[R1] Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability
Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability Arnie Cabral Wed, 08/06/2025 - 10:48
Tenable Identity Exposure leverages third-party software to...
Citrix Bleed 2
FortiGuard Labs has observed a sharp increase in exploitation attempts targeting the 'Citrix Bleed 2' vulnerability since July 28, 2025. Telemetry indicates activity has...
SparkRAT: Exploiting Architectural Weaknesses in Open-Source Offensive Tools
Persistent trend in open-source offensive tooling & implications for defenders - Read more
OCSP Service Has Reached End of Life
Today we turned off our Online Certificate Status Protocol (OCSP) service, as announced in December of last year. We stopped including OCSP URLs in...
Legal aid cyber-attack has pushed sector towards collapse, say lawyers
Barristers report going unpaid and cases being turned away amid fears firms will desert legal aid work altogetherLawyers have warned that a cyber-attack on...
Microsoft SharePoint Zero-day Attack
FortiGuard Labs has detected and successfully blocked hundreds of exploitation attempts targeting a newly discovered zero-day vulnerability chain in on-premises Microsoft SharePoint servers. This...
Backdoors & Breaches gameplay guide
A gameplay guide to share the new Datadog expansion pack of Backdoors & Breaches, including how to play and starter scenarios. - Read...
Elastic 9.1/8.19: BBQ by default, ES|QL with CCS GA, JOINS GA, Azure AI Foundry...
Elastic 9.1 and 8.19 include BBQ by default, LOOKUP join and ES|QL cross-cluster search to GA, Azure AI Foundry integration, and more. - Read...
Datadog guide to Hacker Summer Camp 2025
Get ready to take on Hacker Summer Camp with our guide on planning, prepping, and schedules for Datadog events. - Read more
Beyond Mimo’lette: Tracking Mimo’s Expansion to Magento CMS and Docker
This post reports on activity from the 'Mimo' threat actor. - Read more
Latest article
Check Point VPN Authentication Bypass Vulnerability
What is the Vulnerability? A critical authentication bypass vulnerability, CVE-2026-50751 (CVSS...
CISA tells agencies to patch smarter, not harder — foreshadowing broader industry practice
Security teams’ patching practices have come under intense pressure over the past year, as active exploitation is up, time-to-exploit windows...
Hackers Abuse Fake Utility Downloads to Install ScreenConnect and Mine Cryptocurrency
Hackers are turning everyday software searches into a trap. A sophisticated cryptojacking campaign is actively targeting users who search for popular PC utilities online,...
Automated Threat Hunting: Turning Threat Intelligence into Executable Hunt Plans
Blake McDermott is Senior Threat Hunter at Rapid7.Every week, threat hunt teams are faced with a steady flow of blogs, advisories, and DFIR reports...
