BolhaSec
@bolhasec.com
#bolhasec pra ser retweetado
@sushicomabacate.com
@sushicomabacate.com
Notícia da SecurityWeek
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
Google Sues Chinese Cybercriminals Behind 'Lighthouse' Phishing Kit
Google announced that it has filed a lawsuit against the Chinese Smishing Triad cybercrime group over its Lighthouse phishing kit.
www.securityweek.com
February 18, 2026 at 4:30 PM
Notícia da SecurityWeek
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
Notícia da BleepingComputer
"OpenAI is reportedly getting ready to test ads in ChatGPT" #bolhasec
"OpenAI is reportedly getting ready to test ads in ChatGPT" #bolhasec
OpenAI is reportedly getting ready to test ads in ChatGPT
Multiple reports suggest that OpenAI is going ahead with its plans to add ads to ChatGPT, but the experiment will be initially limited to its employees.
www.bleepingcomputer.com
February 18, 2026 at 3:30 PM
Notícia da BleepingComputer
"OpenAI is reportedly getting ready to test ads in ChatGPT" #bolhasec
"OpenAI is reportedly getting ready to test ads in ChatGPT" #bolhasec
Notícia da SecurityWeek
"Oracle’s First 2026 CPU Delivers 337 New Security Patches" #bolhasec
"Oracle’s First 2026 CPU Delivers 337 New Security Patches" #bolhasec
Oracle's First 2026 CPU Delivers 337 New Security Patches
Oracle patches roughly 230 unique CVEs across more than 30 products with its first Critical Patch Update (CPU) released in 2026.
www.securityweek.com
February 18, 2026 at 2:30 PM
Notícia da SecurityWeek
"Oracle’s First 2026 CPU Delivers 337 New Security Patches" #bolhasec
"Oracle’s First 2026 CPU Delivers 337 New Security Patches" #bolhasec
Notícia da BleepingComputer
"CISA warns of five-year-old GitLab flaw exploited in attacks" #bolhasec
"CISA warns of five-year-old GitLab flaw exploited in attacks" #bolhasec
CISA warns of five-year-old GitLab flaw exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their systems against a five-year-old GitLab vulnerability that is actively being exploited in att...
www.bleepingcomputer.com
February 18, 2026 at 1:30 PM
Notícia da BleepingComputer
"CISA warns of five-year-old GitLab flaw exploited in attacks" #bolhasec
"CISA warns of five-year-old GitLab flaw exploited in attacks" #bolhasec
Notícia da SecurityWeek
"Chinese APT Mustang Panda Caught Using Kernel-Mode Rootkit" #bolhasec
"Chinese APT Mustang Panda Caught Using Kernel-Mode Rootkit" #bolhasec
Chinese APT Mustang Panda Caught Using Kernel-Mode Rootkit
The China-linked Mustang Panda APT has been using a kernel-mode rootkit in attacks leading to ToneShell backdoor deployments.
www.securityweek.com
February 18, 2026 at 12:30 PM
Notícia da SecurityWeek
"Chinese APT Mustang Panda Caught Using Kernel-Mode Rootkit" #bolhasec
"Chinese APT Mustang Panda Caught Using Kernel-Mode Rootkit" #bolhasec
Notícia da SecurityWeek
"Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data" #bolhasec
"Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data" #bolhasec
Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data
More than 300 Chrome extensions were found to be leaking browser data, spying on users, or stealing user information.
www.securityweek.com
February 18, 2026 at 11:30 AM
Notícia da SecurityWeek
"Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data" #bolhasec
"Over 300 Malicious Chrome Extensions Caught Leaking or Stealing User Data" #bolhasec
Notícia da BleepingComputer
"Zoom Stealer browser extensions harvest corporate meeting intelligence" #bolhasec
"Zoom Stealer browser extensions harvest corporate meeting intelligence" #bolhasec
Zoom Stealer browser extensions harvest corporate meeting intelligence
A newly discovered campaign, which researchers call Zoom Stealer, is affecting 2.2 million Chrome, Firefox, and Microsoft Edge users through 18 extensions that collect online meeting-related data like...
www.bleepingcomputer.com
February 18, 2026 at 2:30 AM
Notícia da BleepingComputer
"Zoom Stealer browser extensions harvest corporate meeting intelligence" #bolhasec
"Zoom Stealer browser extensions harvest corporate meeting intelligence" #bolhasec
Notícia da BleepingComputer
"Verizon starts issuing $20 credits after nationwide outage" #bolhasec
"Verizon starts issuing $20 credits after nationwide outage" #bolhasec
Verizon starts issuing $20 credits after nationwide outage
Verizon has begun sending text messages with instructions on how to redeem a $20 account credit for last week's nationwide wireless outage.
www.bleepingcomputer.com
February 18, 2026 at 1:30 AM
Notícia da BleepingComputer
"Verizon starts issuing $20 credits after nationwide outage" #bolhasec
"Verizon starts issuing $20 credits after nationwide outage" #bolhasec
Notícia da SecurityWeek
"Google Disrupts IPIDEA Proxy Network " #bolhasec
"Google Disrupts IPIDEA Proxy Network " #bolhasec
Google Disrupts IPIDEA Proxy Network
IPIDEA, one of the largest residential proxy networks that enrolled devices through SDKs for mobile and desktop, has been disrupted.
www.securityweek.com
February 18, 2026 at 12:30 AM
Notícia da SecurityWeek
"Google Disrupts IPIDEA Proxy Network " #bolhasec
"Google Disrupts IPIDEA Proxy Network " #bolhasec
Notícia da BleepingComputer
"Chinese cyberspies breach Singapore's four largest telcos" #bolhasec
"Chinese cyberspies breach Singapore's four largest telcos" #bolhasec
Chinese cyberspies breach Singapore's four largest telcos
The Chinese threat actor tracked as UNC3886 breached Singapore's four largest telecommunication service providers, Singtel, StarHub, M1, and Simba, at least once last year.
www.bleepingcomputer.com
February 17, 2026 at 11:30 PM
Notícia da BleepingComputer
"Chinese cyberspies breach Singapore's four largest telcos" #bolhasec
"Chinese cyberspies breach Singapore's four largest telcos" #bolhasec
Notícia da SecurityWeek
"Security in the Dark: Recognizing the Signs of Hidden Information" #bolhasec
"Security in the Dark: Recognizing the Signs of Hidden Information" #bolhasec
Security in the Dark: Recognizing the Signs of Hidden Information
How incomplete or intentionally restricted information quietly undermines risk assessment, prioritization, and mitigation efforts.
www.securityweek.com
February 17, 2026 at 10:30 PM
Notícia da SecurityWeek
"Security in the Dark: Recognizing the Signs of Hidden Information" #bolhasec
"Security in the Dark: Recognizing the Signs of Hidden Information" #bolhasec
Notícia da SecurityWeek
"CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training" #bolhasec
"CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training" #bolhasec
CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training
Miami-based CyberNut announced a $5 million growth equity round to scale its cybersecurity awareness training platform for the K-12 sector.
www.securityweek.com
February 17, 2026 at 8:30 PM
Notícia da SecurityWeek
"CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training" #bolhasec
"CyberNut Closes $5M Growth Capital for K-12 Security Awareness Training" #bolhasec
Notícia da SecurityWeek
"Korean Air Data Compromised in Oracle EBS Hack" #bolhasec
"Korean Air Data Compromised in Oracle EBS Hack" #bolhasec
Korean Air Data Compromised in Oracle EBS Hack
Roughly 30,000 Korean Air employees had their data stolen by hackers in a breach at former subsidiary KC&D.
www.securityweek.com
February 17, 2026 at 7:30 PM
Notícia da SecurityWeek
"Korean Air Data Compromised in Oracle EBS Hack" #bolhasec
"Korean Air Data Compromised in Oracle EBS Hack" #bolhasec
Notícia da BleepingComputer
"EDR killer tool uses signed kernel driver from forensic software" #bolhasec
"EDR killer tool uses signed kernel driver from forensic software" #bolhasec
EDR killer tool uses signed kernel driver from forensic software
Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in attempts to deactivate them.
www.bleepingcomputer.com
February 17, 2026 at 6:30 PM
Notícia da BleepingComputer
"EDR killer tool uses signed kernel driver from forensic software" #bolhasec
"EDR killer tool uses signed kernel driver from forensic software" #bolhasec
Notícia da SecurityWeek
"Aikido Security Raises $60 Million at $1 Billion Valuation" #bolhasec
"Aikido Security Raises $60 Million at $1 Billion Valuation" #bolhasec
Aikido Security Raises $60 Million at $1 Billion Valuation
Aikido Security, a startup that helps developers create secure applications, announced raising $60 million at unicorn valuation.
www.securityweek.com
February 17, 2026 at 4:30 PM
Notícia da SecurityWeek
"Aikido Security Raises $60 Million at $1 Billion Valuation" #bolhasec
"Aikido Security Raises $60 Million at $1 Billion Valuation" #bolhasec
Notícia da BleepingComputer
"Cyberattack on Polish energy grid impacted around 30 facilities" #bolhasec
"Cyberattack on Polish energy grid impacted around 30 facilities" #bolhasec
Cyberattack on Polish energy grid impacted around 30 facilities
The coordinated attack on Poland's power grid in late December targeted multiple distributed energy resource (DER) sites across the country, including combined heat and power (CHP) facilities and wind...
www.bleepingcomputer.com
February 17, 2026 at 3:30 PM
Notícia da BleepingComputer
"Cyberattack on Polish energy grid impacted around 30 facilities" #bolhasec
"Cyberattack on Polish energy grid impacted around 30 facilities" #bolhasec
Notícia da SecurityWeek
"SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities" #bolhasec
"SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities" #bolhasec
SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities
SAP has released 26 new security notes, including two that address critical vulnerabilities in CRM, S/4HANA, and NetWeaver.
www.securityweek.com
February 17, 2026 at 2:30 PM
Notícia da SecurityWeek
"SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities" #bolhasec
"SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities" #bolhasec
Notícia da SecurityWeek
"Crunchbase Confirms Data Breach After Hacking Claims" #bolhasec
"Crunchbase Confirms Data Breach After Hacking Claims" #bolhasec
Crunchbase Confirms Data Breach After Hacking Claims
Market intelligence firm Crunchbase has confirmed a data breach after hackers published files allegedly stolen from its systems.
www.securityweek.com
February 17, 2026 at 1:30 PM
Notícia da SecurityWeek
"Crunchbase Confirms Data Breach After Hacking Claims" #bolhasec
"Crunchbase Confirms Data Breach After Hacking Claims" #bolhasec
Notícia da SecurityWeek
"Nevada Unveils New Statewide Data Classification Policy Months After Cyberattack" #bolhasec
"Nevada Unveils New Statewide Data Classification Policy Months After Cyberattack" #bolhasec
Nevada Unveils New Statewide Data Classification Policy Months After Cyberattack
Nevada rolled out a new policy aimed at standardizing the privacy of state data, months after a massive cyberattack crippled IT systems.
www.securityweek.com
February 17, 2026 at 12:30 PM
Notícia da SecurityWeek
"Nevada Unveils New Statewide Data Classification Policy Months After Cyberattack" #bolhasec
"Nevada Unveils New Statewide Data Classification Policy Months After Cyberattack" #bolhasec
Notícia da SecurityWeek
"GoBruteforcer Botnet Targeting Crypto, Blockchain Projects" #bolhasec
"GoBruteforcer Botnet Targeting Crypto, Blockchain Projects" #bolhasec
GoBruteforcer Botnet Targeting Crypto, Blockchain Projects
GoBruteforcer botnet fueled by server deployments with weak credentials and legacy web is targeting cryptocurrency and blockchain projects.
www.securityweek.com
February 17, 2026 at 11:30 AM
Notícia da SecurityWeek
"GoBruteforcer Botnet Targeting Crypto, Blockchain Projects" #bolhasec
"GoBruteforcer Botnet Targeting Crypto, Blockchain Projects" #bolhasec
Notícia da BleepingComputer
"Hackers breach SmarterTools network using flaw in its own software" #bolhasec
"Hackers breach SmarterTools network using flaw in its own software" #bolhasec
Hackers breach SmarterTools network using flaw in its own software
SmarterTools confirmed last week that the Warlock ransomware gang breached its network after compromising an email system, but did not impact business applications or account data.
www.bleepingcomputer.com
February 17, 2026 at 1:30 AM
Notícia da BleepingComputer
"Hackers breach SmarterTools network using flaw in its own software" #bolhasec
"Hackers breach SmarterTools network using flaw in its own software" #bolhasec
Notícia da SecurityWeek
"Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025" #bolhasec
"Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025" #bolhasec
Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025
On the first day of the Pwn2Own Ireland 2025 hacking contest participants earned a total of $522,500 for the exploits they demonstrated.
www.securityweek.com
February 17, 2026 at 12:30 AM
Notícia da SecurityWeek
"Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025" #bolhasec
"Hackers Earn Over $520,000 on First Day of Pwn2Own Ireland 2025" #bolhasec
Notícia da SecurityWeek
"Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant " #bolhasec
"Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant " #bolhasec
Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant
OpenClaw patched a critical vulnerability that could be exploited to hijack the increasingly popular AI assistant.
www.securityweek.com
February 16, 2026 at 11:30 PM
Notícia da SecurityWeek
"Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant " #bolhasec
"Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant " #bolhasec
Notícia da BleepingComputer
"AI Is Rewriting Compliance Controls and CISOs Must Take Notice" #bolhasec
"AI Is Rewriting Compliance Controls and CISOs Must Take Notice" #bolhasec
AI Is Rewriting Compliance Controls and CISOs Must Take Notice
AI agents are now executing regulated actions, reshaping how compliance controls actually work. Token Security explains why CISOs must rethink identity, access, and auditability as AI becomes a digita...
www.bleepingcomputer.com
February 16, 2026 at 10:30 PM
Notícia da BleepingComputer
"AI Is Rewriting Compliance Controls and CISOs Must Take Notice" #bolhasec
"AI Is Rewriting Compliance Controls and CISOs Must Take Notice" #bolhasec
Notícia da SecurityWeek
"Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability " #bolhasec
"Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability " #bolhasec
Russia's APT28 Rapidly Weaponizes Newly Patched Office Vulnerability
APT28 rushed to exploit the Office vulnerability CVE-2026-21509, with the first attacks observed just days after Microsoft announced fixes.
www.securityweek.com
February 16, 2026 at 9:30 PM
Notícia da SecurityWeek
"Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability " #bolhasec
"Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability " #bolhasec