CISA is warning organizations that an Oracle WebLogic vulnerability patched nearly two years ago is being exploited in the wild. The security hole, tracked as CVE-2024-21182, was patched by Oracle in the Java application server with its July 2024 CPU.… Read More "Oracle WebLogic Vulnerability Exploited in the Wild"
Most organizations now recognize that endpoint protection alone is no longer sufficient. That’s why adoption of endpoint detection and response (EDR) has accelerated rapidly in recent years. Organizations understand that modern attacks move faster, evade traditional prevention controls, and require… Read More "How Leading Organizations Are Turning EDR Into Operational Resilience"
“Rapid7 MDR identified successful exploitation across numerous customers, however we did not observe any indication of successful lateral movement from the devices,” the firm said in its analysis. The attackers reached the network but were not seen pushing deeper in… Read More "Attackers exploit Palo Alto GlobalProtect flaw days after disclosure"
A threat actor has been observed using AI coding tools to develop and refine malware designed to slip past endpoint detection and response (EDR) software, in what was presented as a red team project. The activity was uncovered by Sophos… Read More "Threat Actor Uses AI to Build EDR Evasion Tools"
A right-wing think tank responsible for the emergence of zero-tolerance policing in 1990s New York City and the Trump administration’s scorched-earth campaign against “diversity, equality and inclusion” programs is behind state-level legislative efforts to classify minor protest-related crimes as “civil… Read More "The Manhattan Institute Helped Kill DEI. Now It’s Coming for Protests"
On Monday, hackers hit Red Hat’s NPM repository in a new supply chain attack, publishing malicious versions of 32 packages to distribute a credential-stealing worm. Within a 72-second window, the threat actor published poisoned iterations across all 32 packages, likely… Read More "Supply Chain Attack Hits 32 Red Hat NPM Packages"
Ravie LakshmananJun 02, 2026Cyber Espionage / Threat Intelligence Cybersecurity researchers have disclosed details of a spear-phishing campaign likely undertaken by the Pakistan-aligned SideCopy group targeting Afghanistan’s Ministry of Finance with an open-source remote access trojan called Xeno RAT. “The campaign… Read More "Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT"
Business leaders are unsure what threat intelligence is or how it can help them, potentially putting organizations at increased to cyber threats, a new research paper has warned. Launched at Infosecurity Europe 2026, the Bridging the Gap Between Threat Intelligence… Read More "Business Leaders Lack Understanding of Threat Intelligence"
Password management and credential security solutions provider Dashlane revealed on Monday that it has been targeted in a brute-force attack campaign that resulted in a limited number of encrypted vaults being downloaded by the attackers. According to Dashlane, the attack… Read More "Dashlane Brute-Force Attack Leads to Limited Encrypted Vault Downloads"
“For example, an exercise might be framed around a ransomware incident, but provide very few concrete details,” he says. This often results in participants who tend to respond in abstract, high-level terms rather than engaging with the specific actions and… Read More "7 tabletop exercise mistakes that sabotage incident response"
