Aggregator

You must login to view this content

Teleport released AI Session Summaries, a new capability in Teleport Identity Security that enables customers to summarize insights from thousands of hours of session recordings in minutes. Teleport generates session recordings of SSH, Kubernetes, and database access events, capturing a granular record of who did what in infrastructure. Security and compliance teams often invest substantial time reviewing session logs in order to meet audit requirements, or to undertake forensic investigation when identifying suspicious or anomalous … More →

The post Teleport unveils AI-powered summaries for session recordings appeared first on Help Net Security.

A sophisticated effort by Russian-linked actors is seeking to sway public opinion ahead of Moldova’s September 28, 2025, vote, raising concerns over foreign interference in the nation’s democratic process. Analysis of these sites revealed a technical fingerprint linking them to absatz.media—a Kremlin-tied propaganda outlet first registered in mid-2021. The overlap in unique code snippets and […]

The post Russian Disinformation Campaign Targets Moldova’s Upcoming Elections appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A man in his forties has been arrested in West Sussex, England, in connection with a cyber-attack that has caused days of widespread disruption at several major European airports, including London’s Heathrow. The UK’s National Crime Agency (NCA) confirmed the man was arrested on Tuesday evening on suspicion of offenses under the Computer Misuse Act […]

The post UK Police Arrested Man Linked to Ransomware Attack That Crippeled European Airports appeared first on Cyber Security News.

You must login to view this content

A new study has uncovered a method for silently installing custom extensions on Chromium-based browsers running in Windows domain environments. By exploiting how Chrome and its relatives store extension settings and security checks in preference files, attackers can inject arbitrary code into user browsers without triggering visible warnings. The research, validated on Chromium version 130 […]

The post Chromium-Based Browsers in Windows Domains Vulnerable to Arbitrary Extension Loads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Suspected state-sponsored attackers have exploited a zero-day vulnerability (CVE-2025-59689) in the Libraesva Email Security Gateway (ESG), the Italian email security company has confirmed. About CVE-2025-59689 CVE-2025-59689 is a command injection vulnerability caused by improper sanitization when removing active code from files inside certain compressed archive formats. It can be triggered by emails containing a specially crafted compressed attachment. “Within the archive, the payload files are constructed to manipulate the application’s sanitization logic, exploiting an improper … More →

The post Libraesva ESG zero-day vulnerability exploited by attackers (CVE-2025-59689) appeared first on Help Net Security.

You must login to view this content

Telecommunications companies are the digital arteries of modern civilization. Compromise a major telecom operator, and you don’t just steal data — you gain the power to intercept communications, manipulate network traffic, and bring entire regions offline.  Every day, ANY.RUN’s solutions process thousands of threat samples, and hidden within them are patterns of activity targeting telecom operators. […]

The post Fighting Telecom Cyberattacks: Investigating a Campaign Against UK Companies appeared first on ANY.RUN's Cybersecurity Blog.