Wow, the damage from that Red Hat GitLab breach seems to be getting worse by the day. Jeez.

The Crimson Collective, the cybercriminal gang claiming responsibility for breaching the repo and stealing over 500GB of data, now seems to be collaborating with other cybercriminal gangs to extort Red Hat.

From the article, the cybercrim alliance:

"threatens to publish a "multi terabyte of data haul of your most sensitive intellectual property" and accuses Red Hat of failing to safeguard what it claims are trade secrets and personal data, invoking GDPR and US state privacy laws. It also reckons Red Hat's doors were kicked in on September 13 – weeks before the company came clean about the break-in."

https://www.theregister.com/2025/10/07/red_hat_breach_new_claims/?td=rt-9bp

#redhat #gitlab #news #technews #cyberattack #breach #cybersecurity #security #cybercrime #crime #extortion

Wow, the damage from that Red Hat GitLab breach seems to be getting worse by the day. Jeez.

The Crimson Collective, the cybercriminal gang claiming responsibility for breaching the repo and stealing over 500GB of data, now seems to be collaborating with other cybercriminal gangs to extort Red Hat.

From the article, the cybercrim alliance:

"threatens to publish a "multi terabyte of data haul of your most sensitive intellectual property" and accuses Red Hat of failing to safeguard what it claims are trade secrets and personal data, invoking GDPR and US state privacy laws. It also reckons Red Hat's doors were kicked in on September 13 – weeks before the company came clean about the break-in."

https://www.theregister.com/2025/10/07/red_hat_breach_new_claims/?td=rt-9bp

#redhat #gitlab #news #technews #cyberattack #breach #cybersecurity #security #cybercrime #crime #extortion

#Cybersecurity Training Programs Don’t Prevent Employees from Falling for Phishing Scams

“The team also examined the efficacy of embedded phishing training – the practice of sharing anti-phishing information after a user engages with a phishing email sent by their organization as a test. For this type of training, researchers found that the difference in failure rates between employees who had completed the training and those who did not was extremely low”

https://today.ucsd.edu/story/cybersecurity-training-programs-dont-prevent-employees-from-falling-for-phishing-scams

🥸 Who Owns Express VPN, Nord, Surfshark? VPN Relationships Explained / Windscribe

｢ ExpressVPN was founded in 2009 by Peter Burchhardt and Dan Pomerantzwe who later sold it to British-Israeli security software company Kape Technologies in a $936 million deal ｣

https://windscribe.com/blog/the-vpn-relationship-map/

#vpn #privacy #cybersecurity

🎣 Phishing Alert!

Hackers use lookalike domains to trick you into clicking fake links. These sites steal logins, banking info & more.

🛡️ Stay safe:
🔹 Double-check URLs
🔹 Don’t log in via links
🔹 Bookmark official sites

👉 Check the full guide: https://tuta.com/blog/how-to-prevent-phishing

Stay alert this #CyberSecurityMonth

#CyberSecurity #Phishing

Schlimmer als zunächst gedacht: Der Firewallhersteller Sonicwall muss seine Einschätzung zum kürzlich gemeldeten Sicherheitsvorfall drastisch korrigieren. 🚨

Zum Artikel: https://heise.de/-10748910?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Cybersecurity #Datenleck #Sonicwall #Ransomware #ITSicherheit

Schlimmer als zunächst gedacht: Der Firewallhersteller Sonicwall muss seine Einschätzung zum kürzlich gemeldeten Sicherheitsvorfall drastisch korrigieren. 🚨

Zum Artikel: https://heise.de/-10748910?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Cybersecurity #Datenleck #Sonicwall #Ransomware #ITSicherheit

Anthropic: "In a joint study with the UK AI Security Institute and the Alan Turing Institute, we found that as few as 250 malicious documents can produce a "backdoor" vulnerability in a large language model—regardless of model size or training data volume. "

https://www.anthropic.com/research/small-samples-poison

#cybersecurity #backdoor #datapoisoning #llm #ai

Anthropic: "In a joint study with the UK AI Security Institute and the Alan Turing Institute, we found that as few as 250 malicious documents can produce a "backdoor" vulnerability in a large language model—regardless of model size or training data volume. "

https://www.anthropic.com/research/small-samples-poison

#cybersecurity #backdoor #datapoisoning #llm #ai

Bonjour,
Mon fils Nathan, en formation de développeur full stack à dû rompre son contrat d'alternance.
Son employeur ne le considérait plus comme alternant mais comme chef de projet, sans aucun accompagnement de sa part.
Nathan veut valider son diplôme de niveau 6, il a donc deux mois maximum pour trouver une alternance et poursuivre en suite des études dans le domaine de la cybersécurité.
Il recherche un employeur sur Lyon, Lons-le-Saunier, Chalon-sur-Saône, Bourg-en-Bresse.
#cybersecurity

Qilin, a ransomware group with a track record of intrusions against major entities around the world, claimed responsibility for a hack on Japan’s Asahi Group, which disrupted production at the beer and beverage giant. https://www.japantimes.co.jp/business/2025/10/08/companies/asahi-group-cyberattack-gang/?utm_medium=Social&utm_source=mastodon #business #companies #asahi #cybersecurity #hacking #asahibreweries

⚠️ Oracle forced to rush out patch for zero-day exploited in attacks | TechRadar

｢ CVE-2025-61882 scored 9.8/10; exploitation requires no authentication and enables full system takeover ｣
https://www.techradar.com/pro/security/oracle-forced-to-rush-out-patch-for-zero-day-exploited-in-attacks

#0day #oracle #cybersecurity

Asahi restarted six of its breweries in Japan on Thursday after a cyberattack forced the beer maker to halt production and shipments for several days. https://www.japantimes.co.jp/business/2025/10/06/companies/asahi-resumes-beer-supplies/?utm_medium=Social&utm_source=mastodon #business #companies #asahigroupholdings #drinking #alcohol #cybersecurity #hacking

Android spyware disguised as legitimate messaging apps targets UAE victims, researchers reveal https://cyberscoop.com/android-spyware-disguised-as-legitimate-messaging-apps-targets-uae-victims-researchers-reveal/ #cybersecurity #infosec

Android spyware disguised as legitimate messaging apps targets UAE victims, researchers reveal https://cyberscoop.com/android-spyware-disguised-as-legitimate-messaging-apps-targets-uae-victims-researchers-reveal/ #cybersecurity #infosec

Employment-related scams rose by over 1,000% from May through July, when new graduates typically search for jobs, and nearly 1 in 3 Americans report have received job offer scams via text message, according to McAfee. https://www.japantimes.co.jp/business/2025/10/06/economy/scams-us-job-hunters/?utm_medium=Social&utm_source=mastodon #business #economy #us #jobs #cybersecurity #misinformation #fraud

Security News This Week: Apple and Google Pull ICE-Tracking Apps, Bowing to DOJ Pressure – WIRED

Security News This Week: Apple and Google Pull ICE-Tracking Apps, Bowing to DOJ Pressure  WIREDLegal experts condemn Apple bowing…
#NewsBeep #News #Headlines #Apple #China #cybersecurity #Google #Privacy #Russia #scams #Security #securityroundup #UnitedStates #Us #USA
https://www.newsbeep.com/165151/

This is gonna go bad… Regular cybersecurity training is essential, but now it’s being relaxed, by the same guy who violated basic OPSEC using Signal to dodge oversight & let a journalist access classified info 🤦‍♂️ #Cybersecurity #InfoSec #Trump #Hegseth
https://www.theregister.com/2025/10/02/pentagon_relaxes_military_cybersecurity_training/