React2Shell attacks expand widely across multiple sectors
Researchers warn that state-linked and opportunistic actors are actively working to exploit flaws in React's application tools.
Hackers exploit newly patched Fortinet auth bypass flaws
Hackers are exploiting critical-severity vulnerabilities affecting multiple Fortinet products to get unauthorized access to admin accounts and steal system configuration files.
Top 3 SOC Bottlenecks and How to Solve Them
Attackers evolve faster than most organizations can update their defenses. That's why 2026 will be defined not by whether incidents happen but by how efficiently and proactively SOCs can detect and contain them. Yet even the most mature security teams are held back by a few systemic bottlenecks: invisible efficiency killers that drain time, inflate costs, and open the
Amazon warns that Russia's Sandworm has shifted its tactics
Researchers said attackers linked to Russia's military intelligence agency have moved from vulnerability exploits to focus on poorly configured network edge devices to keep its access to target networks.
The 2025 Cloudflare Radar Year in Review: The rise of AI, post-quantum, and record-breaking DDoS attacks
submitted by /u/jnazario [link] [comments]
Rogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet Data
Cybersecurity researchers have discovered a new malicious NuGet package that typosquats and impersonates the popular .NET tracing library and its author to sneak in a cryptocurrency wallet stealer. The malicious package, named "Tracer.Fody.NLog," remained on the repository for nearly six years. It was published by a user named "csnemess" on February 26, 2020. It masquerades as "Tracer.Fody,"
Google Finds Server Takeovers Linked to React2Shell Exploitation
Google warns that attackers are actively exploiting React2Shell to hijack unpatched servers.
Zero-Days in the Age of AI: Behind the Scenes of ZeroDay.cloud 2025
Hackers awarded $320,000 at first-of-its-kind cloud hacking competition
CISA Warns of Apple WebKit Vulnerability 0-Day Vulnerability Exploited in Attacks
CISA has issued an urgent warning regarding a critical zero-day vulnerability in Apple WebKit that is currently being actively exploited in attacks. CISA has added CVE-2025-43529 to its catalog of vulnerabilities requiring immediate attention, setting a strict deadline for organizations to implement protective measures. What Is the WebKit Vulnerability? The vulnerability, identified as a use-after-free flaw in
Cyberattack disrupts Venezuelan oil giant PDVSA's operations
Petróleos de Venezuela (PDVSA), Venezuela's state-owned oil company, was hit by a cyberattack over the weekend that disrupted its export operations.
Senior Infrastructure Security Engineer (Remote from ...
Senior Infrastructure Security Engineer (Remote from Bulgaria). Bulgaria. Security & IT – IT /. Full-time /. Remote. Submit your application. LinkedIn profile.
Job Application for Threat Analyst at Halcyon
As a remote-native, completely distributed global team, we recognize great ... Collaborate closely with Customers, Incident Response, Engineering and ...
Jobgether - Threat Intelligence Researcher (Cloud) ...
Background in incident response, threat intelligence, or threat hunting. ... Flexible remote work environment with collaboration across time zones.
Senior Security Engineer, IAM (Identity Access Management)
Senior Security Engineer, IAM (Identity Access Management). Romania, Remote. Apply. Our Mission: 6sense is on a mission to revolutionize how B2B organizations ...
Threat Intelligence Researcher (Cloud) (Remote from Texas)
Background in incident response, threat intelligence, or threat hunting. ... Flexible remote work environment with collaboration across time zones.
Security Engineer, Corporate Security @ 1Password
Security Engineer, Corporate Security. Location. Remote (United States | Canada). Employment Type. Full time. Location Type. Remote. Department. Technology.
Senior AI Product Engineer @ Nory
... incident response, and iterative improvement of live systems. - Applied AI ... Senior AI Product Engineer. Location. London , Remote - Europe, Dublin ...
.png?1726587305){kind=logo}
Job Application for Staff Software Engineer, Infrastructure ...
Organizational Reliability & Observability: Define the company's observability strategy (SLOs/SLIs) and lead major, cross-functional incident response efforts.
Job Application for Director of Security at Remote
Build a Security Incident Response processes and culture within the Security Team; Report to Remote's top management about security risks, threats and their ...
IT & Security Engineer @ XBOW
... SECURITY ENGINEER We're looking for an experienced, hands-on IT ... What Else You Should Know. Location: Remote US East Coast (all team members are remote ...