The four key areas of vulnerability – Legal Futures
Both financial and legal regulators are, and have been for some time now, keenly focused on client vulnerability or clients in vulnerable circumstances. The post The four key areas of…
October 2025
Zombie Projects Rise Again to Undermine Security – Dark Reading
Companies left them for dead, but the remnants of old infrastructure and failed projects continue to haunt businesses’ security teams. – Read More
An 18-Year-Old Codebase Left Smart Buildings Wide Open – Dark Reading
Researcher Gjoko Krstic’s “Project Brainfog” exposed hundreds of zero-day vulnerabilities in building-automation systems still running hospitals, schools, and offices worldwide. – Read More
US Stands Out in Refusal to Sign UN Cybercrime Treaty – Dark Reading
The agreement aims to help law enforcement prosecute cross-border cybercrime, but the final treaty could allow unchecked surveillance and human-rights abuses, critics say; and, it includes no protection for pen…
Claroty Patches Authentication Bypass Flaw – Dark Reading
CVE-2025-54603 gave attackers an opening to disrupt critical operational technology (OT) environments and steal data from them. – Read More
LotL Attack Hides Malware in Windows Native AI Stack – Dark Reading
Security programs trust AI data files, but they shouldn’t: they can conceal malware more stealthily than most file types. – Read More
Strengthening security with a converged security and networking platform – CSO Online
Today’s IT environment of multiple clouds, hybrid work, and the exploding popularity of AI has given cybercriminals unprecedented opportunities for launching attacks — and the traditional arsenal of tools organizations…
Google’s Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month – The Hacker News
Google on Thursday revealed that the scam defenses built into Android safeguard users around the world from more than 10 billion suspected malicious calls and messages every month. The tech…
Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks – The Hacker News
The open-source command-and-control (C2) framework known as AdaptixC2 is being used by a growing number of threat actors, some of whom are related to Russian ransomware gangs. AdaptixC2 is an…
New “Brash” Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL – The Hacker News
A severe vulnerability disclosed in Chromium’s Blink rendering engine can be exploited to crash many Chromium-based browsers within a few seconds. Security researcher Jose Pino, who disclosed details of the…
Cloud Outages Highlight the Need for Resilient, Secure Infrastructure Recovery – Dark Reading
Two massive technical outages over the past year underscore the need for cybersecurity teams to consider how to recover safely from disruptions without creating new security risks. – Read More
Atlas-Browser-Exploit ermöglicht Angriff auf ChatGPT-Speicher – CSO Online
Security-Forscher haben eine neue Schwachstelle entdeckt, die den ChatGPT Atlas-Browser von OpenAI betrifft. jackpress – shutterstock.com Nur wenige Tage, nachdem Cybersicherheitsanalysten davor gewarnt hatten, den neuen Atlas-Browser von OpenAI zu…
Chromium flaw crashes Chrome, Edge, Atlas: Researcher publishes exploit after Google’s silence – CSO Online
A vulnerability in Chromium’s rendering engine can crash Chrome, Microsoft Edge, and seven other browsers within seconds if exploited by attackers, a security researcher warned after Google ignored his vulnerability…
The Death of the Security Checkbox: BAS Is the Power Behind Real Defense – The Hacker News
Security doesn’t fail at the point of breach. It fails at the point of impact. That line set the tone for this year’s Picus Breach and Simulation (BAS) Summit, where…
Typo hackers sneak cross-platform credential stealer into 10 npm packages – CSO Online
In a newly disclosed multi-stage supply-chain campaign, a threat actor published ten typosquatted npm packages that mimicked popular libraries to deploy a cross-platform credential stealer. According to a Socket analysis,…