[R1] Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability
Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability Arnie Cabral Wed, 08/06/2025 - 10:48
Tenable Identity Exposure leverages third-party software to...
Citrix Bleed 2
FortiGuard Labs has observed a sharp increase in exploitation attempts targeting the 'Citrix Bleed 2' vulnerability since July 28, 2025. Telemetry indicates activity has...
SparkRAT: Exploiting Architectural Weaknesses in Open-Source Offensive Tools
Persistent trend in open-source offensive tooling & implications for defenders - Read more
OCSP Service Has Reached End of Life
Today we turned off our Online Certificate Status Protocol (OCSP) service, as announced in December of last year. We stopped including OCSP URLs in...
Legal aid cyber-attack has pushed sector towards collapse, say lawyers
Barristers report going unpaid and cases being turned away amid fears firms will desert legal aid work altogetherLawyers have warned that a cyber-attack on...
Microsoft SharePoint Zero-day Attack
FortiGuard Labs has detected and successfully blocked hundreds of exploitation attempts targeting a newly discovered zero-day vulnerability chain in on-premises Microsoft SharePoint servers. This...
Backdoors & Breaches gameplay guide
A gameplay guide to share the new Datadog expansion pack of Backdoors & Breaches, including how to play and starter scenarios. - Read...
Elastic 9.1/8.19: BBQ by default, ES|QL with CCS GA, JOINS GA, Azure AI Foundry...
Elastic 9.1 and 8.19 include BBQ by default, LOOKUP join and ES|QL cross-cluster search to GA, Azure AI Foundry integration, and more. - Read...
Datadog guide to Hacker Summer Camp 2025
Get ready to take on Hacker Summer Camp with our guide on planning, prepping, and schedules for Datadog events. - Read more
Beyond Mimo’lette: Tracking Mimo’s Expansion to Magento CMS and Docker
This post reports on activity from the 'Mimo' threat actor. - Read more
Latest article
Chromium: CVE-2026-13027 Use after free in FileSystem
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see (https://chromereleases.googleblog.com/2025) for more information. - Read...
Weekly Metasploit Update: Modules for Audiobookshelf, LiteLLM, Next.js, Dalfox and more
Help shape the future of Metasploit FrameworkWe are planning future work in relation to the evasion capabilities present in Metasploit Framework, and how they...
New DirtyClone Linux Vulnerability Allows Attackers to Gain Root Access Via Cloned Packets
A new Linux kernel local privilege escalation vulnerability, dubbed “DirtyClone” (CVE-2026-43503), that allows unprivileged local users to gain full root access by manipulating cloned...
Hackers Claim French Employment Leak Exposes Over 1M Records, Health Data
Hackers claim 1M+ records tied to French employment apps were exposed, including HR files, health data, worker details, and plaintext passwords.
The post Hackers Claim...
