Ravie LakshmananJan 22, 2026Network Security / Vulnerability Cybersecurity company Arctic Wolf has warned of a “new cluster of automated malicious activity” that involves unauthorized firewall configuration changes on Fortinet FortiGate …
Tag:
attacks
Safety & Security
Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia
by David Walker
The threat actor known as Transparent Tribe has been attributed to a fresh set of attacks targeting Indian governmental, academic, and strategic entities with a remote access trojan (RAT) that …
The Ivanti Endpoint Manager Mobile (EPMM) zero-day attacks, which began last spring and lasted well into the summer as attackers took advantage of patching lag, were one of the top …
SonicWall Wednesday disclosed a zero-day vulnerability impacting its SMA1000 access platform that is under active exploitation via chained attacks. CVE-2025-40602 is a medium-severity local privilege escalation vulnerability in SonicWall’s SMA1000 …
Safety & Security
Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
by David Walker
Dec 06, 2025Ravie LakshmananAI Security / Vulnerability Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with legitimate …
The US Cybersecurity and Infrastructure Security Agency (CISA) warned of “ongoing intrusions” from Chinese nation-state actors deploying the Brickstorm backdoor in organizations’ VMware vSphere environments. In an alert published Thursday, …
Safety & Security
ASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE Vulnerability
by David Walker
Nov 01, 2025Ravie LakshmananArtificial Intelligence / Vulnerability The Australian Signals Directorate (ASD) has issued a bulletin about ongoing cyber attacks targeting unpatched Cisco IOS XE devices in the country with …
Safety & Security
China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks
by David Walker
Sep 27, 2025Ravie LakshmananMalware / Network Security Telecommunications and manufacturing sectors in Central and South Asian countries have emerged as the target of an ongoing campaign distributing a new variant …
Safety & Security
New HTTP/2 ‘MadeYouReset’ Vulnerability Enables Large-Scale DoS Attacks
by David Walker
Aug 14, 2025Ravie LakshmananServer Security / Vulnerability Multiple HTTP/2 implementations have been found susceptible to a new attack technique called MadeYouReset that could be explored to conduct powerful denial-of-service (DoS) …
Safety & Security
Mitigating prompt injection attacks with a layered defense strategy
by David Walker
With the rapid adoption of generative AI, a new wave of threats is emerging across the industry with the aim of manipulating the AI systems themselves. One such emerging attack …