May 23, 2025Ravie LakshmananCloud Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday revealed that Commvault is monitoring cyber threat activity targeting applications hosted in their Microsoft Azure cloud environment. “Threat actors may have accessed client… Read More "CISA Warns of Suspected Broader SaaS Attacks Exploiting App Secrets and Cloud Misconfigs"
ESET Chief Security Evangelist Tony Anscombe highlights some of the most intriguing insights revealed in the latest ESET APT Activity Report 14 Nov 2024 What were some of the world’s most notorious advanced persistent threat (APT) groups up to from… Read More "ESET APT Activity Report Q2 2024–Q3 2024: Key findings"
A cyber or cybersecurity threat is a malicious act that seeks to damage data, steal data, or disrupt digital life in general. Cyber threats include computer viruses, data breaches, Denial of Service (DoS) attacks, and other attack vectors. Cyber threats… Read More "What is a Cyber Threat?"
Tired of dodging all those ‘Scam Likely’ calls? Here’s what’s behind the label and how to stay one step ahead of phone scammers. 18 Nov 2024 • , 5 min. read Despite all the wonders of modern technology, it is… Read More "What is “Scam Likely”? Putting the phone down on unwanted calls"
Organizations in Europe are about to face a wave of cybersecurity legislation, coming from both the EU and the UK. In the EU, the tech legislation roadmap is relatively clear, with most relevant regulations and laws already adopted, including the… Read More "NCC Group Expert Warns UK Firms to Prepare for New Cybersecurity Bill"
One of the confidentiality concerns associated with AI is that third parties will use your data inputs to train their models. When companies use inputs for training, the inputs may later become or inform outputs, potentially exposing confidential information to… Read More "The Risk of Third-Party AI Trained on User Data"
May 22, 2025Ravie LakshmananVulnerability / Software Security Cybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances. It’s worth noting that the… Read More "Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host"
Intelligence and cybersecurity agencies from 10 countries has warned in a joint advisory that a cyberespionage group operated by the Russian military intelligence service, the GRU, has been targeting logistics and IT companies for the past three years. Known in… Read More "Russian APT28 compromised Western logistics and IT firms to track aid to Ukraine"
Have you received a text message about an unpaid road toll? Make sure you’re not the next victim of a smishing scam. 06 May 2025 • , 4 min. read Driving is a way of life in the US. The… Read More "Here’s what to look out for"
Microsoft has teamed up with law enforcement agencies across the globe to disrupt the infrastructure behind one of the world’s most notorious infostealer operations. Microsoft said that, between March 16 and May 16, it identified over 394,000 Windows computers globally… Read More "Global Law Enforcers and Microsoft Seize 2300+ Lumma Stealer Domains"
