News

HeartCrypt’s wholesale impersonation effort

Bys s September 26, 2025

How the notorious Packer-as-a-Service operation built itself into a hydra

News

Russian ELECTRUM Tied to December 2025 Cyber Attack on Polish Power Grid
Bys s January 28, 2026

The “coordinated” cyber attack targeting multiple sites across the Polish power grid has been attributed with medium confidence to a Russian state-sponsored hacking crew known as ELECTRUM. Operational technology (OT) cybersecurity company Dragos, in a new intelligence brief published Tuesday, described the late December 2025 activity as the first major cyber attack targeting distributed energy

Read More Russian ELECTRUM Tied to December 2025 Cyber Attack on Polish Power Grid
News

New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch
Bys s June 2, 2025

Google on Monday released out-of-band fixes to address three security issues in its Chrome browser, including one that it said has come under active exploitation in the wild. The high-severity flaw is being tracked as CVE-2025-5419, and has been flagged as an out-of-bounds read and write vulnerability in the V8 JavaScript and WebAssembly engine. “Out…

Read More New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch
News

Why CTEM is the Winning Bet for CISOs in 2025
Bys s May 19, 2025

Continuous Threat Exposure Management (CTEM) has moved from concept to cornerstone, solidifying its role as a strategic enabler for CISOs. No longer a theoretical framework, CTEM now anchors today’s cybersecurity programs by continuously aligning security efforts with real-world risk. At the heart of CTEM is the integration of Adversarial Exposure Validation (AEV), an advanced, offensive

Read More Why CTEM is the Winning Bet for CISOs in 2025
News

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog
Bys s February 4, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web Help Desk (WHD) to its Known Exploited Vulnerabilities (KEV) catalog, flagging it as actively exploited in attacks. The vulnerability, tracked as CVE-2025-40551 (CVSS score: 9.8), is a untrusted data deserialization vulnerability that could pave the way for…

Read More CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog
News

Raytheon Companies and Nightwing Group to Pay $8.4M to Resolve False Claims Act Allegations Relating to Non-Compliance with Cybersecurity Requirements in Federal Contracts
Bys s May 1, 2025

Raytheon Company (Raytheon), RTX Corporation, and Nightwing Group LLC, and Nightwing Intelligence Solutions LLC (collectively, Nightwing), have agreed to pay $8.4 million to resolve allegations that Raytheon violated the False Claims Act by failing to comply with cybersecurity requirements in contracts or subcontracts involving the Department of Defense (DoD). Raytheon is a subsidiary of Arlington,…

Read More Raytheon Companies and Nightwing Group to Pay $8.4M to Resolve False Claims Act Allegations Relating to Non-Compliance with Cybersecurity Requirements in Federal Contracts
News

UK: Two NHS trusts hit by cyberattack that exploited Ivanti flaw
Bys s May 29, 2025

It’s been an all-too-common headline over the past decade. Now, two more National Health Service trusts in the U.K. have been impacted by cyberattacks, although there is no indication yet that patient data was accessed or patient services were affected. Emma Woollacott reports: Two NHS trusts have suffered cyber attacks which exposed staff data, prompting…

Read More UK: Two NHS trusts hit by cyberattack that exploited Ivanti flaw

Similar Posts