A Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched remote-code-execution vulnerability in Trimble Cityworks to deliver Cobalt Strike and VShell. “UAT-6382 successfully exploited… Read More »Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks
A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers to compromise any user in Active Directory (AD). “The attack exploits the delegated… Read More »Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise
Cybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances. It’s worth… Read More »Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host
It’s not enough to be secure. In today’s legal climate, you need to prove it. Whether you’re protecting a small company or managing compliance across a global enterprise, one thing… Read More »Webinar: Learn How to Build a Reasonable and Legally Defensible Cybersecurity Program
A recently patched pair of security flaws affecting Ivanti Endpoint Manager Mobile (EPMM) software has been exploited by a China-nexus threat actor to target a wide range of sectors across… Read More »Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
For many organizations, identity security appears to be under control. On paper, everything checks out. But new research from Cerby, based on insights from over 500 IT and security leaders,… Read More »Identity Security Has an Automation Problem—And It’s Bigger Than You Think
A sprawling operation undertaken by global law enforcement agencies and a consortium of private sector firms has disrupted the online infrastructure associated with a commodity information stealer known as Lumma… Read More »FBI and Europol Disrupt Lumma Stealer Malware Network Linked to 10 Million Infections
Russian cyber threat actors have been attributed to a state-sponsored campaign targeting Western logistics entities and technology companies since 2022. The activity has been assessed to be orchestrated by APT28… Read More »Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics
Russian organizations have become the target of a phishing campaign that distributes malware called PureRAT, according to new findings from Kaspersky. “The campaign aimed at Russian business began back in… Read More »PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms
Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments. CI/CD pipelines are fundamental in modern software development, ensuring code… Read More »Securing CI/CD workflows with Wazuh