Chinese hackers breached critical infrastructure globally using enterprise network gear
A Chinese state-sponsored hacker group called RedNovember has conducted a global espionage campaign targeting critical infrastructure […]
XWorm campaign shows a shift toward fileless malware and in-memory evasion tactics
In a newly disclosed multi-stage threat campaign, attackers were seen skipping disk and leaning on in-memory […]
Coherence: Insider risk strategy’s new core principle
I have been addressing insiders and insider risks for the better part of 40 years. Different […]
Agentic AI in IT security: Where expectations meet reality
Agentic AI has quickly shifted from lab demos to real-world security operations centers (SOC) deployments. Unlike […]
Junge Onliner tappen oft in Phishing-Fallen
Laut einer Umfrage fällt die jüngere Generation leichter auf Phishing herein. janews – shutterstock.com Obwohl sie […]
RBI’s Cybersecurity Mandates 2025: Securing India’s Digital Banks
India digital transformation of the financial ecosystem, the Reserve Bank of India (RBI) has announced its […]
CSO30 Awards 2025 celebrate Australia’s top cybersecurity leaders
Australia’s top cybersecurity leaders and their teams have been recognised at this year’s CSO30 Awards. Held in conjunction with […]
Meet LockBit 5.0: Faster ESXi drive encryption, better at evading detection
The LockBit gang has released a new version of its ransomware with improved ESXi drive encryption […]
Trust on MCP takes first in-the-wild hit via squatted Postmark connector
In a newly disclosed supply-chain attack, an npm package “postmark-mcp” was weaponized to stealthily exfiltrate emails, […]
Trust in MCP takes first in-the-wild hit via squatted Postmark connector
In a newly disclosed supply-chain attack, an npm package “postmark-mcp” was weaponized to stealthily exfiltrate emails, […]