How to Stay a Step Ahead of a Non-Obvious Threat

Blog

Byadmblake August 12, 2025

Securing business logic isn’t just a technical requirement — it’s a business imperative.

Blog

MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan Campaign

The Iranian hacking group known as MuddyWater has been observed leveraging a new backdoor dubbed UDPGangster that uses the User Datagram Protocol (UDP) for command-and-control (C2) purposes. The cyber espionage activity targeted users in Turkey, Israel, and Azerbaijan, according to a report from Fortinet FortiGuard Labs. “This malware enables remote control of compromised systems by…

Read More MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan Campaign
Blog

Fortanix Tackles Quantum Computing Threats With New Algorithms

Fortanix is implementing post-quantum cryptographic algorithms in its security suite to protect against future attacks.

Read More Fortanix Tackles Quantum Computing Threats With New Algorithms
Blog

How Organizations Can Use Blunders to Level Up Their Security Programs

The industry highlights how organizations repeatedly make common security mistakes but one session during RSAC detailed ways to avoid them.

Read More How Organizations Can Use Blunders to Level Up Their Security Programs
Blog

North Korean Hackers Spread Malware via Fake Crypto Firms and Job Interview Lures

North Korea-linked threat actors behind the Contagious Interview have set up front companies as a way to distribute malware during the fake hiring process. “In this new campaign, the threat actor group is using three front companies in the cryptocurrency consulting industry—BlockNovas LLC (blocknovas[.] com), Angeloper Agency (angeloper[.]com), and SoftGlide LLC (softglide[.]co)—to spread

Read More North Korean Hackers Spread Malware via Fake Crypto Firms and Job Interview Lures
Blog

Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code

Fortinet is alerting customers of a critical security flaw in FortiSIEM for which it said there exists an exploit in the wild. The vulnerability, tracked as CVE-2025-25256, carries a CVSS score of 9.8 out of a maximum of 10.0. “An improper neutralization of special elements used in an OS command (‘OS Command Injection’) vulnerability [CWE-78]…

Read More Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code
Blog

Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data

Cybersecurity researchers have discovered two new extensions on Microsoft Visual Studio Code (VS Code) Marketplace that are designed to infect developer machines with stealer malware. The VS Code extensions masquerade as a premium dark theme and an artificial intelligence (AI)-powered coding assistant, but, in actuality, harbor covert functionality to download additional payloads, take

Read More Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data

Related