Dataproof Communications

FortiGuard Labs has detected and successfully blocked hundreds of exploitation attempts targeting a newly discovered zero-day vulnerability chain in on-premises Microsoft SharePoint servers. This active campaign is being exploited by multiple threat actors and poses a significant risk to a wide range of sectors including government, education, healthcare, and large enterprises. - Read more

A gameplay guide to share the new Datadog expansion pack of Backdoors & Breaches, including how to play and starter scenarios. - Read more

Elastic 9.1 and 8.19 include BBQ by default, LOOKUP join and ES|QL cross-cluster search to GA, Azure AI Foundry integration, and more. - Read more

Get ready to take on Hacker Summer Camp with our guide on planning, prepping, and schedules for Datadog events. - Read more

This post reports on activity from the 'Mimo' threat actor. - Read more

A campaign targeting SonicWall SMA 100 series appliances is currently under active exploitation, leveraging both known vulnerabilities and potential zero-days to gain persistent access to enterprise networks. The threat actors deploy a custom Linux-based rootkit for stealth and long-term persistence. - Read more

Sensor Intel Series: July 2025 CVE Trends - Read more

Backdooring Microsoft's applications is far from over. Adding service principal credentials to these apps to escalate privileges and obfuscate activities has been seen in nation-state attacks, and led to the development of new security controls. Despite these efforts, we uncovered a vulnerable, built-in SP that could have allowed escalation from Application Administrator to any hybrid tenant user, including Global...

A look at how PKI configuration in Kubernetes clusters works - Read more

Elastic’s partnership with Microsoft and integration with the Azure AI Foundry Model Catalog showcases our dedication to harnessing a full range of AI capabilities and enhances our security frameworks to remain agile and robust against cyber threats. - Read more