SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero-Day

07/08/2025 0 Comments 0 tags

SonicWall has revealed that the recent spike in activity targeting its Gen 7 and newer firewalls with SSL VPN enabled is related to an older, now-patched bug and password reuse.

The AI-Powered Security Shift: What 2025 Is Teaching Us About Cloud Defense

07/08/2025 0 Comments 0 tags

Now that we are well into 2025, cloud attacks are evolving faster than ever and artificial intelligence (AI) is both a weapon and a shield. As AI rapidly changes how

Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups

07/08/2025 0 Comments 0 tags

Microsoft has released an advisory for a high-severity security flaw affecting on-premise versions of Exchange Server that could allow an attacker to gain elevated privileges under certain conditions. The vulnerability,

Webinar: How to Stop Python Supply Chain Attacks—and the Expert Tools You Need

07/08/2025 0 Comments 0 tags

Python is everywhere in modern software. From machine learning models to production microservices, chances are your code—and your business—depends on Python packages you didn’t write. But in 2025, that trust

Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft

07/08/2025 0 Comments 0 tags

Cybersecurity researchers have demonstrated an “end-to-end privilege escalation chain” in Amazon Elastic Container Service (ECS) that could be exploited by an attacker to conduct lateral movement, access sensitive data, and

Fake VPN and Spam Blocker Apps Tied to VexTrio Used in Ad Fraud, Subscription Scams

06/08/2025 0 Comments 0 tags

The malicious ad tech purveyor known as VexTrio Viper has been observed developing several malicious apps that have been published on Apple and Google’s official app storefronts under the guise

Microsoft Launches Project Ire to Autonomously Classify Malware Using AI Tools

06/08/2025 0 Comments 0 tags

Microsoft on Tuesday announced an autonomous artificial intelligence (AI) agent that can analyze and classify software without assistance in an effort to advance malware detection efforts. The large language model

AI Slashes Workloads for vCISOs by 68% as SMBs Demand More – New Report Reveals

06/08/2025 0 Comments 0 tags

As the volume and sophistication of cyber threats and risks grow, cybersecurity has become mission-critical for businesses of all sizes. To address this shift, SMBs have been urgently turning to

Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems

06/08/2025 0 Comments 0 tags

Trend Micro has released mitigations to address critical security flaws in on-premise versions of Apex One Management Console that it said have been exploited in the wild. The vulnerabilities (CVE-2025-54948

CERT-UA Warns of HTA-Delivered C# Malware Attacks Using Court Summons Lures

06/08/2025 0 Comments 0 tags

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of cyber attacks carried out by a threat actor called UAC-0099 targeting government agencies, the defense forces, and enterprises of