The Shai-Hulud 2.0 npm worm: analysis, and what you need to know
Learn more about the Shai-Hulud 2.0 npm worm. - Read more
Tracking RondoDox: Malware Exploiting Many IoT Vulnerabilities
Over a dozen exploits were used to target IoT devices. - Read more
Choosing a Digital Risk Intelligence Platform: 5 Key Capabilities to Evaluate
Key Takeaways The traditional “digital perimeter” paradigm for enterprise cybersecurity is no longer relevant in today’s online landscape. Instead of defending one’s...
New “Generation Y” Hierarchy of Root and Intermediate Certificates
In a ceremony held in September, Let’s Encrypt generated two new Root Certification Authorities (CAs) and six new Intermediate CAs, which we’re collectively calling...
Why Datadog is a 2025 Cloud Security Leader
A recap of Datadog's awards from the 2025 Latio Cloud Security Market Report - Read more
The Future of Humanoid Robotics
Summary Advances in large-language models (LLMs) and the anticipated arrival of artificial general intelligence (AGI) are rapidly closing the gap between concept and...
Threat Intelligence Automation
Key Takeaways Real-time intelligence at scale: Threat intelligence automation accelerates detection and response by processing vast threat data instantly, far faster than...
Analysis of a Large-Scale DDoS Attack Against a Payment Processing Platform
The two-wave attack reached a peak of 1.8 Tbps. - Read more
The 6 URL Shorteners You Didn’t Know Were Helping Hackers
By: Madalynn Carr, Intelligence TeamThreat actors are constantly evolving and adapting by discovering new, unique ways to bypass email-based security controls. One key method...
Operational Cyber Threat Intelligence
Key Takeaways The average organization today relies on multiple platforms and tools delivering round-the-clock feeds of security information and alerts. Under this...
Latest article
Check Point VPN Authentication Bypass Vulnerability
What is the Vulnerability? A critical authentication bypass vulnerability, CVE-2026-50751 (CVSS...
CISA tells agencies to patch smarter, not harder — foreshadowing broader industry practice
Security teams’ patching practices have come under intense pressure over the past year, as active exploitation is up, time-to-exploit windows...
Hackers Abuse Fake Utility Downloads to Install ScreenConnect and Mine Cryptocurrency
Hackers are turning everyday software searches into a trap. A sophisticated cryptojacking campaign is actively targeting users who search for popular PC utilities online,...
Automated Threat Hunting: Turning Threat Intelligence into Executable Hunt Plans
Blake McDermott is Senior Threat Hunter at Rapid7.Every week, threat hunt teams are faced with a steady flow of blogs, advisories, and DFIR reports...
