US Defense Contractor Boss Sold Zero Days to Russia — Cops a Plea
Peter Williams admits to selling unpatched iPhone bugs to a shady Russian broker.The former head of L3Harris’s Trenchant “offensive cyber”...
Month: October 2025
Your Enterprise LAN Security Is a Problem—Nile Can Fix It
For decades, the Local Area Network (LAN) has been the neglected, insecure backyard of the enterprise. While we’ve poured...
Is Unsupported OpenJDK for Universities Good Enough?
Summary Oracle has begun targeting universities for audits to enforce its employee-based Java licensing model. Those found non-compliant face...
Veeam Sets Data Graph Course Following Acquisition of Securiti AI
Veeam Software plans to expand the scope of its offerings into the realm of data security posture management (DSPM)...
Offline, Not Off-Guard: Countering Software Supply Chain Threats in High-Security Environments
For decades, federal programs operating in high-security or classified domains have relied on air-gapped environments as a primary line...
Google’s Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month
Google on Thursday revealed that the scam defenses built into Android safeguard users around the world from more than 10...
Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks
Oct 30, 2025Ravie LakshmananMalware / Cybercrime The open-source command-and-control (C2) framework known as AdaptixC2 is being used by a growing...
New “Brash” Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL
Oct 30, 2025Ravie LakshmananBrowser Security / Vulnerability A severe vulnerability disclosed in Chromium's Blink rendering engine can be exploited to...
BRONZE BUTLER exploits Japanese asset management software vulnerability
In mid-2025, Counter Threat Unit™ (CTU) researchers observed a sophisticated BRONZE BUTLER campaign that exploited a zero-day vulnerability in Motex...
Build a prevention-first defense: The Sophos Cybersecurity Toolkit
Ransomware remains one of today’s most disruptive cyber threats, but it is far from the only one. Attackers are also...
The Wild West of AI-Driven Fraud
We are in the middle of an AI gold rush. The technology is advancing, democratizing access to everything from...
The CISO’s Guide to Model Context Protocol (MCP)
As engineering teams race to adopt the Model Context Protocol (MCP) to harness the power of agentic AI, a...
How to Implement a Secure BYOD Policy for a Modern Workforce
Bring Your Own Device (BYOD) programs are now a fixture of the modern workplace. Employees expect to use their...
Threat Actors Weaponizing Open Source AdaptixC2 Tied to Russian Underworld
Threat researchers with cybersecurity firm Silent Push are linking bad actors with heavy ties to the Russian underworld to...
How Can Generative AI Transform the Future of Identity and Access Management
The rapid increase in data breaches has prompted businesses to strengthen their identity and access management (IAM) strategies through...
