Otro detenido más por accesos no autorizados a plataformas educativas... En este caso, el detenido parece que también era docente elmundo.es/andalucia/2025…

Agenda - Hack.lu and CTI summit 2025 published The conference is taking place over 4 days (from Tuesday 21st October 2025 until the 24th October 2025) which includes hack.lu main track and training or workshop sessions. 2025.hack.lu/agenda/

Pondering my ORB - A look at #PolarEdge Adjacent Infrastructure censys.com/blog/pondering…

Esperamos que hayáis podido descansar estas vacaciones. El próximo lunes vuelve a la actividad a la escuela, recordar que los estudiantes de nuevo ingreso tenéis la próxima semana las jornadas de bienvenida y dan comienzo los cursos ceros. Universidad Alcalá escuelapolitecnica.uah.es/es/novedad/Jor…

Citrix forgot to tell you CVE-2025–6543 has been used as a zero day since May 2025 | by Kevin Beaumont doublepulsar.com/citrix-forgot-…

Un 46% de los españoles cuyos padres no tienen estudios más allá de la ESO, tampoco han logrado estudios medios. Ese porcentaje es del 6% entre quienes uno de sus padres tiene estudios superiores. El martes 9 de septiembre se publican los nuevos datos de Education at a Glance

Happy to release SAMLSmith together with Eric Woodruff | MVP | CIDPRO - Generate forged SAML responses - Simulate Silver SAML & Golden SAML attacks - Extract usable certificate files from AD FS encrypted materials. The tool is written in C# Check it out here - github.com/Semperis/SAMLS…

TLS 1.4 datatracker.ietf.org/doc/draft-zhou…

We have created this website to keep track of companies that have confirmed being affected by the Salesloft Drift breach driftbreach.com

Preprint del paper "Zero‑Trust Token Authorization with Trapdoor Hashes for Scalable Distributed Firewalls" en papers.ssrn.com/sol3/papers.cf… INCIBE #PlanDeRecuperación #NextGenerationEU #ProyectosCiber pervasive.gast.it.uc3m.es/projects/ramon… discovery.uvigo.gal

🚨 There’s a large-scale supply chain attack in progress: the NPM account of a reputable developer has been compromised. The affected packages have already been downloaded over 1 billion times, meaning the entire JavaScript ecosystem may be at risk. The malicious payload works

I looked at the inserted JavaScript payload. It’s not novel or sophisticated. The obfuscation was done with a known tool – likely obfuscator.io or something similar. Used in low-effort malware for years. Typical structure: - Hex-encoded strings with a central _0x

🚨Cyber Attack Alert‼️ 🇪🇸Spain - ESIC University Qilin ransomware group has claimed responsibility for a data breach at ESIC University in Spain. According to the group, attackers allegedly exfiltrated 421 GB of data across 97,000 files, including personal information of more

Are you a student, professor or work in IT at a university? We offer a free account upgrade that is automatically applied if you sign-up with an academic TLD: help.shodan.io/the-basics/aca…

Nuevas plazas disponibles en la cátedra! uah.es/es/investigaci… Busca: Contratación temporal de personal investigador en la cátedra de investigación IA3: Cátedra de Inteligencia Artificial en Aeronáutica y Aeroespacio.

There is a lot of content/social post created/assisted with AI. I think it is a good time to add some transparency! 😉 ᴅᴀɴɪᴇʟ ᴍɪᴇssʟᴇʀ 🛡️ created the AI Influence Level and I think this is a great tool to use.

Be careful with the IOCs in this FBI Flash Alert, there are multiple Microsoft IPs in there and a Zscaler one. I can already predict this is going to cause some issues for some who aren't checking properly. ic3.gov/CSA/2025/25091…

Here's a blog post all about how this tool was designed and built over the last few months! blog.zsec.uk/pyldapgui/ #LDAP #ActiveDirectory #Python #RedTeam #Pentesting #AdversaryEmulation #Malwareless #BloodHound #Infosec #PurpleTeam

I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…

The UK’s National Crime Agency has announced the arrest of two suspected members of the Scattered Spider group in connection with last year’s hack of Transport for London. Thalha Jubair, 19, from East London, and Owen Flowers, 18, from Walsall, were taken into custody at their