Join us for hands-on training at the OWASP Global AppSec US Conference, November 3–5, 2025 in Washington, D.C.!
Choose from expert-led courses covering the latest in AppSec, threat modeling, secure coding, and more. 
Perfect for developers, defenders, managers, and anyone ready to level up their security game!
Register now!
Cracking the Coinbase Breach: What Went Wrong and What We Can Learn https://www.cm-alliance.com/cybersecurity-blog/cracking-the-coinbase-breach-what-went-wrong-and-what-we-can-learn #cyberincidentresponsetraining #cybercrisismanagement #cyberincidentresponse #tabletopexercises #cyberresilience #cybersecurity
Over the past few years, we've been discussing our research into Traffic Distribution Systems (TDSs), especially those that power malicious adtech. We've created this cheatsheet to help those unfamiliar with TDSs get up to speed. Tell us what you think and if there are any other cheatsheets you feel would be helpful!
Missed the #LPI 25th anniversary giveaway? We’ve extended the deadline!
To show our appreciation for the community that makes our efforts to support #FOSS possible: every 25th candidate who takes an #LPI exam Jan. 1 - June 30 will receive a free voucher for their next exam!
Learn more: https://lpi.org/7ivv
Fletus Poston III: Navigating The Ever Changing Career Landscape Of Cybersecurity #cybersecurity #infosec #innovation #personalbranding https://podcasters.spotify.com/pod/show/phillip-wylie0/episodes/Fletus-Poston-III-Navigating-The-Ever-Changing-Career-Landscape-Of-Cybersecurity-e2ucvpi?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Episode-Reposts
Pwn2Own Berlin 2025: Windows, Linux e Virtualbox cadono miseramente in un giorno. Ed è solo l’inizio
Link all'articolo : https://www.redhotcyber.com/post/pwn2own-berlin-2025-windows-linux-e-virtualbox-cadono-miseramente-in-un-giorno-ed-e-solo-linizio/
Science Hill High School expands career and technical education program https://www.byteseu.com/1016561/ #CareerAndTechnicalEducation #Certifications #CTEProgram #cybersecurity #DualEnrollment #HandsOnExperience #NursingAssistants #Science #ScienceHillHighSchool
For those interested in testing the security of their gear...
"#Lynis is a battle-tested security tool for systems running Linux, #macOS, or #Unix-based operating system. It performs an extensive health scan of your systems to support system hardening and compliance testing. The project is open source software."
#CyberSecurity #Resilience #Privacy #Linux #OpenSource #DigitalSecurity #SystemHardening #SecurityTools #Technology #EOS #Arch #News
Rather than running about, dragging cables and carrying boxes, a wise #cybersecurity warrior fights smarter rather than harder. https://cromwell-intl.com/networking/vlan.html?s=mc
Hey! Scrolls volume 16 has arrived! Go check it out for the usual fun discoveries across the #IndieWeb, #Fediverse and #Infosec / #Cybersecurity realms!
https://shellsharks.com/scrolls/scroll/2025-05-16
Special credit to everyone mentioned below for their awesome contributions to this weeks issue. 
@thelinuxcast @philipp @Discourse @ben @platinumtulip @radwebhosting @adam @sophywong @mastoe @murtezayesil @dominik @Vollmer @joel @tinimalina @steven @liztai @EmilyMoranBarwick @latte @hack13 @khurtwilliams @indieaisle @daj @ianb @Zardus @hrbrmstr @lirantal @deadsuperhero @trailofbits @axxuy @thomasareed @DAK @philipp @reillypascal @PromptedInk @nopatience @grickle
I finally got an email (well, it was on Tuesday, but stuck in my Spam folder) from Marks & Spencer about their "cyber incident". Obviously it was sent via a 3rd party, Everest Engagement
"Unfortunately, the nature of the incident means that some personal customer data has been taken, but there is no evidence that it has been shared. The personal data could include contact details, date of birth and online order history."
EUVD, la banca dati europea delle vulnerabilità: nasce il cuore cibernetico della sicurezza UE
Link all'articolo : https://www.redhotcyber.com/post/euvd-la-banca-dati-europea-delle-vulnerabilita-nasce-il-cuore-cibernetico-della-sicurezza-ue/
Healthcare Cyber-Attacks Intensify, Sector Now Prime Target
Computing research has identified the security tools and partners the Co-op used to stop last month’s cyberattack in its tracks.
Coinbase says hackers bribed staff to steal customer data and are demanding $20 million ransom
Coinbase reported cybercriminals bribed overseas support agents to steal customer data to use in social engineering attacks. The incident may cost Coinbase up to $400 million to fix
#coinbase #cryptocurrency #crypto #web3 #socialengineering #databreach #security #cybersecurity #hackers #hacking #hacked
#Windows 10 KB5058379 update triggers #BitLocker recovery on some devices
Cybersecurity students — don’t miss this!
The Cédric Blancher Memorial Scholarship offers free passes to the Honeynet Project Workshop 2025 in Prague — 3 days packed with trainings and talks from top experts.
Deadline: May 20 — just a few days left!
We especially encourage underrepresented groups to apply
Apply now via our website: https://prague2025.honeynet.org
New AI-powered vishing campaign alert! Senior U.S. officials are being impersonated via deepfake voice calls & smishing texts to hijack sensitive accounts. The FBI warns: verify contacts, watch for odd messages, enable MFA, & never share codes! Stay vigilant against AI-driven social engineering! 
#CyberSecurity #Vishing #AIThreats #FBIAlert #InfoSec #PhishingAwareness #newz
Read more 
https://cyberinsider.com/senior-u-s-officials-impersonated-in-ai-powered-vishing-campaign/
Looking for some help, boosts appreciated:
Anyone with a security contact at Disney or ABC Network?
I know Disney has a bug bounty program, but the issue is with a third-party software leaking data from multiple companies.
Found no information as to who owns the software online and would like some help figuring out who to notify.
Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks
Cui Bono? 
