Blog

Upgrading the organization’s Windows 10 systems to Windows 11 could potentially introduce vulnerabilities into the environment through misconfigured hardware.

New agentic AI capabilities in Microsoft Security Copilot will allow agents to triage threats and provide recommendations.

The group, called FishMonger or Aquatic Panda, is working under contract for the Chinese government to steal data from governmental organizations, Catholic charities, NGOs, think tanks, and more.

The FBI’s Denver field office says the tools will convert documents while also dropping malware and scraping users’ systems for sensitive data.

More than 40% of all Internet-facing container orchestration clusters are at risk.

A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes that could result in unauthenticated remote code execution, putting over 6,500 clusters at immediate risk by exposing the component to the public internet. The vulnerabilities (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and CVE-2025-1974 ), assigned a CVSS score of

The persistent threat actor was caught using sophisticated Web shell techniques against an unnamed telecommunications company in Asia.

Russia and China spend billions of dollars on state media, propaganda, and disinformation, while the Trump administration has slashed funding for US agencies.

Microsoft on Monday announced a new feature called inline data protection for its enterprise-focused Edge for Business web browser. The native data security control is designed to prevent employees from sharing sensitive company-related data into consumer generative artificial intelligence (GenAI) apps like OpenAI ChatGPT, Google Gemini, and DeepSeek. The list will be expanded over time…

FCC chairman warns these companies may still be operating in the US because they don’t believe that being added to its “Covered List” poses any serious risk.