Active Cyber Defence (ACD) – The Third Year – NCSC Threats
The year three report covers 2019 and aims to highlight the achievements and efforts made by the Active Cyber Defence programe. – Read More
August 2025
OAuth-Apps für M365-Phishing missbraucht – CSO Online
Gefälschte OAuth-Apps eröffnen Angreifern neue Wege, um Microsoft-Konten zu kapern. janews – Shutterstock.com Bedrohungsakteure haben einen neuen, smarten Weg aufgetan, Microsoft-365-Konten zu kompromittieren. Wie Proofpoint herausgefunden hat, erstellen sie dazu…
Turning Human Vulnerability Into Organizational Strength – Dark Reading
Investing in building a human-centric defense involves a combination of adaptive security awareness training, a vigilant and skeptical culture, and the deployment of layered technical controls. – Read More
Vietnamese Hackers Use PXA Stealer, Hit 4,000 IPs and Steal 200,000 Passwords Globally – The Hacker News
Cybersecurity researchers are calling attention to a new wave of campaigns distributing a Python-based information stealer called PXA Stealer. The malicious activity has been assessed to be the work of…
⚡ Weekly Recap: VPN 0-Day, Encryption Backdoor, AI Malware, macOS Flaw, ATM Hack & More – The Hacker News
Malware isn’t just trying to hide anymore—it’s trying to belong. We’re seeing code that talks like us, logs like us, even documents itself like a helpful teammate. Some threats now…
How ‘Plague’ infiltrated Linux systems without leaving a trace – CSO Online
Security researchers have discovered an unusually evasive Linux backdoor, undetected even by VirusTotal, compromising systems as a malicious pluggable authentication module (PAM). Dubbed “Plague” by Nextron researchers, the stealthy backdoor…
Ransomware attacks: The evolving extortion threat to US financial institutions – CSO Online
Before sunrise on a chilly November morning, I got the kind of call no security leader ever wants. A mid-sized U.S. bank had been hit overnight hard. Customers couldn’t access…
CISA releases Thorium, an open-source, scalable platform for malware analysis – CSO Online
The US Cybersecurity and Infrastructure Security Agency (CISA) has released Thorium, a high-throughput open-source platform for automated malware and forensic file analysis. Developed in partnership with Sandia National Laboratories, Thorium…
Man-in-the-Middle Attack Prevention Guide – The Hacker News
Some of the most devastating cyberattacks don’t rely on brute force, but instead succeed through stealth. These quiet intrusions often go unnoticed until long after the attacker has disappeared. Among…
The Wild West of Shadow IT – The Hacker News
Everyone’s an IT decision-maker now. The employees in your organization can install a plugin with just one click, and they don’t need to clear it with your team first. It’s…
CEL Solicitors unveils new brand to reflect people-first approach to law – Legal Futures
Liverpool-based consumer law firm CEL Solicitors has today unveiled a bold new brand identity — to reflect its commitment to delivering legal support with care, compassion and clarity. The post…
MCP: securing the backbone of Agentic AI – CSO Online
The model context protocol (MCP) was only introduced at the end of 2024, but the technological consequences are already clearly noticeable in many architectures. MCP provides a standardized “language” for…
‘How are junior lawyers using AI?’ – Legal Cheek
Amid the hype and hyperbole, one Legal Cheek reader wonders what real impact technology is having on the day-to-day working lives of trainees and associates In our latest Career Conundrum,…
Monday morning round-up – Legal Cheek
The top legal affairs news stories from this morning and the weekend Blow to consumers as supreme court hands partial win to car finance firms over loans Legal aid cyber-attack…
CrowdStrike: A new era of cyberthreats from sophisticated threat actors is here – CSO Online
CISOs and their teams are entering a “new era” of cyberthreats characterized by sophisticated threat actors who operate with “business-like efficiency,” researchers from CrowdStrike conclude in the cybersecurity giant’s 2025…