#bolhadev
@bolhadev.com
bot de tecnologia (use a hashtag #bolhadev)
Reposted by #bolhadev
Notícia da SecurityWeek
"Chainguard Raises Hefty $356M Series D at $3.5 Billion Valuation" #bolhasec
"Chainguard Raises Hefty $356M Series D at $3.5 Billion Valuation" #bolhasec
Chainguard Raises Hefty $356M Series D at $3.5 Billion Valuation
The cash infusion brings Chainguard’s total funding to about $612 million since launching in 2021 and prices the company at $3.5 billion.
www.securityweek.com
November 20, 2025 at 5:30 PM
Notícia da SecurityWeek
"Chainguard Raises Hefty $356M Series D at $3.5 Billion Valuation" #bolhasec
"Chainguard Raises Hefty $356M Series D at $3.5 Billion Valuation" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Cisco Webex bug lets hackers gain code execution via meeting links" #bolhasec
"Cisco Webex bug lets hackers gain code execution via meeting links" #bolhasec
Cisco Webex bug lets hackers gain code execution via meeting links
Cisco has released security updates for a high-severity Webex vulnerability that allows unauthenticated attackers to gain client-side remote code execution using malicious meeting invite links.
www.bleepingcomputer.com
November 20, 2025 at 4:30 PM
Notícia da BleepingComputer
"Cisco Webex bug lets hackers gain code execution via meeting links" #bolhasec
"Cisco Webex bug lets hackers gain code execution via meeting links" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS" #bolhasec
"MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS" #bolhasec
MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS
MITRE announced on Tuesday that its ATT&CK framework has been updated to version 18, with significant changes in several sections.
www.securityweek.com
November 20, 2025 at 3:30 PM
Notícia da SecurityWeek
"MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS" #bolhasec
"MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Armis Raises $435 Million in Pre-IPO Funding Round at $6.1 Billion Valuation" #bolhasec
"Armis Raises $435 Million in Pre-IPO Funding Round at $6.1 Billion Valuation" #bolhasec
Armis Raises $435 Million in Pre-IPO Funding Round at $6.1 Billion Valuation
Armis announced that it has raised $435 million in a pre-IPO funding round that values the company at $6.1 billion.
www.securityweek.com
November 20, 2025 at 2:30 PM
Notícia da SecurityWeek
"Armis Raises $435 Million in Pre-IPO Funding Round at $6.1 Billion Valuation" #bolhasec
"Armis Raises $435 Million in Pre-IPO Funding Round at $6.1 Billion Valuation" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Police busts credit card fraud rings with 4.3 million victims" #bolhasec
"Police busts credit card fraud rings with 4.3 million victims" #bolhasec
Police busts credit card fraud rings with 4.3 million victims
International authorities have dismantled three massive credit card fraud and money laundering networks, linked to losses exceeding €300 million ($344 million) and affecting over 4.3 million cardholde...
www.bleepingcomputer.com
November 20, 2025 at 1:30 PM
Notícia da BleepingComputer
"Police busts credit card fraud rings with 4.3 million victims" #bolhasec
"Police busts credit card fraud rings with 4.3 million victims" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"OpenAI rolls out GPT Codex Alpha with early access to new models" #bolhasec
"OpenAI rolls out GPT Codex Alpha with early access to new models" #bolhasec
OpenAI rolls out GPT Codex Alpha with early access to new models
OpenAI's Codex is already making waves in the vibe coding vertical, and it's now set to get even better.
www.bleepingcomputer.com
November 20, 2025 at 12:30 PM
Notícia da BleepingComputer
"OpenAI rolls out GPT Codex Alpha with early access to new models" #bolhasec
"OpenAI rolls out GPT Codex Alpha with early access to new models" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"CISA tags SonicWall VPN flaw as actively exploited in attacks" #bolhasec
"CISA tags SonicWall VPN flaw as actively exploited in attacks" #bolhasec
CISA tags SonicWall VPN flaw as actively exploited in attacks
On Wednesday, CISA warned federal agencies to secure their SonicWall Secure Mobile Access (SMA) 100 series appliances against attacks exploiting a high-severity remote code execution vulnerability.
www.bleepingcomputer.com
November 20, 2025 at 11:30 AM
Notícia da BleepingComputer
"CISA tags SonicWall VPN flaw as actively exploited in attacks" #bolhasec
"CISA tags SonicWall VPN flaw as actively exploited in attacks" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Microsoft Teams to let users report messages wrongly flagged as threats" #bolhasec
"Microsoft Teams to let users report messages wrongly flagged as threats" #bolhasec
Microsoft Teams to let users report messages wrongly flagged as threats
Microsoft says that Teams users will be able to report false-positive threat alerts triggered by messages incorrectly flagged as malicious.
www.bleepingcomputer.com
November 20, 2025 at 2:30 AM
Notícia da BleepingComputer
"Microsoft Teams to let users report messages wrongly flagged as threats" #bolhasec
"Microsoft Teams to let users report messages wrongly flagged as threats" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"SonicWall VPN accounts breached using stolen creds in widespread attacks" #bolhasec
"SonicWall VPN accounts breached using stolen creds in widespread attacks" #bolhasec
SonicWall VPN accounts breached using stolen creds in widespread attacks
Researchers warn that threat actors have compromised more than a hundred SonicWall SSLVPN accounts in a large-scale campaign using stolen, valid credentials.
www.bleepingcomputer.com
November 20, 2025 at 1:30 AM
Notícia da BleepingComputer
"SonicWall VPN accounts breached using stolen creds in widespread attacks" #bolhasec
"SonicWall VPN accounts breached using stolen creds in widespread attacks" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Toys “R” Us Canada warns customers' info leaked in data breach" #bolhasec
"Toys “R” Us Canada warns customers' info leaked in data breach" #bolhasec
Toys “R” Us Canada warns customers' info leaked in data breach
Toys "R" Us Canada has sent notices of a data breach to customers informing them of a security incident where threat actors leaked customer records they had previously stolen from its systems.
www.bleepingcomputer.com
November 20, 2025 at 12:30 AM
Notícia da BleepingComputer
"Toys “R” Us Canada warns customers' info leaked in data breach" #bolhasec
"Toys “R” Us Canada warns customers' info leaked in data breach" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"CISA warns feds to fully patch actively exploited Cisco flaws" #bolhasec
"CISA warns feds to fully patch actively exploited Cisco flaws" #bolhasec
CISA warns feds to fully patch actively exploited Cisco flaws
CISA warned federal agencies to fully patch two actively exploited vulnerabilities in Cisco Adaptive Security Appliances (ASA) and Firepower devices.
www.bleepingcomputer.com
November 19, 2025 at 11:30 PM
Notícia da BleepingComputer
"CISA warns feds to fully patch actively exploited Cisco flaws" #bolhasec
"CISA warns feds to fully patch actively exploited Cisco flaws" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Amazon: This week’s AWS outage caused by major DNS failure" #bolhasec
"Amazon: This week’s AWS outage caused by major DNS failure" #bolhasec
Amazon: This week’s AWS outage caused by major DNS failure
Amazon says a major DNS failure was behind a massive AWS (Amazon Web Services) outage that took down many websites and online services on Monday.
www.bleepingcomputer.com
November 19, 2025 at 10:30 PM
Notícia da BleepingComputer
"Amazon: This week’s AWS outage caused by major DNS failure" #bolhasec
"Amazon: This week’s AWS outage caused by major DNS failure" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Popular JavaScript library expr-eval vulnerable to RCE flaw" #bolhasec
"Popular JavaScript library expr-eval vulnerable to RCE flaw" #bolhasec
Popular JavaScript library expr-eval vulnerable to RCE flaw
A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be exploited to execute code remotely through maliciously crafted input.
www.bleepingcomputer.com
November 19, 2025 at 9:30 PM
Notícia da BleepingComputer
"Popular JavaScript library expr-eval vulnerable to RCE flaw" #bolhasec
"Popular JavaScript library expr-eval vulnerable to RCE flaw" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"China Accuses US of Cyberattack on National Time Center" #bolhasec
"China Accuses US of Cyberattack on National Time Center" #bolhasec
China Accuses US of Cyberattack on National Time Center
China accused the National Security Agency of carrying out cyberattacks on its national time center.
www.securityweek.com
November 19, 2025 at 8:30 PM
Notícia da SecurityWeek
"China Accuses US of Cyberattack on National Time Center" #bolhasec
"China Accuses US of Cyberattack on National Time Center" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
Google Sues Chinese Cybercriminals Behind 'Lighthouse' Phishing Kit
Google announced that it has filed a lawsuit against the Chinese Smishing Triad cybercrime group over its Lighthouse phishing kit.
www.securityweek.com
November 19, 2025 at 7:30 PM
Notícia da SecurityWeek
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
"Google Sues Chinese Cybercriminals Behind ‘Lighthouse’ Phishing Kit" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
Thunderbird adds native support for Microsoft Exchange accounts
Thunderbird 145 has been released with full native support for Microsoft Exchange email via the Exchange Web Services (EWS) protocol.
www.bleepingcomputer.com
November 19, 2025 at 6:30 PM
Notícia da BleepingComputer
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
"Thunderbird adds native support for Microsoft Exchange accounts" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
Pwn2Own Day 2: Hackers exploit 22 zero-days for $267,500
Security researchers collected $267,500 in cash after exploiting 22 unique zero-day vulnerabilities during the second day of the Pwn2Own Ireland 2025 hacking competition.
www.bleepingcomputer.com
November 19, 2025 at 5:30 PM
Notícia da BleepingComputer
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
"Pwn2Own Day 2: Hackers exploit 56 zero-days for $790,000" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
Two New Web Application Risk Categories Added to OWASP Top 10
OWASP has released a revised version of its Top 10 list of critical risks to web applications, adding two new categories.
www.securityweek.com
November 19, 2025 at 4:30 PM
Notícia da SecurityWeek
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
"Two New Web Application Risk Categories Added to OWASP Top 10" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
F-Droid project threatened by Google's new dev registration rules
F-Droid is warning that the project could reach an end due to Google's new requirements for all Android developers to verify their identity.
www.bleepingcomputer.com
November 19, 2025 at 3:30 PM
Notícia da BleepingComputer
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
"F-Droid project threatened by Google's new dev registration rules" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
Decades-old ‘Finger’ protocol abused in ClickFix malware attacks
The decades-old "finger" command is making a comeback,, with threat actors using the protocol to retrieve remote commands to execute on Windows devices.
www.bleepingcomputer.com
November 19, 2025 at 2:30 PM
Notícia da BleepingComputer
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
"Decades-old ‘Finger’ protocol abused in ClickFix malware attacks" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data
Oracle patched another severe E-Business Suite (EBS) vulnerability that can be exploited to gain access to sensitive data.
www.securityweek.com
November 19, 2025 at 1:30 PM
Notícia da SecurityWeek
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
"Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
Red Hat confirms security incident after hackers breach GitLab instance
An extortion group calling itself the Crimson Collective claims to have stolen nearly 570GB of compressed data across 28,000 internal development respositories belonging to Red Hat, with the company c...
www.bleepingcomputer.com
November 19, 2025 at 12:30 PM
Notícia da BleepingComputer
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
"Red Hat confirms security incident after hackers breach GitLab instance" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools
Microsoft announced two new Windows 11 recovery features today at the Ignite developer conference, called Cloud Rebuild and Point-in-Time Restore (PITR), that aim to reduce downtime and make it easier...
www.bleepingcomputer.com
November 19, 2025 at 11:30 AM
Notícia da BleepingComputer
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
"Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools" #bolhasec
Reposted by #bolhadev
Notícia da SecurityWeek
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
New Firefox Extensions Required to Disclose Data Collection Practices
All new Firefox extensions will be required to declare their personal data collection and transmission practices in the manifest file.
www.securityweek.com
November 19, 2025 at 2:30 AM
Notícia da SecurityWeek
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
"New Firefox Extensions Required to Disclose Data Collection Practices" #bolhasec
Reposted by #bolhadev
Notícia da BleepingComputer
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
Microsoft fixes Windows Task Manager bug affecting performance
Microsoft has resolved a known issue preventing users from quitting the Windows 11 Task Manager after installing the optional Windows 11 KB5067036 update.
www.bleepingcomputer.com
November 19, 2025 at 1:30 AM
Notícia da BleepingComputer
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec
"Microsoft fixes Windows Task Manager bug affecting performance" #bolhasec