GITEX GLOBAL 2025

Blog

Byadmblake October 13, 2025

Post Content

Blog

UAT-8837 Critical Infrastructure Attack

What is the Attack? An active campaign has been linked, with medium confidence, to a threat actor designated UAT-8837, which Cisco Talos assesses as a China-nexus group targeting critical infrastructure organizations in North America. Observed activity includes targeted intrusions aimed at gaining initial access, credential harvesting, and internal reconnaissance. UAT-8837 primarily gains initial access by…

Read More UAT-8837 Critical Infrastructure Attack
Blog

Wing FTP Remote Code Execution Vulnerability

What is the Vulnerability?CVE-2025-47812 is a recently disclosed Remote Code Execution (RCE) vulnerability impacting Wing FTP Server, a cross-platform file transfer solution. This critical flaw affects versions prior to 7.4.4, and, if successfully exploited, may allow remote attackers to execute arbitrary code within the context of the vulnerable application. The vulnerability stems from null byte…

Read More Wing FTP Remote Code Execution Vulnerability
Blog

When One Hospital Gets Ransomware, Others Feel the Pain

When ransomware hits hospitals, neighbors absorb patient overflow. Key defenses include backup recovery and multifactor authentication implementation.

Read More When One Hospital Gets Ransomware, Others Feel the Pain
Blog

Workday Breach Likely Linked to ShinyHunters Salesforce Attacks

The HR giant said hackers mounted a socially engineered cyberattack on its third-party CRM system, but did not gain access to customer information; only ‘commonly available’ business contact info was exposed.

Read More Workday Breach Likely Linked to ShinyHunters Salesforce Attacks
Blog

Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks

The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments. “Unlike traditional on-premises ransomware, where the threat actor typically deploys malware to encrypt critical files across endpoints within the compromised network and then negotiates for a decryption key,

Read More Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks
Blog

Congress Should Tackle Cyber Threats, Not Competition

Some members of Congress seem more intent on grabbing headlines than actually working to make America more cyber secure.

Read More Congress Should Tackle Cyber Threats, Not Competition

Related