to the ShinyHunters group.
www.securityweek.com
February 1, 2026 at 8:30 PM
Notícia da SecurityWeek
"Over 100 Organizations Targeted in ShinyHunters Phishing Campaign" #bolhasec
"Over 100 Organizations Targeted in ShinyHunters Phishing Campaign" #bolhasec
Notícia da BleepingComputer
"US to deport Venezuelans who emptied bank ATMs using malware" #bolhasec
"US to deport Venezuelans who emptied bank ATMs using malware" #bolhasec
US to deport Venezuelans who emptied bank ATMs using malware
South Carolina federal prosecutors announced that two Venezuelan nationals convicted of stealing hundreds of thousands of dollars from U.S. banks in an ATM jackpotting scheme will be deported after se...
www.bleepingcomputer.com
February 1, 2026 at 7:30 PM
Notícia da BleepingComputer
"US to deport Venezuelans who emptied bank ATMs using malware" #bolhasec
"US to deport Venezuelans who emptied bank ATMs using malware" #bolhasec
Notícia da BleepingComputer
"Cloud storage payment scam floods inboxes with fake renewals" #bolhasec
"Cloud storage payment scam floods inboxes with fake renewals" #bolhasec
Cloud storage payment scam floods inboxes with fake renewals
Over the past few months, a large-scale cloud storage subscription scam campaign has been targeting users worldwide with repeated emails falsely warning recipients that their photos, files, and accoun...
www.bleepingcomputer.com
February 1, 2026 at 6:30 PM
Notícia da BleepingComputer
"Cloud storage payment scam floods inboxes with fake renewals" #bolhasec
"Cloud storage payment scam floods inboxes with fake renewals" #bolhasec