Cybersecurity never slows down. Every week brings new threats, new vulnerabilities, and new lessons for defenders.…
Technology
You Didn’t Get Phished — You Onboarded the Attacker
When Attackers Get Hired: Today’s New Identity Crisis What if the star engineer you just hired…
Noisy Bear Targets Kazakhstan Energy Sector With BarrelFire Phishing Campaign
A threat actor possibly of Russian origin has been attributed to a new set of attacks…
Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys
Sep 06, 2025Ravie LakshmananSoftware Security / Cryptocurrency A new set of four malicious packages have been…
Microsoft’s OneGov Deal Brings $6B+ in US Cloud Discounts
Satya Nadella is Chairman and Chief Executive Officer of Microsoft. Source: Microsoft The US government signed…
TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations
The threat actor behind the malware-as-a-service (MaaS) framework and loader called CastleLoader has also developed a…
CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under Active Exploitation
Federal Civilian Executive Branch (FCEB) agencies are being advised to update their Sitecore instances by September…
Google Says Claims of Mass Gmail Security Breach Are “Entirely False”
Image: MR/Adobe Stock Google has debunked recent reports that it was alerting its billions of Gmail…
SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild
Sep 05, 2025Ravie LakshmananVulnerability / Enterprise Security A critical security vulnerability impacting SAP S/4HANA, an Enterprise…
Salesforce ‘Needs Less Heads,’ So It Cut 4,000 Jobs, As AI Takes Over
Marc Benioff discusses AI on The Logan Bartlett Show. Image source: The Logan Bartlett Show YouTube…