News

The State of Ransomware in Education 2025

Bys s September 10, 2025

441 IT and cybersecurity share their ransomware experiences, revealing the realities facing lower and higher education providers today.

News

Researchers Find Exploit Allowing NTLMv1 Despite Active Directory Restrictions
Bys s January 16, 2025

Cybersecurity researchers have found that the Microsoft Active Directory Group Policy that’s designed to disable NT LAN Manager (NTLM) v1 can be trivially bypassed by a misconfiguration. “A simple misconfiguration in on-premise applications can override the Group Policy, effectively negating the Group Policy designed to stop NTLMv1 authentications,” Silverfort researcher Dor Segal said in a

Read More Researchers Find Exploit Allowing NTLMv1 Despite Active Directory Restrictions
News

CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks
Bys s July 23, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), on July 22, 2025, added two Microsoft SharePoint flaws, CVE-2025-49704 and CVE-2025-49706, to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. To that end, Federal Civilian Executive Branch (FCEB) agencies are required to remediate identified vulnerabilities by July 23, 2025. “CISA is

Read More CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks
News

Detecting Data Leaks Before Disaster
Bys s September 3, 2025

In January 2025, cybersecurity experts at Wiz Research found that Chinese AI specialist DeepSeek had suffered a data leak, putting more than 1 million sensitive log streams at risk. According to the Wiz Research team, they identified a publicly accessible ClickHouse database belonging to DeepSeek. This allowed “full control over database operations, including the ability…

Read More Detecting Data Leaks Before Disaster
News

Adobe: Critical Code Execution Flaws in Photoshop
Bys s January 14, 2025

Patch Tuesday: Adobe ships patches for more than a dozen security defects in a wide range of software products. The post Adobe: Critical Code Execution Flaws in Photoshop appeared first on SecurityWeek.

Read More Adobe: Critical Code Execution Flaws in Photoshop
News

Defense Contractor MORSECORP Inc. Agrees to Pay $4.6 Million to Settle Cybersecurity Fraud Allegations
Bys s March 26, 2025

MORSECORP Inc. (MORSE), of Cambridge, Massachusetts, has agreed to pay $4.6 million to resolve allegations that MORSE violated the False Claims Act by failing to comply with cybersecurity requirements in its contracts with the Departments of the Army and Air Force. The settlement resolves allegations that MORSE submitted false or fraudulent claims for payment on contracts with…

Read More Defense Contractor MORSECORP Inc. Agrees to Pay $4.6 Million to Settle Cybersecurity Fraud Allegations
News

Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware
Bys s January 14, 2026

Security experts have disclosed details of an active malware campaign that’s exploiting a DLL side-loading vulnerability in a legitimate binary associated with the open-source c-ares library to bypass security controls and deliver a wide range of commodity trojans and stealers. “Attackers achieve evasion by pairing a malicious libcares-2.dll with any signed version of the legitimate…

Read More Hackers Exploit c-ares DLL Side-Loading to Bypass Security and Deploy Malware

Similar Posts