soc

📅 Kalender

< July 2026 >
Mo
Di
Mi
Do
Fr
Sa
So
12
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
soc

How Dark Data Leaves Security Teams One Step Behind

How Dark Data Leaves Security Teams One Step Behind Cyber Threat Intelligence has come a long way. In the past, real-time threat feeds, dark web monitoring, and indicator-sharing platforms were reserved for governments and Fortune 500 companies. Today, 90% of organizations have dedicated CTI resources, according to the 2026 SANS CTI Survey. The tools are […]

Mehr lesen →
soc

CVE-2024-12802: SonicWall SSL-VPN MFA Bypass Persists on Gen6

CVE-2024-12802: SonicWall SSL-VPN MFA Bypass Persists on Gen6 CVE-2024-12802 is an authentication bypass that can result in an SSL-VPN MFA bypass affecting SonicWall SonicOS / SonicWall SSL-VPN when the VPN is integrated with Microsoft Active Directory (AD) in certain configurations. The issue matters because defenders may think they are protected after upgrading firmware, yet Gen6 […]

Mehr lesen →
soc

Verizon 2026 DBIR: 10 Takeaways You Should Know

Verizon 2026 DBIR: 10 Takeaways You Should Know Verizon’s 2026 Data Breach Investigations Report (DBIR) analyzes more than 31,000 security incidents and 22,000 confirmed breaches across organizations in 145 countries, the largest breach dataset the report has ever examined. This 19th edition marks a clear inflection point: vulnerability exploitation has overtaken credential abuse as the […]

Mehr lesen →
soc

TeamPCP GitHub Breach: Internal GitHub Repositories Allegedly Accessed

TeamPCP GitHub Breach: Internal GitHub Repositories Allegedly Accessed TeamPCP is back in the headlines, and this time the target is not a plugin, a CI/CD pipeline, or an open-source package. The group is claiming access to GitHub itself, one of the most critical pieces of infrastructure in the global software development ecosystem. This is a […]

Mehr lesen →
soc

B1ack’s Stash Releases 4.6 Million Stolen Credit Cards for Free

B1ack’s Stash Releases 4.6 Million Stolen Credit Cards for Free A notorious Dark Web carding marketplace is making headlines again. B1ack’s Stash, one of the most active illicit card shops on the Dark Web, has announced the free release of approximately 4.6 million stolen credit card records, this time framing it as a response to […]

Mehr lesen →
soc

EDR Terminator Sale, Alleged Adobe Business Leak, Serbia MUP Data Offer, and Argentina BCRA IOMA GDEBA Claims

EDR Terminator Sale, Alleged Adobe Business Leak, Serbia MUP Data Offer, and Argentina BCRA IOMA GDEBA Claims SOCRadar Dark Web Team identified several new underground posts, including a listing advertising a kernel-level “EDR/XDR terminator” package, a separate claim of an 832.87GB “Adobe Business” data collection, and two government-focused datasets involving Serbia’s Ministry of Interior (MUP) […]

Mehr lesen →
soc

CVE-2026-20182: Critical Authentication Bypass in Cisco SD-WAN Can Grant Admin Access

A vulnerability affecting Cisco Catalyst SD-WAN Controller has drawn urgent attention after Cisco, Rapid7, and CISA confirmed active exploitation. CVE-2026-20182 is a critical authentication bypass flaw in Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager that carries a CVSS 10.0 score and can let an unauthenticated remote attacker gain administrative privileges on an affected […]

Mehr lesen →
soc

CVE-2026-42897: Exchange Server OWA Spoofing Flaw Exploited via Crafted Email

Microsoft has disclosed a vulnerability impacting on-premise versions of Exchange Server that is already seeing active exploitation in the wild. Tracked as CVE-2026-42897, the issue carries a CVSS score of 8.1 and affects Exchange Server 2016, Exchange Server 2019, and Exchange Server Subscription Edition, while Exchange Online is not impacted. Microsoft describes it as a […]

Mehr lesen →
soc

Inside The Gentlemen Ransomware Leak: When the Hunter Becomes the Hunted

Inside The Gentlemen Ransomware Leak: When the Hunter Becomes the Hunted Ransomware groups spend their days breaking into networks, stealing data, and pressuring victims into paying. They rarely find themselves on the other side of that equation. But in early May 2026, one of the most active ransomware operations in the world found out what […]

Mehr lesen →
soc

CVE-2026-20182: Cisco Catalyst SD-WAN Auth Bypass Added to CISA KEV

CVE-2026-20182: Cisco Catalyst SD-WAN Auth Bypass Added to CISA KEV Cisco has disclosed CVE-2026-20182, a critical authentication bypass affecting Cisco Catalyst SD-WAN Controller (formerly vSmart) and Cisco Catalyst SD-WAN Manager (formerly vManage). The flaw is in the peering authentication / control-connection handshake process and can allow an unauthenticated remote attacker to bypass authentication and gain […]

Mehr lesen →