DragonForce, LockBit, and Qilin, a new triad aims to dominate the ransomware landscape
DragonForce, LockBit, and Qilin, a new triad aims to dominate the ransomware landscape Pierluigi Paganini October 08, 2025 DragonForce, LockBit,...
Security
DraftKings thwarts credential stuffing attack, but urges password reset and MFA
DraftKings thwarts credential stuffing attack, but urges password reset and MFA Pierluigi Paganini October 08, 2025 DraftKings warns of credential...
Redis patches 13-Year-Old Lua flaw enabling Remote Code Execution
Redis patches 13-Year-Old Lua flaw enabling Remote Code Execution Pierluigi Paganini October 08, 2025 Redis warns of CVE-2025-49844, a Lua...
Miggo Security Named a Gartner® Cool Vendor in AI Security
Tel Aviv, Israel, October 8th, 2025, CyberNewsWire Miggo Security, pioneer and innovator in Application Detection & Response (ADR) and AI...
Step Into the Password Graveyard… If You Dare (and Join the Live Session)
Oct 08, 2025The Hacker NewsPassword Security / Cyber Attacks Every year, weak passwords lead to millions in losses — and...
Turn Compliance into a Competitive Advantage: How to Scale Privacy-Aligned Services
For most Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs), compliance has long been a double-edged sword. ...
U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 07, 2025...
GoAnywhere MFT zero-day used by Storm-1175 in Medusa ransomware campaigns
GoAnywhere MFT zero-day used by Storm-1175 in Medusa ransomware campaigns Pierluigi Paganini October 07, 2025 Storm-1175 exploits GoAnywhere MFT flaw...
Justifying Investments in NHI Security
How Can Non-Human Identities Bridge Security Gaps in Cloud Environments? Have you considered how the management of Non-Human Identities (NHIs)...
The Vision Behind Mend.io’s Recognition
The software security landscape is evolving faster than ever, and AI is accelerating this change. As generative and embedded AI...
CrowdStrike ties Oracle EBS RCE (CVE-2025-61882) to Cl0p attacks began Aug 9, 2025
CrowdStrike ties Oracle EBS RCE (CVE-2025-61882) to Cl0p attacks began Aug 9, 2025 Pierluigi Paganini October 07, 2025 CrowdStrike links...
U.S. CISA adds Oracle, Mozilla, Microsoft Windows, Linux Kernel, and Microsoft IE flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Oracle, Mozilla, Microsoft Windows, Linux Kernel, and Microsoft IE flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini...
New Research: AI Is Already the #1 Data Exfiltration Channel in the Enterprise
For years, security leaders have treated artificial intelligence as an "emerging" technology, something to keep an eye on but not...
13-Year-Old Redis Flaw Exposed: CVSS 10.0 Vulnerability Lets Attackers Run Code Remotely
Oct 07, 2025Ravie LakshmananVulnerability / Cloud Security Redis has disclosed details of a maximum-severity security flaw in its in-memory database...
The Evolving Role of the CSO: From Technical Guardian to Business Strategist
When I first entered the world of cybersecurity, the role of chief security officer (CSO) was often relegated to the...
