Cisco’s widely deployed Catalyst 9300 Series enterprise switches have four security vulnerabilities, two of which could be chained to cause a denial-of-service outage, infrastructure security company Opswat has revealed. The…
The alleged administrator of the LeakBase cybercrime forum has been arrested by Russian law enforcement authorities, state media reported Thursday. According to TASS and MVD Media, a news website linked…
By Neil Cameron, lead analyst Legora has announced the Legal AI Scholars Program, a formal initiative placing its enterprise platform inside the curricula of nine US law schools including Stanford,…
Publicly accusing an entity of a cyberattack could have negative consequences that organizations should consider before taking the plunge. – Read More
A series of campaigns that began in August aim to defraud job candidates, using psychological tactics and data scraped from LinkedIn profiles. – Read More
For the first time, SANS Institute’s five top attack techniques all have one thing in common – AI. – Read More
Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable of comprehensive data theft and installing a remote access trojan (RAT), which deploys…
Harvey today (25 May) announced $200 million in new funding co-led by returning investors GIC and Sequoia. The round values Harvey at $11 billion and includes participation from existing investors…
Organizations disclose attack details, though information may be limited, following a breach, but what if they did the same with close calls? – Read More
If there is one theme I’ve noticed in this month’s Orange Rag and in my many conversations beyond, it is this: legal technology has moved past the “what can it…
Attacks by artificial intelligence agents are a reality. Experts at Nvidia’s GTC conference say defenders need to use the same tools to fight them off. – Read More
Following a phased rollout, global law firm Dentons has embedded LexisNexis‘ web-based matter management application Lexis Everyfile at the core of its UK Legal Delivery Centre (LDC). The LDC provides…
What started as a supply chain attack on Trivy, a widely used security scanner, has become a Lapsus$-linked extortion campaign, with more than 1,000 enterprise SaaS environments already compromised. Charles…
UK organisations encouraged to take immediate action to mitigate two recently disclosed vulnerabilities affecting Citrix NetScaler ADC and Citrix NetScaler Gateway. – Read More
In September 2025, Anthropic disclosed that a state-sponsored threat actor used an AI coding agent to execute an autonomous cyber espionage campaign against 30 global targets. The AI handled 80-90%…