General cybersecurity industry news, market trends, and analysis
22 BRIDGE:BREAK flaws in Lantronix and Silex converters expose nearly 20,000 devices online, enabling takeover and data tampering.
The critical remote code execution flaw (CVE-2026-1731) in the remote monitoring and management tool can be exploited to spread ransomware and compromise supply chains.
Angelo Martino of Florida has pleaded guilty to collaborating with the BlackCat cybercrime group while working as a ransomware negotiator.
Ransomware negotiator pleads guilty to aiding BlackCat in 2023; leaked victim data enabled $1.2M extortion and $10M seizure.
Masquerading as popular cryptocurrency wallets, the apps can hijack recovery phrases and private keys.
Integrated threat intelligence reduces MTTR using data from 15,000 organizations and 600,000 analysts, limiting dwell time and business risk.
Things are improving, but a researcher has still identified over 1,500 Perforce P4 instances allowing attackers to read files on the server.
The security defects could be exploited for remote code execution, OS command injection, and WAF detection bypass.
China is spying on India's financial sector, for some reason, and it's not putting much effort into it, judging by some stale TTPs.
Stolen credentials remain top breach vector as AI speeds phishing and testing, increasing ransomware and persistence risk.
CISA expanded the KEV catalog with eight flaws, but five of them have been flagged as exploited before.
Data breaches were disclosed by Southern Illinois Dermatology, Saint Anthony Hospital, and North Texas Behavioral Health Authority.
