This

Magazine Insights

Model Context Protocol (MCP) Vulnerability Assessment in a Post-Quantum Setting

AndyC 23 December 2025

Introduction: Understanding the MCP Landscape and Quantum Threat Okay, so picture this: your ai assistant suddenly starts spouting nonsense,...

Read More

Magazine Insights

Authentication Platform Comparison: Best Authentication Systems & Tools for Your Business

AndyC 22 December 2025

Introduction: Setting the Stage Wait, are we still manually testing everything? In this economy? Seriously though, let's get into...

Read More

U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware

U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware

AndyC 21 December 2025

Dec 20, 2025Ravie LakshmananCybercrime / ATM Security The U.S. Department of Justice (DoJ) this week announced the indictment of 54...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

AndyC 20 December 2025

NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

AndyC 20 December 2025

NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

AndyC 20 December 2025

NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

AndyC 20 December 2025

NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

AndyC 20 December 2025

NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

NCC Group Taps Qualys to Extend Managed Security Service into Shadow IT Realm

AndyC 20 December 2025

NCC Group this week revealed it has allied with Qualys to expand the scope of its managed attack surface...

Read More

Amazon Warns Perncious Fake North Korea IT Worker Threat Has Become Widespread

Randall Munroe’s XKCD ‘Fifteen Years’

AndyC 20 December 2025

via the insightful artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security...

Read More

Why AppSec Can’t Keep Up With AI-Generated Code

Google Shutting Down Dark Web Report Met with Mixed Reactions

AndyC 20 December 2025

Google’s decision this week to discontinue its dark web report tool is drawing mixed reactions, from some people saying...

Read More

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

RegScale Open Sources OSCAL Hub to Further Compliance-as-Code Adoption

AndyC 19 December 2025

RegScale this week added an open source hub through which organizations can collect and organize compliance data based on...

Read More

Smashing Security podcast #448: The Kindle that got pwned

Smashing Security podcast #448: The Kindle that got pwned

AndyC 18 December 2025

Think your Kindle is harmless? Think again! In this episode, we unpack a Black Hat Europe talk revealing how a...

Read More

Microsoft warns MSMQ may fail after update, breaking apps

LLM10: Unbounded Consumption – FireTail Blog

AndyC 18 December 2025

The OWASP Top 10 for LLMs was released this year to help security teams understand and mitigate the rising...

Read More

Vendor News

Google to Kill Popular Dark Web Report Tool

AndyC 17 December 2025

This marks another abrupt end to a Google service that users had come to rely on. The post Google to...

Read More

This month in security with Tony Anscombe – December 2025 edition

This month in security with Tony Anscombe – December 2025 edition

AndyC 30 December 2025

As 2025 draws to a close, Tony looks back at the cybersecurity stories that stood out both in December and across the whole of this...

Read More

A brush with online fraud: What are brushing scams and how do I stay safe?

A brush with online fraud: What are brushing scams and how do I stay safe?

AndyC 24 December 2025

Have you ever received a package you never ordered? It could be a warning sign that your data has been compromised, with more fraud to...

Read More

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

AndyC 23 December 2025

ESET researchers examined CVE‑2025‑50165, a serious Windows vulnerability described to grant remote code execution by merely opening a specially crafted JPG file – one of...

Read More

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

AndyC 19 December 2025

In 2024, ESET researchers noticed previously undocumented malware in the network of a Southeast Asian governmental entity. This led us to uncover even more new...

Read More

ESET Threat Report H2 2025

ESET Threat Report H2 2025

AndyC 17 December 2025

ESET Research A view of the H2 2025 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Happy 23rd Birthday TaoSecurity Blog

Happy 23rd Birthday TaoSecurity Blog

AndyC 9 January 2026

Chinese-speaking hackers exploited ESXi zero-days long before disclosure

Chinese-speaking hackers exploited ESXi zero-days long before disclosure

AndyC 9 January 2026

Astaroth banking Trojan spreads in Brazil via WhatsApp worm

Astaroth banking Trojan spreads in Brazil via WhatsApp worm

AndyC 9 January 2026

Who Benefited from the Aisuru and Kimwolf Botnets?

Who Benefited from the Aisuru and Kimwolf Botnets?

AndyC 9 January 2026

4 Pillars of Network Risk Reduction: A Guide to Network Security Risk Management

Can Agentic AI be trusted with sensitive data?

AndyC 9 January 2026