End of Life Plan for RFC 6962 Certificate Transparency Logs
Update, August 18, 2025
We have updated the read-only and shutdown dates to ensure that our new Static CT API logs are fully trusted by...
Elastic Security: Announcing Agentic Query validation, Attack Discovery persistence, and automated scheduling and actions
With the latest updates to Attack Discovery and Elastic AI Assistant, customers can accelerate detection, reduce manual effort, and gain deeper insight into their...
[R1] Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability
Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability Arnie Cabral Wed, 08/06/2025 - 10:48
Tenable Identity Exposure leverages third-party software to...
Citrix Bleed 2
FortiGuard Labs has observed a sharp increase in exploitation attempts targeting the 'Citrix Bleed 2' vulnerability since July 28, 2025. Telemetry indicates activity has...
SparkRAT: Exploiting Architectural Weaknesses in Open-Source Offensive Tools
Persistent trend in open-source offensive tooling & implications for defenders - Read more
OCSP Service Has Reached End of Life
Today we turned off our Online Certificate Status Protocol (OCSP) service, as announced in December of last year. We stopped including OCSP URLs in...
Legal aid cyber-attack has pushed sector towards collapse, say lawyers
Barristers report going unpaid and cases being turned away amid fears firms will desert legal aid work altogetherLawyers have warned that a cyber-attack on...
Microsoft SharePoint Zero-day Attack
FortiGuard Labs has detected and successfully blocked hundreds of exploitation attempts targeting a newly discovered zero-day vulnerability chain in on-premises Microsoft SharePoint servers. This...
Backdoors & Breaches gameplay guide
A gameplay guide to share the new Datadog expansion pack of Backdoors & Breaches, including how to play and starter scenarios. - Read...
Elastic 9.1/8.19: BBQ by default, ES|QL with CCS GA, JOINS GA, Azure AI Foundry...
Elastic 9.1 and 8.19 include BBQ by default, LOOKUP join and ES|QL cross-cluster search to GA, Azure AI Foundry integration, and more. - Read...
Latest article
CVE-2026-41940: cPanel & WHM Authentication Bypass
OverviewOn April 28, 2026, cPanel issued a security update to fix a critical vulnerability affecting the cPanel & WHM and WP Squared products. In...
Cursor Extension Flaw Exposes Developer API Keys
Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX - Read more
CVE-2026-21246 Windows Graphics Component Elevation of Privilege Vulnerability
Acknowledgement added. This is an informational change only. - Read more
ClickUp Data Leak Exposes Enterprise Emails for Over a Year
A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security concerns.
The post ClickUp Data...
