News

A big finish to 2025 in December’s Patch Tuesday

Bys s January 14, 2026

A month with no Critical-severity Windows bugs is overshadowed by a mass of Mariner mop-up

Categories: X-ops

Tags: threat research, featured, Microsoft, Patch Tuesday, zero days

News

OpenAI Bans Accounts Misusing ChatGPT for Surveillance and Influence Campaigns
Bys s February 21, 2025

OpenAI on Friday revealed that it banned a set of accounts that used its ChatGPT tool to develop a suspected artificial intelligence (AI)-powered surveillance tool. The social media listening tool is said to likely originate from China and is powered by one of Meta’s Llama models, with the accounts in question using the AI company’s…

Read More OpenAI Bans Accounts Misusing ChatGPT for Surveillance and Influence Campaigns
News

Sophos Intelix for Microsoft Copilot now brings threat intelligence directly into Copilot
Bys s October 20, 2025

World-class threat intelligence available directly where analysts work.

Read More Sophos Intelix for Microsoft Copilot now brings threat intelligence directly into Copilot
News

5 Reasons Why Attackers Are Phishing Over LinkedIn
Bys s November 17, 2025

Phishing attacks are no longer confined to the email inbox, with 1 in 3 phishing attacks now taking place over non-email channels like social media, search engines, and messaging apps. LinkedIn in particular has become a hotbed for phishing attacks, and for good reason. Attackers are running sophisticated spear-phishing attacks against company executives, with recent…

Read More 5 Reasons Why Attackers Are Phishing Over LinkedIn
News

Threat actors have reportedly launched yet another campaign involving an application connected to Salesforce
Bys s November 20, 2025

On November 19, Salesforce posted a security advisory on its site: Security Advisory: Unusual Activity Related to Gainsight Applications Salesforce has identified unusual activity involving Gainsight-published applications connected to Salesforce, which are installed and managed directly by customers. Our investigation indicates this activity may have enabled unauthorized access to certain customers’ Salesforce data through the……

Read More Threat actors have reportedly launched yet another campaign involving an application connected to Salesforce
News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet
Bys s April 18, 2026

Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants on compromised devices, according to findings from Fortinet FortiGuard Labs and Palo Alto Networks Unit 42. The attack targeting TBK DVR devices has been found to exploit CVE-2024-3721 (CVSS score: 6.3), a medium-severity command injection vulnerability…

Read More Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet
News

BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA
Bys s February 9, 2026

BeyondTrust has released updates to address a critical security flaw impacting Remote Support (RS) and Privileged Remote Access (PRA) products that, if successfully exploited, could result in remote code execution. “BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain a critical pre-authentication remote code execution vulnerability,” the company

Read More BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA

Similar Posts