Cybersecurity News - Noticias de Ciberseguridad

Trellix Confirms Source Code Breach With Unauthorized Repository Access

Cybersecurity company Trellix has announced that it suffered a breach that enabled unauthorized access to a "portion" of its source code. It said it "...

RBI Cybersecurity Compliance Checklist for Fintech Organizations

The financial services ecosystem in India is undergoing rapid digital transformation, and fintech organizations sit at the center of this evolution. W...

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

A high-severity Linux vulnerability, “Copy Fail” (CVE-2026-31431), enables root privilege escalation across cloud environments and Kubernetes workload...

Microsoft tests modern Windows Run, says it's faster than legacy dialog

Microsoft has confirmed that Windows 11 is getting a new modern Run dialog with dark mode support and faster performance in a new preview build. [...]

Edu tech firm Instructure discloses cyber incident, probes impact

Instructure, the company behind the widely used Canvas learning platform, has disclosed that it recently suffered a cybersecurity incident and is now ...

AI agents can bypass guardrails and put credentials at risk, Okta study finds

An AI agent that revealed sensitive data without being asked. An agent that overruled its own guardrails. Another that sent credentials to an attacker...

76% of All Crypto Stolen in 2026 Is Now in North Korea

North Korean threat actors are pulling off historic cryptocurrency heists on a yearly, sometimes weekly basis now. AI might be helping them.

Dangerous New Linux Exploit Gives Attackers Root Access to Countless Computers

The exploit, dubbed CopyFail and tracked as CVE-2026-31431, allows hackers to take over PCs and data center servers. The Linux vulnerabilities have be...

Windows shell spoofing vulnerability puts sensitive data at risk

Microsoft and the US Cybersecurity and Infrastructure Security Agency (CISA) have sounded the alarm about a Windows shell spoofing vulnerability that ...

North Korea’s Enormous Crypto Hacks Redefine Scale and Strategy

A pair of tightly executed cyberattacks have become milestones in cryptocurrency theft in 2026 due to their sheer size. These two incidents, targeting...

Malicious Ad for Homebrew Leads to MacSync Stealer, (Fri, May 1st)

Introduction

[un]prompted 2026 – Injecting Security Context During Vibe Coding

Author, Creator & Presenter: Srajan Gupta, Senior Security Engineer At Dave Our thanks to [un]prompted for publishing their Creators, Authors and...

Global Cyber Threat Brief: Identity Breaches, Supply Chain Attacks, and the Rise of Organized Cybercrime

In the past week, the global cyber threat landscape has once again demonstrated how rapidly attackers are evolving shifting from isolated intrusions t...

Addressing the Edge Security Paradox

The paradox of edge security describes how technologies designed to strengthen network defenses can also create new vulnerabilities. Edge devices impr...

30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign

A newly discovered Vietnamese-linked operation has been observed using a Google AppSheet as a "phishing relay" to distribute phishing emails with an a...

15-year-old detained over French govt agency data breach

French authorities have detained a 15-year-old suspected of selling data stolen in a cyberattack on France Titres (ANTS), the country's agency for iss...

US government, allies publish guidance on how to safely deploy AI agents

The guidance warns that agents capable of taking real-world actions on networks are already inside critical infrastructure, and most organizations are...

Story retracted

BleepingComputer initially published a story about a new data breach at Instructure. Shortly after publication, we determined that the information was...

Digital attacks drive a new wave of cargo theft, FBI says

The FBI warns of rising cyber cargo theft, with hackers targeting brokers and carriers. Experts say digital attacks are replacing traditional cargo th...

In Other News: Scattered Spider Hacker Arrested, SOC Effectiveness Metrics, NSA Tool Vulnerability 

Other noteworthy stories that might have slipped under the radar: OFAC hits Iranian central bank crypto reserves, ADT data leak, CISA guidance for zer...

Microsoft Agent 365, now generally available, expands capabilities and integrations

​Today we’re announcing the general availability of Agent 365, plus previews of new capabilities to discover and manage shadow AI agents, including lo...

If AI's So Smart, Why Does It Keep Deleting Production Databases?

The issue isn't artificial intelligence, but rather an industry adding AI agent integrations into production environments before proper security testi...

Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge

The maximum reward for a zero-click Pixel Titan M exploit with persistence has increased to $1.5 million. The post Google Adjusts Bug Bounties: Chrome...

Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks

Cybersecurity researchers are warning of two cybercrime groups that are carrying out "rapid, high-impact attacks" operating almost within the confines...

Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations

Raw threat intel isn't enough without real-world context. Criminal IP has partnered with Securonix to integrate exposure-based intelligence into Threa...

China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists

Cybersecurity researchers have disclosed details of a new China-aligned espionage campaign targeting government and defense sectors across South, East...

Carding service Jerry’s Store leak exposes 345,000 stolen payment cards

Jerry’s Store, a card-checking service used by cybercriminals, exposed 345,000 stolen payment cards after leaving its server open, revealing sensitive...

Download: Automating Pentest Delivery Guide

Pentesting remains one of the most effective ways to identify real-world weaknesses, but the method for delivering results hasn’t evolved. Manual work...

Name That Toon: Mark of (Security) Progress

Feeling creative? Have something to say about the last 20 years of cybersecurity? Our editors will award the best cybersecurity-related caption with a...

20 Years in Cyber: Dark Reading Marks Milestone With Month of Special Coverage

On this day in 2006, Dark Reading went live. We have a celebration planned that spans our two decades of covering the industry, and you, dear readers,...

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-31431 L...

Careful Adoption of Agentic AI Services

CISA, in collaboration with the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other international and U.S. partne...

Two US Security Experts Sentenced to Prison for Helping Ransomware Gang

Ryan Goldberg of Georgia and Kevin Martin of Texas were each sentenced to four years in prison.  The post Two US Security Experts Sentenced to Prison ...

Sophisticated Deep#Door Backdoor Enables Espionage, Disruption

The stealthy Python-based backdoor framework deploys a persistent Windows implant likely designed for espionage. The post Sophisticated Deep#Door Back...

Top Five Sales Challenges Costing MSPs Cybersecurity Revenue

The managed security services market is projected to grow from $38.31 billion in 2025 to $69.16 billion by 2030[1], with cybersecurity being the faste...

Cisco Releases Open Source Tool for AI Model Provenance 

The new kit aims to address risks related to poisoned models, regulatory issues, supply chain integrity, and incident response. The post Cisco Release...

Human-centric failures: Why BEC continues to work despite MFA

Business email compromise (BEC) is still thriving even in organizations that have implemented multi-factor authentication (MFA). As security professio...

Anthropic launches Claude Security to counter rapid AI-Powered exploits

Anthropic launched Claude Security to counter faster AI-driven cyberattacks, as tools like Mythos enable near-instant exploitation by threat actors. A...

Just 34% of cyber pros plan to stick with their current employer

Declining job satisfaction means that only one in three (34%) cybersecurity professionals plan to stay with their current employer, increasing the pre...

Managing OT risk at scale: Why OT cyber decisions are leadership decisions

The first time I approached an OT environment, I assumed that the strategies effective in IT cybersecurity would be equally applicable. I was wrong. T...

SonicWall patches three SonicOS flaws in Gen 6, 7 and 8 firewalls. Patch them now

SonicWall patches three SonicOS flaws in Gen 6, 7 and 8 firewalls. The company released firmware updates to block bypass attacks and unauthorized acce...

Open-source privacy proxy masks PII before prompts reach external AI services

Enterprise developers routinely send prompts to external large language models that contain customer emails, support transcripts, and other identifyin...

Shadow AI risks deepen as 31% of users get no employer training

Between one-fifth and one-third of workers use AI outside the influence and governance of the IT function, according to a global survey of 6,000 full-...

Identity is the control plane for distributed infrastructure

Teleport CEO Ev Kontsevoy makes the case that distributed infrastructure, across cloud, Kubernetes, databases, and servers, can’t be secured by ...

AI traffic is getting bigger, louder, and less predictable

AI workflows need storage that supports repeated movement across the model lifecycle. Large datasets are ingested, transformed, exported for training,...

ISC Stormcast For Friday, May 1st, 2026 https://isc.sans.edu/podcastdetail/9914, (Fri, May 1st)

Former incident responders sentenced to 4 years in prison for committing ransomware attacks

Ryan Goldberg and Kevin Martin attacked five companies in 2023 and extorted nearly $1.3 million from one of their victims. The post Former incident re...

FCC tightens KYC rules for telecoms, closes loophole for banned foreign services

The commission wants telecoms to do more to verify their callers and prevent illegal calls and scams from reaching Americans. The post FCC tightens KY...

TeamPCP Hits SAP Packages With 'Mini Shai-Hulud' Attack

Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain attacks broaden.

Congress kicks the can down the road on surveillance law (again)

It’s the second extension of Section 702 of the Foreign Intelligence Surveillance Act in 10 days, and a regular ritual for the Hill. The post Congress...

cPanel’s authentication bypass bug is being exploited in the wild, CISA warns

The agency added the flaw to the KEV list days after hosting providers confirmed active, ongoing attacks. The post cPanel’s authentication bypas...

Copy Fail: New Linux bug enables Root via page‑cache corruption

Linux flaw CVE‑2026‑31431, ‘Copy Fail,’ lets any local user write four bytes into page cache files, enabling easy escalation to root on ma...

OpenAI Rolls Out ‘Advanced’ Security Mode for At-Risk Accounts

OpenAI is rolling out Advanced Account Security for people concerned that their ChatGPT or Codex accounts could be potential targets of phishing attac...

What’s new, updated, or recently released in Microsoft Security

Stay ahead of emerging threats with Microsoft’s newest security innovations and updates, delivered through the In the Loop series. The post What’s new...

Email threat landscape: Q1 2026 trends and insights

In early 2026, email threats increased with a rise in credential phishing, QR code phishing, and CAPTCHA-gated campaigns, highlighted by Microsoft’s d...

Anti-DDoS Firm Heaped Attacks on Brazilian ISPs

A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible...

ABB AWIN Gateways

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to remotely reboot the device or complete an unauthenticate...

ABB Ability OPTIMAX

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to bypass user authentication on OPTIMAX installations that ma...

ABB PCM600

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to send specially crafted messages to the system node resultin...

90,000 Screenshots of One Celebrity's Phone Were Exposed Online

Spyware appears to have captured everything from intimate photos to private messages from the smartphone of European celebrity. They were publicly acc...

Silver Fox uses the new ABCDoor backdoor to target organizations in Russia and India

The Silver Fox group is targeting companies in Russia and India by impersonating tax authorities to distribute ValleyRAT and the new ABCDoor backdoor.

ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th)

Danger of Libredtail [Guest Diary], (Wed, Apr 29th)

[This is a Guest Diary by James Roberts, an ISC intern as part of the SANS.edu BACS program]

8 best practices for CISOs conducting risk reviews

Embracing strong proactive security is something we can all do to mitigate our increased exposure to security threats. The post 8 best practices for C...

Today's Odd Web Requests, (Wed, Apr 29th)

Today, two different "new" requests hit our honeypots. Both appear to be recon requests and not associated with specific vulnerabilities. But as alway...

Why Sharing a Screenshot Can Get You Jailed in the UAE

The war in Iran has drawn attention to arrests in the United Arab Emirates over online content, but the legal framework behind that enforcement has ex...

The Race Is on to Keep AI Agents From Running Wild With Your Credit Cards

AI agents may soon be buying your stuff for you. The FIDO Alliance has teamed up with Google and Mastercard to try to ensure that shopping in the near...

PhantomRPC: A new privilege escalation technique in Windows RPC

Kaspersky researcher discovered a vulnerability in RPC architecture that enables an attacker to create a fake RPC server and escalate their privileges...

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated...

FakeWallet crypto stealer spreading through iOS apps in the App Store

In March 2026, we uncovered more than twenty phishing apps in the Apple App Store masquerading as popular crypto wallets.

Threat landscape for industrial automation systems in Q4 2025

The report contains industrial threat statistics for Q4 2025. It covers various infection vectors and malware types, as well as regional statistics an...

Patch Tuesday, April 2026 Edition

Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, includ...

JanelaRAT: a financial threat targeting users in Latin America

Kaspersky GReAT experts describe the latest JanelaRAT campaign detailing infection chain and malware functionality updates.

Russia Hacked Routers to Steal Microsoft Office Tokens

Hackers linked to Russia's military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Micr...

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities ...

Mind-Refactoring para Ejecutivos, Ingenieros y Técnicos: La gestión del MIEDO a ser reemplazado por la Inteligencia Artificial

Si eres un/a profesional que estás en la fase de ansiedad por la irrupción de la Inteligencia Artificial entonces esto es para ti. Si no es tu caso, s...

“Copy Fail” 732 bytes para conseguir root en casi cualquier Linux moderno

Durante años hemos asumido algo casi dogmático en Linux: lo que ejecuta el kernel desde disco es fiable, porque el page cache es coherente. Pero una n...

Charla en Futurenet World & Entrevista En Casa de Herrero

Hoy es día 1 de Mayo, el día internacional del trabajador. Y yo sigo mi costumbre de ocuparme de publicar todos los días, así que hoy no iba a faltar ...

El sector público y el industrial, principales objetivos de los ciberdelincuentes en 2025

Según el informe global de Kaspersky Security Services, “Anatomy of a Cyber World”, el sector público se ha consolidado como el principal objetivo de ...

Podcast | ¿Te hackearon la cuenta? Qué hacer en los primeros 15 minutos

En este episodio descubrirás cómo reconocer un acceso no autorizado, entender por qué ocurre y actuar a tiempo para proteger tus cuentas y evitar pérd...

Bug Hunting and Vibe-Exploiting en 86-DOS "High-performance operating system for the 8086" version 1.00 del 04/28/81

Hace un par de días, coincidiendo con el 45 aniversario de su creación, Tim Paterson ha puesto en GitHub el código fuente en abierto de varias version...

La industria de pagos avanza hacia la supervisión continua como nuevo estándar de seguridad 

La imparable expansión de los pagos digitales a través de terminales de punto de venta (TPV), puntos de recarga de vehículos eléctricos, tiqueteras de...

¿Qué pasa con tus datos en ChatGPT? Riesgos de privacidad y cómo protegerlos

Cómo se almacenan tus conversaciones en ChatGPT, quién puede acceder a tus datos y qué configuraciones usar para proteger información sensible.

7 y 8 de Mayo: Tres eventos en Madrid sobre Cloudflare, Ciberseguridad, IA, Hacking con IA y Hack Royale

A finales de la semana que viene pasaré por Madrid. Será un viaje relámpago que me he comprimido con muchas actividades, que tendrán que ver con comid...

Eliminar la superficie de ataque, clave frente a vulnerabilidades en la era de la IA

Zscaler, Inc., empresa de seguridad en la nube, alerta de un punto de inflexión en la ciberseguridad impulsado por la inteligencia artificial. Según l...

1.900 ciberataques semanales: el desorden documental agrava el impacto del ransomware

El ransomware vuelve a situarse en el centro de la agenda empresarial tras una nueva oleada de ciberataques que afecta tanto a grandes infraestructura...

Cabolo: la inteligencia artificial que protege la información sin depender de la nube

La innovadora tecnología italiana transforma audio y vídeo en texto, permitiendo la organización, el archivo y el análisis de la información generada ...

La actividad del ransomware en el primer trimestre de 2026

El primer trimestre de 2026 muestra un panorama claro del estado actual del ransomware: más de 2.000 víctimas y grupos que atacaron industrias crítica...

Cuando el software confiable falla: ataques a la cadena de suministro open source en 2026

Compromisos recientes muestran cómo el open source se volvió un objetivo estratégico para cibercriminales: qué patrones se repiten y cómo los servicio...

La Comisión Europea exige a Google que abra sus datos de búsqueda a la competencia.

La Comisión Europea ha exigido a Google que comparta sus datos de búsqueda con motores rivales bajo la DMA. El problema es que sucede con esos datos u...

Sólo hasta el jueves: Semana del libro en @0xWord: Cupón 10% descuento DIALIBRO2026 por el #Diadelibro2026

Hace poco os lo anunciaba, un año más, desde 0xWord nos sumamos a celebrar el Día del Libro, PERO SÓLO hasta el próximo JUEVES 30 ...

Lo que se vende de IA en la Dark Web (III) — el mercado negro de datasets

Durante los dos artículos anteriores hemos hablado de herramientas como los LLMs sin censura o los deepfakes como servicio. Pero hay algo más importan...

Francia sufre un ciberataque que expone los datos de sus ciudadanos

La Agencia Nacional de Títulos Seguros de Francia (ANTS) ha confirmado una brecha de seguridad detectada el 15 de abril que podría haber afectado a 11...

Quishing: el nuevo peligro de los códigos QR que todos usamos

El quishing es phishing con códigos QR. En lugar de un enlace falso, el atacante incluye un QR que lleva a una página falsa. Los filtros de correo no ...

En España partir de octubre, si te llama un 400 es una llamada comercial

A partir de octubre, todas las llamadas comerciales en España deberán realizarse desde números que empiecen por 400. Serán unidireccionales: podrán ll...

La calma antes del ransomware: cuando la falsa seguridad oculta brechas invisibles

Un periodo prolongado sin incidentes puede generar complacencia y erosionar la vigilancia. En ciberseguridad, no ver señales de ataque no siempre equi...

Lo que se vende de IA en la Dark Web (II) — Deepfake-as-a-Service

 “La voz sonaba igual. El tono, las pausas, incluso la forma de dudar. Pero no era él.” Durante años, la ingeniería social ha sido un juego de te...

Google, Microsoft y Anthropic quieren que los agentes de IA tengan su propia identidad.

La Coalition for Secure AI (CoSAI) publicado un marco técnico para gestionar la identidad de los agentes de IA autónomos. El problema: los sistemas ac...

Lo que se vende de IA en la Dark Web (I) — LLMs sin censura

Durante años, la dark web ha sido un mercado de accesos, exploits y datos robados. Pero con la llegada de la IA también era inevitable que acabara en ...

RedSun: anatomía de un 0-day que convierte Defender en SYSTEM

El repositorio https://github.com/Nightmare-Eclipse/RedSun no es un proyecto académico ni una PoC incompleta. Es la materialización funciona...

Una caña con Lawwait – Episodio 48 – Amador Aparicio

En este episodio de Una Caña con Lawwait nos ha hecho especial ilusión invitar a Amador Aparicio, un referente en el mundo de la ciberseguridad, inves...

Plan de Formación de Hacking Ético 2026

¡Ya tenemos el calendario de nuestro Plan de Formación de Hacking Ético 2026! NO es solo formación. Se trata de una experiencia formativa diseñada par...

¿Cuánto valen tus recuerdos? – DÍA MUNDIAL DEL BACKUP

Imagínalo un momento. Sales de casa como cualquier otro día. Todo normal. Saliendo del trabajo vas a una cafetería llena de gente, y cuando estás pidi...

Agentic AI y ciberseguridad: cuando los agentes de IA se convierten en vector de ataque

La evolución de los Large Language Models (LLMs) hacia sistemas agénticos representa un cambio paradigmático en la arquitectura de las aplicaciones em...

NOTICIAS SECURÍZAME – EVENTOS Y FORMACIÓN DE MARZO 2026

Marzo llega con fuerza para comenzar nuestros contenidos formativos. Este mes damos inicio a la formación privada para el CNTG, donde seguiremos traba...

Una caña con Lawwait – Episodio 47 – Daniel San Miguel

En este nuevo capítulo de “Una Caña con Lawwait” contamos con un invitado muy especial: una de las personas que marcó los inicios profesionales de Lor...

Las peores contraseñas de todos los tiempos

Las peores contraseñas de todos los tiempos Las peores contraseñas de todos los tiempos son aquellas que, por pereza o previsibilidad, se repiten mill...

(2/3) Ataques DDoS en capas 3 y 4: vectores, funcionamiento y defensa

Esta es la segunda entrega sobre amenazas DDoS, en esta ocasión nos adentramos en las capas de red y transporte para analizar los vectores más comunes...

ISO/IEC 42001: el sistema de gestión de IA que probablemente conectemos con nuestra 27001

ISO/IEC 42001 se concibe como el nuevo esqueleto operativo para transformar la inteligencia artificial en un sistema gestionado con disciplina. No es ...

MITRE AADAPT: Anatomía ofensiva y defensa en el ecosistema de activos digitales

Cuando uno pasa demasiadas noches frente a un nodo de Ethereum observando tráfico, firmas, anomalías y patrones sospechosos, descubre que el ecosistem...

Prueba de Penetración en Costa Rica

Prueba de Penetración en Costa Rica Prueba de Penetración en Costa Rica: Un Servicio Esencial para la Seguridad Empresarial Introducción En un mundo c...

Prueba de Penetración en Quito

Prueba de Penetración en Quito La Prueba de Penetración en Quito, también conocida como Pentesting, se ha convertido en una herramienta fundamental pa...

Prueba de Penetración en El Salvador

Prueba de Penetración en El Salvador En la era digital actual, la seguridad informática es un aspecto crucial para cualquier empresa. El Salvador, com...

Prueba de penetración en Barranquilla

Prueba de penetración en Barranquilla La prueba de penetración en Barranquilla es un proceso esencial para garantizar la seguridad informática en cual...

Snapshots en máquinas virtuales: ¿una herramienta útil o un riesgo oculto?

¿Piensas que una instantánea de una máquina virtual es lo mismo que un backup o una copia del disco? Entonces este post es para ti.Antes de nada, vamo...

Pensar como un atacante: por qué el Red Team es clave para la ciberseguridad moderna

En un entorno digital donde las amenazas evolucionan más rápido que las soluciones, protegerse ya no es suficiente. Hay que anticiparse. Y para eso, e...

Cómo saber si una app es falsa: ten siempre en cuenta estas claves

Vivimos constantemente con el móvil en la mano; es un dispositivo que usamos para casi todo. Hoy en día es útil tanto para cosas como pagar el café, c...

Cómo proteger el ordenador sin ser un genio tech

Saber cómo proteger el ordenador nunca ha sido tan vital. Imagina perder tu equipo con Windows y no saber si tus datos personales están seguros. El pá...

Privacidad en Internet: evita el rastreo y navega con seguridad

La privacidad en Internet se ha convertido en una preocupación constante. Es así como cada clic, búsqueda o interacción en línea puede dejar una huell...

Álbum oculto: paso a paso para activarlo en tu teléfono Android

Las fotos y vídeos revelan un montón de información de tu vida personal. No siempre queremos que estén a la vista. Es por eso que en este artículo hab...