When Trust Becomes the Weakest Link: Potential Supply-Chain Malware via Yealink Downloads
A suspicious ZIP from Yealink’s official CDN contained a trojanized executable, suggesting a possible supply-chain compromise. This case highlights why…
Allurity expands its European cybersecurity presence by acquiring MSF Partners – experts in protecting critical assets and infrastructure
Allurity strengthens its European cybersecurity footprint by acquiring MSF Partners, a Swiss OT security specialist protecting critical infrastructure. The move…
LANDFALL: Inside the Most Advanced Android Spyware Campaign Ever Seen Targeting Samsung Devices
LANDFALL is a sophisticated Android spyware exploiting a Samsung zero-day via DNG zero-click attacks delivered through WhatsApp images. This commercial-grade…
Cloudflare Global Network Outage — What CISOs Need to Know (18 November 2025)
Cloudflare suffered a global service outage impacting the dashboard, Access, WARP, and application services. Recovery is underway. The incident highlights…
PROMPTFLUX: The First AI-Evolving Malware — and What It Really Means for Cybersecurity
AI-driven malware is no longer theoretical. PROMPTFLUX, an experimental VBScript malware leveraging Gemini for real-time code regeneration, shows how threat…
Critical Vulnerability in Fortinet FortiWeb Exploited in the Wild
A critical vulnerability in Fortinet's FortiWeb Web Application Firewall has been actively exploited, allowing attackers to gain administrator access. Organizations…
CISA Emergency Directive 25-03: Federal Agencies Ordered to Identify and Mitigate Compromise of Cisco ASA and Firepower Devices
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Emergency Directive 25-03 after discovering a state-sponsored campaign exploiting zero-day…
EY’s 4TB Data Leak: When a Single Click Opens the Vault
A 4TB unencrypted SQL backup from EY was found exposed online, revealing sensitive credentials and API keys. The case, caused…
Password Managers: How CISOs Keep a Critical Control Truly Secure
Password managers have become essential tools for corporate identity security — yet in 2025, they’re also prime attack targets. Recent…
How CISOs Must Prepare for ChatGPT Atlas — The AI-Powered Browser That Puts ChatGPT at the Heart of Web Security
OpenAI’s launch of ChatGPT Atlas introduces a browser deeply infused with AI agents, memory and automation. For CISOs this signals…