1 in 3 Has Experienced a Betting Scam. What March Madness Fans Should Know
Whether you’re a hardcore basketball fan or the office colleague who gets roped into filling out a bracket every year, March Madness...
Year: 2026
RondoDox botnet expands arsenal targeting 174 flaws, and hits 15,000 daily exploit attempts
RondoDox botnet expands arsenal targeting 174 flaws, and hits 15,000 daily exploit attempts Pierluigi Paganini March 17, 2026 RondoDox botnet...
ColorTokens Once Again Named a Leader and Outperformer in the 2026 GigaOm Radar for Microsegmentation
Microsegmentation has moved well beyond a narrow infrastructure conversation. Today, teams need to enforce policy across cloud workloads, data...
Fake Pudgy World site steals your crypto passwords
A phishing site impersonating the newly-launched Pudgy World browser game is targeting crypto users with a technique that goes...
Encyclopedia Britannica sues OpenAI over AI training
Encyclopedia Britannica and its subsidiary Merriam-Webster have sued OpenAI, claiming the generative AI (genAI) firm used their encyclopedia and dictionary...
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
Cybersecurity researchers have disclosed details of a new method for exfiltrating sensitive data from artificial intelligence (AI) code execution environments...
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
The ransomware operation known as LeakNet has adopted the ClickFix social engineering tactic delivered through compromised websites as an initial...
China Probe: How a Fake Fitness Tracker Became an AI ‘Top Pick’
Image: Ewan Yap (Unsplash) A fitness tracker that never existed managed to land a spot on AI-generated “top picks” lists...
Microsoft Confirms Windows 11 Bug Crippling PCs, Blocking Access to Core Drive
Image: Clint Patterson/Unsplash A newly confirmed Windows 11 bug is locking some users out of their computers. Microsoft has confirmed...
How to prepare for NERC CIP compliance deadlines in 2026 and beyond
Explore key cybersecurity requirements and implementation deadlines for electric power utilities included in the NERC CIP-003-9 standard for Low-Impact...
FIM Test: A Method for Distinguishing True FIM Capabilities in a Crowd of Claims
In a previous blog, we presented NIST’s benchmark definition of integrity monitoring. The conclusion was clear: Many vendor claims...
Introducing AI-powered Contextual Project Classification: From severity scores to business risk
Today, Mend.io is launching Contextual Project Classification, an AI-native feature that automatically analyzes your codebase to identify which applications...
CL-STA-1087 targets military capabilities since 2020
CL-STA-1087 targets military capabilities since 2020 Pierluigi Paganini March 17, 2026 China-linked APT group CL-STA-1087 has targeted Southeast Asian militaries...
From Windows to macOS: ClickFix attacks shift tactics with ChatGPT-based lures
From Windows to macOS: ClickFix attacks shift tactics with ChatGPT-based lures Pierluigi Paganini March 17, 2026 ClickFix campaigns are evolving,...
Attack on Stryker’s Microsoft environment wiped employee devices without malware
Attack on Stryker’s Microsoft environment wiped employee devices without malware Pierluigi Paganini March 17, 2026 The recent cyberattack on Stryker...
