Sophos ranked #1 overall for Firewall, MDR, and EDR in the G2 Spring 2025 Reports

Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME) validation logic that made it possible to bypass security controls and access origin servers.  “The vulnerability was rooted in how our edge network processed requests destined for the ACME HTTP-01 challenge path (/.well-known/acme-challenge/*),” the web infrastructure

As students return to school, it’s crucial for administrators and IT teams to stay vigilant against opportunistic threat actors.

A month with no Critical-severity Windows bugs is overshadowed by a mass of Mariner mop-up

Jan Vermeulen reports: Lancet Laboratories has suffered multiple data breaches and was fined R100,000 for failing to respond to the South African Information Regulator’s demands to address shortcomings in its systems. Information Regulator chairperson Pansy Tlakula recently revealed that Lancet paid the fine, which was issued after it failed to comply with an enforcement notice……

61% of security leaders reported suffering a breach due to failed or misconfigured controls over the past 12 months. This is despite having an average of 43 cybersecurity tools in place. This massive rate of security failure is clearly not a security investment problem. It is a configuration problem. Organizations are beginning to understand that…

A China-nexus threat actor known as UNC6384 has been attributed to a set of attacks targeting diplomats in Southeast Asia and other entities across the globe to advance Beijing’s strategic interests. “This multi-stage attack chain leverages advanced social engineering including valid code signing certificates, an adversary-in-the-middle (AitM) attack, and indirect execution techniques to evade