Threat actor collaboration is no longer theoretical — it’s actively reshaping the global cyber threat landscape. … Threat Actor Collaboration: Why Defenders Are Falling BehindRead more
incident response
Cyber Attacks on Energy Infrastructure: Lessons from CERT Polska’s Renewable Energy Incident
On December 29, 2025, coordinated cyber attacks on energy infrastructure quietly unfolded across Poland—targeting more than … Cyber Attacks on Energy Infrastructure: Lessons from CERT Polska’s Renewable Energy IncidentRead more
Vishing Attacks on SaaS Platforms: How ShinyHunters Is Bypassing MFA at Scale
In early 2026, Google-owned Mandiant identified a sharp escalation in vishing attacks on SaaS platforms, where … Vishing Attacks on SaaS Platforms: How ShinyHunters Is Bypassing MFA at ScaleRead more
Metasploit Framework Update Exposes Critical RCE Risks in Enterprise Apps
In modern enterprise environments, attackers no longer rely on single vulnerabilities—they chain them. That reality is … Metasploit Framework Update Exposes Critical RCE Risks in Enterprise AppsRead more
LLMjacking Exposed: How Attackers Hijack and Monetize AI Endpoints
Large Language Models (LLMs) are rapidly becoming core enterprise infrastructure—but attackers are already exploiting the weakest … LLMjacking Exposed: How Attackers Hijack and Monetize AI EndpointsRead more
Google Disrupts Massive Residential Proxy Networks Abusing User Devices
Residential proxy networks have quietly become one of the most abused infrastructures in modern cybercrime—and most … Google Disrupts Massive Residential Proxy Networks Abusing User DevicesRead more
175K Exposed Ollama Hosts Pose Severe Remote Code Execution Risks
Imagine a network of 175,000 AI servers, scattered across 130 countries, operating without security guardrails. Over … 175K Exposed Ollama Hosts Pose Severe Remote Code Execution RisksRead more
PyTorch RCE Vulnerability Actively Exploited: CVE-2026-24747
Machine learning pipelines increasingly power production-critical systems—from fraud detection and recommendation engines to autonomous systems and … PyTorch RCE Vulnerability Actively Exploited: CVE-2026-24747Read more
Microsoft 365 Outlook Add-In Exploit: Exfil Out&Look Explained
For years, security teams have relied on Microsoft 365 Unified Audit Logs as a foundational control … Microsoft 365 Outlook Add-In Exploit: Exfil Out&Look ExplainedRead more
Critical Fortinet Authentication Bypass Exploited in 2026
In early 2026, the Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent alert that sent … Critical Fortinet Authentication Bypass Exploited in 2026Read more