Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training, Courses, and Resources
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

NewsBites Cyber Security News

SANS NewsBites is a semiweekly executive summary of the most important cyber security news articles published recently. Each news item is annotated with important context provided by respected subject matter experts within the SANS community.

Filter by:
Showing 48 of 251

Update Chrome to fix Critical Use-After-Free Flaw; WP Ghost Wordpress Plugin Vulnerable to RCE; "IngressNightmare" Flaws in Ingress NGINZ Controller

NewsletterNewsbites
  • 25 Mar 2025
  • Volume #XXVII
  • Issue #23

Counterfeit CAPTCHA ClickFix Lures; Windows Shortcuts Exploited Since 2017; GitHub Actions Compromise May Be Cascading Supply Chain Attack

NewsletterNewsbites
  • 22 Mar 2025
  • Volume #XXVII
  • Issue #22

E2EE RCS Between iOS and Android; Alexa Verbal Commands Will be Sent to Cloud; UK Holds Closed-Door IPT Hearing Despite Outcry

NewsletterNewsbites
  • 18 Mar 2025
  • Volume #XXVII
  • Issue #21

Apple Webkit Zero-Day Exploited; Patch Tuesday: Microsoft, Adobe, Apple; Ivanti and VeraCore Flaws Added to KEV

NewsletterNewsbites
  • 14 Mar 2025
  • Volume #XXVII
  • Issue #20

Known PHP Flaw Actively Exploited for RCE; Fortra: Malicious Use of Cobalt Strike Down 80 Percent

NewsletterNewsbites
  • 11 Mar 2025
  • Volume #XXVII
  • Issue #19

Microsoft: US Rural Hospitals Need $75M to Strengthen Cybersecurity; Apple Challenges Alleged UK Backdoor Order; US Financial Orgs Urge CISA to Revise CIRCIA

NewsletterNewsbites
  • 07 Mar 2025
  • Volume #XXVII
  • Issue #18

DNI Gabbard Believes E2EE Backdoors Violate Privacy; Researchers Propose Standardized Memory Safety; CCPA Shuts Down Unregistered Data Broker

NewsletterNewsbites
  • 04 Mar 2025
  • Volume #XXVII
  • Issue #17

Signal May Exit Sweden Over E2EE Backdoor; CVSS 10.0 Flaw in Mitre Caldera; Anne Arundel County Cyberattack

NewsletterNewsbites
  • 28 Feb 2025
  • Volume #XXVII
  • Issue #16

Apple Removes ADP E2EE in UK; Gmail MFA Moves to QR over SMS; Google Debuts Quantum-Safe Digital Signatures

NewsletterNewsbites
  • 25 Feb 2025
  • Volume #XXVII
  • Issue #15

Breakthrough in Microsoft Majorana 1 Quantum Processor; Signal QR Code Phishing; OpenSSH Patches DoS & MitM Vulnerabilities

NewsletterNewsbites
  • 21 Feb 2025
  • Volume #XXVII
  • Issue #14

US Legislators Say Strong E2EE Protects National Security; Microsoft Device Code Phishing; PAN-OS Flaw Exploited After Disclosure

NewsletterNewsbites
  • 18 Feb 2025
  • Volume #XXVII
  • Issue #13

Microsoft Patch Tuesday; 8Base Ransomware Suspects Arrested; Salt Typhoon Exploited Cisco Devices

NewsletterNewsbites
  • 14 Feb 2025
  • Volume #XXVII
  • Issue #12