1. The US Congressional Budget Office confirmed unauthorized ac…
The US Congressional Budget Office confirmed unauthorized access to its networks in a suspected foreign cyberattack potentially exposing emails with congressional offices.
Category: Newsletter
2. A significant data leak from Chinese cybersecurity firm Know…
A significant data leak from Chinese cybersecurity firm Knownsec exposed cyber weapon specifications, proprietary hacking tool source code, government collaboration details, and a list of 80 compromised overseas surveillance targets.
Category: Newsletter
3. A detailed demonstration shows how an ARM-based IoT device’s…
A detailed demonstration shows how an ARM-based IoT device’s Address Space Layout Randomization (ASLR) can be bypassed using Return-Oriented Programming (ROP), enabling unauthenticated remote code execution via memory manipulation.
Category: Newsletter
4. The article advocates for redesigning systems in which AI en…
The article advocates for redesigning systems in which AI enhances meaningful signals instead of obscuring them, improving overall user experience and information delivery.
Category: Newsletter
5. Qilin ransomware group exfiltrated 300GB of data from Corner…
Qilin ransomware group exfiltrated 300GB of data from Cornerstone Staffing Solutions, including 120,000 resumes, Social Security numbers, salary data, and financial records, with threats of sophisticated phishing campaigns.
Category: Newsletter
6. EchoGram exploits gaps in training data guardrails by inject…
EchoGram exploits gaps in training data guardrails by injecting nonsensical “flip tokens” that cause false positives and bypasses in GPT-5.1, Claude, and Gemini, posing a dual threat of alert fatigue and actual malicious prompt bypasses.
Category: Newsletter
7. The RondoDox botnet leverages a vulnerability in the XWiki S…
The RondoDox botnet leverages a vulnerability in the XWiki SolrSearch endpoint, sending base64-encoded Groovy payloads via HTTP GET requests to download and execute malware. Existing IOC blocklists remain effective against this threat.
Category: Newsletter
8. Ringfencing extends application allowlisting by enforcing fi…
Ringfencing extends application allowlisting by enforcing fine-grained containment policies on approved software to block “living off the land” attacks through restricting file access, network activity, and child processes.
Category: Newsletter
9. Eye Security researchers discovered a remote code execution …
Eye Security researchers discovered a remote code execution vulnerability in Microsoft’s Update Health Tools caused by abandoned Azure blob storage, which Microsoft has addressed in newer tool versions.
Category: Newsletter
10. By establishing baselines and monitoring for unusual access …
By establishing baselines and monitoring for unusual access patterns, security teams can detect abuse of the Instance Metadata Service (IMDS) on cloud VMs to identify potential exploits.
Category: Newsletter
11. Veeam’s podcast “Wake Up!” shares experiences from CISOs dea…
Veeam’s podcast “Wake Up!” shares experiences from CISOs dealing with cyberattacks, exploring leadership decisions made during crises that occur at inconvenient hours.
Category: Newsletter
12. Secure
Secure.com provides autonomous AI agents that integrate with existing security tools to investigate incidents, automate compliance, and escalate issues.
Category: Newsletter
13. Azure Sentinel offers enterprise-wide intelligent security a…
Azure Sentinel offers enterprise-wide intelligent security analytics through a cloud-native SIEM platform.
Category: Newsletter
14. Pinact CLI helps manage GitHub workflows by pinning versions…
Pinact CLI helps manage GitHub workflows by pinning versions of actions and reusable workflows to ensure build stability.
Category: Newsletter
15. Imperial Kitten conducted cyber espionage on maritime AIS tr…
Imperial Kitten conducted cyber espionage on maritime AIS tracking data prior to Houthi missile attacks, revealing integration of cyber and kinetic operations in hybrid warfare.
Category: Newsletter