#CyberMonday PathWiper wiped Ukrainian infrastructure in 2025.
Cyber threats are not waiting for us to catch up. The PathWiper attack on Ukrainian critical infrastructure is a warning. Malware is now able to hit fast and giving defenders very little time to react.
🔥 Top News:
1️⃣ Misconfigured HMIs exposed US water systems — hundreds of control dashboards sat open on the internet, some with NO passwords.
2️⃣ Voice phishing attacks are now targeting cloud systems for data extortion.
3️⃣ A critical Cisco ISE flaw (CVSS 9.9) was patched, but proof-of-concept exploit code is already out there.
4️⃣ Chrome extensions leaked user data by sending info over HTTP and hard-coding secrets.
🫢 Recent Critical & High Severity CVEs
→ CVE-2021-32030/39780 (Asus Router #PotentialExpoit)
→ CVE-2024-56145 (Craft CMS #PublicExpoit)
→ CVE-2025-3935 (ScreenConnect #RemoteAccess)
→ CVE-2025-21479/21480 (Qualcome #MemoryLeak)
→ CVE-2025-5419 (Chrome #OutOfBounds)
See full CVE lists for the last 7 and 30 days if you want more detail — https://www.cvedetails.com/
Staying proactive is the only way forward.
My take: Security is not about fear, it is about staying ready. Simple checks can stop big leaks before they start.
Have you checked your extensions lately?😑
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Cybersecurity #DataProtection #ThreatIntel
Cyber threats are not waiting for us to catch up. The PathWiper attack on Ukrainian critical infrastructure is a warning. Malware is now able to hit fast and giving defenders very little time to react.
1️⃣ Misconfigured HMIs exposed US water systems — hundreds of control dashboards sat open on the internet, some with NO passwords.
2️⃣ Voice phishing attacks are now targeting cloud systems for data extortion.
3️⃣ A critical Cisco ISE flaw (CVSS 9.9) was patched, but proof-of-concept exploit code is already out there.
4️⃣ Chrome extensions leaked user data by sending info over HTTP and hard-coding secrets.
🫢 Recent Critical & High Severity CVEs
→ CVE-2021-32030/39780 (Asus Router #PotentialExpoit)
→ CVE-2024-56145 (Craft CMS #PublicExpoit)
→ CVE-2025-3935 (ScreenConnect #RemoteAccess)
→ CVE-2025-21479/21480 (Qualcome #MemoryLeak)
→ CVE-2025-5419 (Chrome #OutOfBounds)
See full CVE lists for the last 7 and 30 days if you want more detail — https://www.cvedetails.com/
Staying proactive is the only way forward.
My take: Security is not about fear, it is about staying ready. Simple checks can stop big leaks before they start.
Have you checked your extensions lately?
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Cybersecurity #DataProtection #ThreatIntel
Please open Telegram to view this post
VIEW IN TELEGRAM
👍4🤔1🤯1
I rarely ask for help, but today I must. 30,000 UAH could save real lives.
As a military and cybersecurity professional, my work is usually about building defense, in the cloud and on the ground. Today, I am reaching out for something even more personal.
The 3rd Assault Brigade (3 OShBr 🇺🇦) is in need of our help.
→ The goal is: 30,000 UAH.
→ The need is urgent: funds will support ‘Павук Допхіна’ ('Dolphin Spider'), a new multi-purpose platform built by the Brigade’s own engineers.
→ The impact is real: stronger tech means more lives protected and more missions completed.
Supporting these engineers is not just about equipment. It is about empowering the kind of innovation that keeps people safe and gives us a real edge.
Want to help?
1️⃣ Contribute here: https://send.monobank.ua/jar/A3Y5u1H5cL
2️⃣ If you can’t give, a simple repost can reach someone who can.
From my own experience at the front and in cyber defense, I know every bit counts. I believe in these people, and in our victory.
With faith in the #ZSU🫡
Glory to #Ukraine! 🇺🇦
#StandWithUkraine
As a military and cybersecurity professional, my work is usually about building defense, in the cloud and on the ground. Today, I am reaching out for something even more personal.
The 3rd Assault Brigade (3 OShBr 🇺🇦) is in need of our help.
→ The goal is: 30,000 UAH.
→ The need is urgent: funds will support ‘Павук Допхіна’ ('Dolphin Spider'), a new multi-purpose platform built by the Brigade’s own engineers.
→ The impact is real: stronger tech means more lives protected and more missions completed.
Supporting these engineers is not just about equipment. It is about empowering the kind of innovation that keeps people safe and gives us a real edge.
Want to help?
1️⃣ Contribute here: https://send.monobank.ua/jar/A3Y5u1H5cL
2️⃣ If you can’t give, a simple repost can reach someone who can.
From my own experience at the front and in cyber defense, I know every bit counts. I believe in these people, and in our victory.
With faith in the #ZSU🫡
Glory to #Ukraine! 🇺🇦
#StandWithUkraine
👍5
Want free mentorship? Bring 3 friends who love cybersecurity!
I know how hard it can feel to start in cybersecurity. When I began my journey, I had many questions and not enough answers. Today, I want to give back to the community that helped me learn and grow.
Here’s how it works:
1️⃣ Invite 3 friends who are interested in cybersecurity
2️⃣ Comment below their names
3️⃣ I’ll set up a free 1:1 session with you!💡
What will we talk about?
→ How to start a career in cybersecurity
→ Real-world threat trends and how to defend against them
→ Building a risk-resilient mindset
→ Deep dive into technical security (AWS, Azure, best practices)
Why bring friends?
Cybersecurity is not a solo sport. The more voices we have, the stronger our community becomes. Together, we can build a safer digital world.🌎
I’ve spent over 10 years leading security teams and building strong defenses, in the private sector and for the Armed Forces. I know that sharing knowledge moves us all forward.
If you want to learn, connect, and grow, this is your sign.🚀
Curious about what a session looks like? Ask me @stansecure
Stay secure.😑
__
Enjoying this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Cybersecurity #Mentorship
I know how hard it can feel to start in cybersecurity. When I began my journey, I had many questions and not enough answers. Today, I want to give back to the community that helped me learn and grow.
Here’s how it works:
1️⃣ Invite 3 friends who are interested in cybersecurity
2️⃣ Comment below their names
3️⃣ I’ll set up a free 1:1 session with you!💡
What will we talk about?
→ How to start a career in cybersecurity
→ Real-world threat trends and how to defend against them
→ Building a risk-resilient mindset
→ Deep dive into technical security (AWS, Azure, best practices)
Why bring friends?
Cybersecurity is not a solo sport. The more voices we have, the stronger our community becomes. Together, we can build a safer digital world.
I’ve spent over 10 years leading security teams and building strong defenses, in the private sector and for the Armed Forces. I know that sharing knowledge moves us all forward.
If you want to learn, connect, and grow, this is your sign.
Curious about what a session looks like? Ask me @stansecure
Stay secure.
__
Enjoying this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Cybersecurity #Mentorship
Please open Telegram to view this post
VIEW IN TELEGRAM
👍12🤯1
The biggest telecom hack in history didn’t start with malware.
It started with a person.
A compromised employee account.
On December 12, 2023, Kyivstar, Ukraine’s largest telecom, was taken down
24 million people lost mobile service.
No phone. No internet. No air raid alerts.
The attackers didn’t break in, they were already inside.
This wasn’t just a breach. It was cyberwar, and a blueprint for what’s coming.
Here are 3 lessons I believe every security leader must act on now:
1️⃣ The Myth of the Impenetrable Fortress is Dead
Attackers got in by targeting people, not tech.
They were inside for weeks before striking.
✔️ Your biggest risk is not your firewall - it’s your people.
✔️ Assume breach. Build from the inside out.
✔️ Security culture matters more than the latest tool.
2️⃣ Resilience > Prevention
When the core was destroyed, prevention didn’t matter.
Recovery did.
✔️ Do your backups survive when the backups are targeted?
✔️ Has your incident response actually been tested under fire?
✔️ Can your business keep running under attack?
3️⃣ Attacks Hit People, Not Just Servers
→ ATMs down.
→ Air Raid Alerts silenced.
→ Lives disrupted.
This wasn’t an IT problem.
It was a humanitarian one.
We defend networks, but what we’re really protecting are communities, economies, and national resilience.
The Kyivstar attack wasn’t just about code.
It was about culture, readiness, and people under pressure.
The real heroes? The engineers working through the night.
Their story matters just as much as the breach.
Stay secure.😑
__
Enjoying this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Resilience #Kyivstar
It started with a person.
A compromised employee account.
On December 12, 2023, Kyivstar, Ukraine’s largest telecom, was taken down
24 million people lost mobile service.
No phone. No internet. No air raid alerts.
The attackers didn’t break in, they were already inside.
This wasn’t just a breach. It was cyberwar, and a blueprint for what’s coming.
Here are 3 lessons I believe every security leader must act on now:
1️⃣ The Myth of the Impenetrable Fortress is Dead
Attackers got in by targeting people, not tech.
They were inside for weeks before striking.
✔️ Your biggest risk is not your firewall - it’s your people.
✔️ Assume breach. Build from the inside out.
✔️ Security culture matters more than the latest tool.
2️⃣ Resilience > Prevention
When the core was destroyed, prevention didn’t matter.
Recovery did.
✔️ Do your backups survive when the backups are targeted?
✔️ Has your incident response actually been tested under fire?
✔️ Can your business keep running under attack?
3️⃣ Attacks Hit People, Not Just Servers
→ ATMs down.
→ Air Raid Alerts silenced.
→ Lives disrupted.
This wasn’t an IT problem.
It was a humanitarian one.
We defend networks, but what we’re really protecting are communities, economies, and national resilience.
The Kyivstar attack wasn’t just about code.
It was about culture, readiness, and people under pressure.
The real heroes? The engineers working through the night.
Their story matters just as much as the breach.
Stay secure.
__
Enjoying this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Resilience #Kyivstar
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
👍17🤯2
#CyberMonday EchoLeak: Zero-click AI attacks now steal Microsoft 365 data with no user action needed.
A new threat called EchoLeak has appeared recently. Attackers can now pull sensitive data right out of Microsoft 365 Copilot - no clicks, no alerts, no warning. Zero-click means users do nothing, but data still leaves the building. 🫢
EchoLeak uses prompt injection to break through Copilot’s context and steal information. The bad actor does not need to trick you; AI becomes the way in.
This is part of a bigger trend:
More AI tools = more risk
🔥 Top News:
1️⃣ Salesforce, over 20 configuration weaknesses found exposing sensitive data.
2️⃣ Microsoft fixed 67 security flaws in Patch Tuesday (11 critical!).
3️⃣ Apple patched a zero-click bug in Messages used for spying.
4️⃣ Over 269,000 websites hit by JavaScript malware in one month.
🫢 Recent Critical & High Severity CVEs
→ CVE-2025-24016 (Wazuh #KnownExploited)
→ CVE-2025-32433 (Erlang #KnownExploited)
→ CVE-2024-42009 (Webmail #KnownExploited)
→ CVE-2025-33053 (WebDAV #PublicExploit)
See full CVE lists for the last 7 and 30 days if you want more detail — https://lnkd.in/dHN8u6nA
Stay alert, patch fast, and treat AI like every other critical system.😑
Which threat worries you most right now?
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Cybersecurity #InfoSec #ThreatIntel
A new threat called EchoLeak has appeared recently. Attackers can now pull sensitive data right out of Microsoft 365 Copilot - no clicks, no alerts, no warning. Zero-click means users do nothing, but data still leaves the building. 🫢
EchoLeak uses prompt injection to break through Copilot’s context and steal information. The bad actor does not need to trick you; AI becomes the way in.
This is part of a bigger trend:
More AI tools = more risk
1️⃣ Salesforce, over 20 configuration weaknesses found exposing sensitive data.
2️⃣ Microsoft fixed 67 security flaws in Patch Tuesday (11 critical!).
3️⃣ Apple patched a zero-click bug in Messages used for spying.
4️⃣ Over 269,000 websites hit by JavaScript malware in one month.
🫢 Recent Critical & High Severity CVEs
→ CVE-2025-24016 (Wazuh #KnownExploited)
→ CVE-2025-32433 (Erlang #KnownExploited)
→ CVE-2024-42009 (Webmail #KnownExploited)
→ CVE-2025-33053 (WebDAV #PublicExploit)
See full CVE lists for the last 7 and 30 days if you want more detail — https://lnkd.in/dHN8u6nA
Stay alert, patch fast, and treat AI like every other critical system.
Which threat worries you most right now?
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#Cybersecurity #InfoSec #ThreatIntel
Please open Telegram to view this post
VIEW IN TELEGRAM
👍3🤯2
The world calls it "news." For us, it's Tuesday morning in Kyiv.
This isn’t a movie set. It’s my neighborhood. My community. My reality.
As a cybersecurity professional, I see the same pattern here as in digital warfare: Deliberate targeting of civilian infrastructure. Accountability evasion. Global consequences when threats go unchecked.
They label it a "special military operation", but what kind of operation deliberately targets sleeping families?
Here’s what leaders need to understand:
→ Civilian targeting isn’t "collateral damage" — it’s intentional strategy
→ Every attack carries command approval, just like cyber threat actors
→ "Neutrality" enables aggressors
Our industry’s principles apply here: Threat analysis. Defense. Accountability.
This morning, people didn’t get to say "good morning."
How can we translate our skills into real-world protection for civilians? Convert your anger into contribution:
https://send.monobank.ua/jar/A3Y5u1H5cL
Eternal memory to those lost. Strength to the injured.
Action > anger.
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#CyberWarfare #StandWithUkraine
This isn’t a movie set. It’s my neighborhood. My community. My reality.
As a cybersecurity professional, I see the same pattern here as in digital warfare: Deliberate targeting of civilian infrastructure. Accountability evasion. Global consequences when threats go unchecked.
They label it a "special military operation", but what kind of operation deliberately targets sleeping families?
Here’s what leaders need to understand:
→ Civilian targeting isn’t "collateral damage" — it’s intentional strategy
→ Every attack carries command approval, just like cyber threat actors
→ "Neutrality" enables aggressors
Our industry’s principles apply here: Threat analysis. Defense. Accountability.
This morning, people didn’t get to say "good morning."
How can we translate our skills into real-world protection for civilians? Convert your anger into contribution:
https://send.monobank.ua/jar/A3Y5u1H5cL
Eternal memory to those lost. Strength to the injured.
Action > anger.
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#CyberWarfare #StandWithUkraine
👍7🤔1🤯1
Researchers found 30 fresh datasets, 16 billion credentials. Not recycled. Not old. The data includes Apple, Google, Facebook, GitHub, Telegram, even government services.
This is weaponizable intelligence. Threat actors now have a new playbook.
Every leak follows a pattern:
→ Discovery
→ Dark web trading
→ Account takeovers
→ Business disruption
But this scale? It changes the risk for everyone.
Here’s what I see (and why I worry):
1️⃣ Password Reuse Epidemic
One bad password = ten breached accounts. People still reuse passwords across work and personal logins.
2️⃣ MFA Gaps
Many users trust passwords alone. MFA is not everywhere, especially on high-value accounts.
3️⃣ Detection Delays
This breach was months in the making. Many companies never knew they were exposed.
Uncomfortable truth:
Your credentials are likely in this dataset.
Here’s what security leaders must do NOW:
☑️ Audit MFA coverage (focus on privileged users)
☑️ Deploy credential monitoring tools
☑️ If Affected - Force password resets immediately
☑️ Start moving toward Zero-trust architecture
My take:
This breach is the wake-up call our industry needed. The question is not if your credentials are out there. The question is - what will you do about it?
If you see "Password123" anywhere in your org, please reach out. I want to help.
What’s your immediate response strategy?
How are you handling this breach at your company?
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#DataBreach #PasswordSecurity
Please open Telegram to view this post
VIEW IN TELEGRAM
👍5🤯3🤔1
Your biggest vulnerability isn't your firewall — It's the person sitting next to you.
95% of data breaches start with human error. Is your team the exception?
One click on a phishing link or one weak password can open the door for attackers. That’s why I believe regular employee training is not optional - it is mission-critical.
Here’s what I’ve learned:
1️⃣ Tailor Training to Each Role
→ Developers, finance, and sales face different threats. Match content to their daily risks.
2️⃣ Make It Interactive
→ Use real scenarios and simulations. People remember what they do, not what they watch.
3️⃣ Ask for Feedback
→ Employees know what works. Use their input to improve future sessions.
4️⃣ Test and Repeat
→ Short quizzes and ongoing assessments help knowledge stick and show where to focus next.
A quick story: Early in my career, I saw a simple phishing email trick a smart, trusted team member. They felt bad, but our open culture turned it into a learning moment. We added more hands-on training and peer mentoring. The result? Fewer incidents, stronger teamwork.
Cyber threats keep changing. Our learning should too.
How do you keep your team ready?
Stay secure😑
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#EmployeeTraining #CyberAwareness
95% of data breaches start with human error. Is your team the exception?
One click on a phishing link or one weak password can open the door for attackers. That’s why I believe regular employee training is not optional - it is mission-critical.
Here’s what I’ve learned:
1️⃣ Tailor Training to Each Role
→ Developers, finance, and sales face different threats. Match content to their daily risks.
2️⃣ Make It Interactive
→ Use real scenarios and simulations. People remember what they do, not what they watch.
3️⃣ Ask for Feedback
→ Employees know what works. Use their input to improve future sessions.
4️⃣ Test and Repeat
→ Short quizzes and ongoing assessments help knowledge stick and show where to focus next.
A quick story: Early in my career, I saw a simple phishing email trick a smart, trusted team member. They felt bad, but our open culture turned it into a learning moment. We added more hands-on training and peer mentoring. The result? Fewer incidents, stronger teamwork.
Cyber threats keep changing. Our learning should too.
How do you keep your team ready?
Stay secure
__
Enjoy this? 🔄 Repost it to your network and follow @securediary for more.
Join me on LinkedIn.
#EmployeeTraining #CyberAwareness
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
👍7🤯1