News

Sophos ZTNA Updates

Bys s January 16, 2025

New Let’s Encrypt and regional support.

News

SAP Patches Critical Vulnerabilities in NetWeaver
Bys s January 14, 2025

SAP has released 14 security notes on January 2025 Patch Day, including two addressing critical vulnerabilities in NetWeaver. The post SAP Patches Critical Vulnerabilities in NetWeaver appeared first on SecurityWeek.

Read More SAP Patches Critical Vulnerabilities in NetWeaver
News

China-Linked Hackers Launch Targeted Espionage Campaign on African IT Infrastructure
Bys s July 21, 2025

The China-linked cyber espionage group tracked as APT41 has been attributed to a new campaign targeting government IT services in the African region. “The attackers used hardcoded names of internal services, IP addresses, and proxy servers embedded within their malware,” Kaspersky researchers Denis Kulik and Daniil Pogorelov said. “One of the C2s [command-and-control servers] was…

Read More China-Linked Hackers Launch Targeted Espionage Campaign on African IT Infrastructure
News

Security Theater: Vanity Metrics Keep You Busy – and Exposed
Bys s April 7, 2025

After more than 25 years of mitigating risks, ensuring compliance, and building robust security programs for Fortune 500 companies, I’ve learned that looking busy isn’t the same as being secure. It’s an easy trap for busy cybersecurity leaders to fall into. We rely on metrics that tell a story of the tremendous efforts we’re expending…

Read More Security Theater: Vanity Metrics Keep You Busy – and Exposed
News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration
Bys s February 25, 2026

Cybersecurity researchers have disclosed multiple security vulnerabilities in Anthropic’s Claude Code, an artificial intelligence (AI)-powered coding assistant, that could result in remote code execution and theft of API credentials. “The vulnerabilities exploit various configuration mechanisms, including Hooks, Model Context Protocol (MCP) servers, and environment variables – executing

Read More Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration
News

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More
Bys s April 6, 2026

This week had real hits. The key software got tampered with. Active bugs showed up in the tools people use every day. Some attacks didn’t even need much effort because the path was already there. One weak spot now spreads wider than before. What starts small can reach a lot of systems fast. New bugs, faster use, less time to react. That’s this…

Read More ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More
News

CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries
Bys s February 26, 2025

The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday warned of renewed activity from an organized criminal group it tracks as UAC-0173 that involves infecting computers with a remote access trojan named DCRat (aka DarkCrystal RAT). The Ukrainian cybersecurity authority said it observed the latest attack wave starting in mid-January 2025. The activity is…

Read More CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries

Similar Posts