NSFOCUS Monthly APT Insights – November 2025
Regional APT Threat Situation In November 2025, the global threat hunting system of Fuying Lab detected a total of...
Month: December 2025
PQC-Hardened Model Context Protocol Transport Layer Security
The Quantum Threat to ai Orchestration Ever wonder if that "secure" connection you're using for your ai agents is...
U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware
Dec 31, 2026Ravie LakshmananSpyware / Mobile Security The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on...
Coupang announces $1.17B compensation plan for 33.7M data breach victims
Coupang announces $1.17B compensation plan for 33.7M data breach victims Pierluigi Paganini December 30, 2025 Coupang will spend about $1.17B...
How to Prevent Credential Stuffing Attacks: Detection & Protection Strategies
The growing threat of credential stuffing in enterprise Ever wonder why a random data breach at some obscure gaming...
How does AI decision making help companies stay ahead of threats
How Do Non-Human Identities Shape Our Approach to Cybersecurity? Are you aware of how machine identities are silently reshaping...
What innovations are driving secure NHI management
What Makes NHI Management a Crucial Component in Cybersecurity? Have you ever wondered why Non-Human Identity (NHI) management is...
New ‘GhostPairing’ Technique Enables Undetected WhatsApp Access
Researchers warn of a new WhatsApp “GhostPairing” attack that silently links attacker devices to accounts, enabling message spying without users...
Palo Alto Networks Allies with Google to Secure AI
Palo Alto Networks will significantly expand the scope of the cybersecurity offerings it makes available on Google Cloud in...
Mustang Panda deploys ToneShell via signed kernel-mode rootkit driver
Mustang Panda deploys ToneShell via signed kernel-mode rootkit driver Pierluigi Paganini December 30, 2025 China-linked APT Mustang Panda used a...
Widely Used Malicious Extensions Steal ChatGPT, DeepSeek Conversations
Two malicious extensions made to look like a legitimate tool and installed more than 900,000 times were used by...
CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution
Dec 30, 2026Ravie LakshmananVulnerability / Email Security The Cyber Security Agency of Singapore (CSA) has issued a bulletin warning of...
Best of 2025: Oracle Breach: The Impact is Bigger Than You Think | Grip
More than 140,000 cloud tenants potentially compromised. Over 6 million sensitive records exposed, including encrypted SSO, LDAP passwords, Java...
Edge Security Is Not Enough: Why Agentic AI Moves the Risk Inside Your APIs
For the last twenty years, cybersecurity has been built around the edge: the belief that threats come from the...
Tenant Isolation in Multi-Tenant Systems: Architecture, Identity, and Security
Tenant isolation is one of those concepts that sounds simple on paper and becomes painfully complex in real systems—especially...
