Technology ❯ Cybersecurity ❯ Incident Response

Threat Intelligence

Huntress Mandiant Vulnerability Management Google Threat Intelligence Group Indicators of Compromise NCSC-NL Real-time Monitoring Malicious Activities Cybersecurity Firms Security Research

Incomplete Patching Lets Attackers Bypass MFA on SonicWall Gen6 VPNs

Researchers say missed manual LDAP steps left Gen6 appliances open to MFA bypass that let intruders move quickly inside networks.

cPanel Flaw Under Active Attack by Long-Running Group Deploying 'Filemanager'

Google Details UNC6692’s Teams Impersonation Campaign Using ‘Snow’ Malware

CISA Orders Federal Fix for Microsoft Defender 'BlueHammer' Flaw Exploited in the Wild

Microsoft Defender Zero-Days Are Being Exploited as Two Remain Unpatched

Kevin Mandia Launches Armadin With Nearly $190 Million to Build Autonomous AI Red Teams

BeyondTrust Pre-Auth RCE Is Now Being Exploited in the Wild

Google Warns of Widespread, Ongoing Exploitation of WinRAR Vulnerability

Fortinet Confirms FortiCloud SSO Bypass Hitting Fully Patched FortiGate Firewalls

Cisco Releases Fix for AsyncOS Zero-Day Exploited on Secure Email Appliances

Huntress Uncovers Pre-Disclosure ESXi VM-Escape Toolkit Used in December Intrusion

React2Shell Attacks Escalate as Microsoft Confirms Hundreds of Compromised Systems

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

Mandiant Says Hackers Exploit Triofox Flaw to Create Admin Accounts and Execute Code

Darktrace: Salt Typhoon Used Citrix Flaw in Attempted European Telco Breach

Broadcom Patches VMware Privilege-Escalation Zero-Day Linked to China, Faces Disclosure Scrutiny

Akira Ransomware Renews Attacks Through Year-Old SonicWall Flaw and SSLVPN Gaps

CISA Orders Immediate Fix for Actively Exploited Sitecore ViewState Flaw (CVE-2025-53690)

Microsoft: Storm-0501 Shifts to Cloud-Native Ransomware, Wipes Azure Data

Dutch National Cyber Security Centre Confirms NetScaler Zero-Day Breaches