Hacker linked to Oracle Cloud intrusion threatens to sell stolen data
The threat actor that claimed responsibility for an alleged data breach at Oracle Cloud is threatening to release or sell...
Read more →Category: CyberSecurityDive
CISA warns new malware targeting Ivanti zero-day vulnerability
Dive Brief: The Cybersecurity and Infrastructure Security Agency on Friday issued an alert for a new malware variant, dubbed Resurge,...
Read more →
SEC should avoid ‘overly prescriptive’ AI rules, acting chair says
Dive Brief: Acting Securities and Exchange Commission Chairman Mark Uyeda on Thursday called for a softer agency approach to artificial...
Read more →
Cybersecurity firms brace for impact of potential Oracle Cloud breach
Information security firms are taking measures to protect customers and their own networks as they wait for official guidance following...
Read more →
Solar power gear vulnerable to remote sabotage
Solar inverters made by three of the world’s largest manufacturers were found vulnerable to remote sabotage that could have produced...
Read more →
Threat actor in Oracle Cloud breach may have gained access to production environments
Dive Brief: Security researchers are analyzing a 10,000-line dataset provided by a hacker who claimed to have breached Oracle Cloud....
Read more →
Ransomware gangs increasingly brandish EDR bypass tools
Dive Brief Ransomware actors are increasingly abusing vulnerable drivers to craft tools known as “EDR killers,” which can disrupt and...
Read more →
FCC investigating China-linked companies over evasion of US national security measures
The Federal Communications Commission on Friday said it is investigating whether companies aligned with the People’s Republic of China are...
Read more →
Researchers back claim of Oracle Cloud breach despite company’s denials
Dive Brief: Security researchers said they confirmed a breach of Oracle Cloud after a previously unknown threat actor posted an...
Read more →
Critical vulnerabilities put Kubernetes environments in jeopardy
Dive Brief: Wiz researchers on Monday disclosed the technical details of four critical vulnerabilities — CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974...
Read more →
Russian threat actor weaponized Microsoft Management Console flaw
A prolific Russian threat actor is exploiting a zero-day flaw in the Microsoft Management Console (MMC) framework to execute malicious...
Read more →
DrayTek routers face active exploitation of older vulnerabilities
Dive Brief: Researchers warn that three older vulnerabilities in DrayTek routers have been actively exploited in recent weeks, which coincides...
Read more →