How to Stay a Step Ahead of a Non-Obvious Threat

Blog

Byadmblake August 12, 2025

Securing business logic isn’t just a technical requirement — it’s a business imperative.

Blog

Threat Actor Impersonates Booking.com in Phishing Scheme

Microsoft detailed a sophisticated campaign that relies on a social engineering technique, “ClickFix,” in which a phisher uses security verification like captcha to give the target a false sense of safety.

Read More Threat Actor Impersonates Booking.com in Phishing Scheme
Blog

SANS Institute Launches AI Cybersecurity Hackathon

Post Content

Read More SANS Institute Launches AI Cybersecurity Hackathon
Blog

Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow Embassies

The Russian nation-state threat actor known as Secret Blizzard has been observed orchestrating a new cyber espionage campaign targeting foreign embassies located in Moscow by means of an adversary-in-the-middle (AitM) attack at the Internet Service Provider (ISP) level and delivering a custom malware dubbed ApolloShadow. “ApolloShadow has the capability to install a trusted root certificate…

Read More Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow Embassies
Blog

Implementing Secure by Design Principles for AI

Harnessing AI’s full transformative potential safely and securely requires more than an incremental enhancement of existing cybersecurity practices. A Secure by Design approach represents the best path forward.

Read More Implementing Secure by Design Principles for AI
Blog

SimpleHelp Path Traversal Vulnerability

What is the Vulnerability?FortiGuard Labs continues to observe ongoing attack attempts targeting SimpleHelp, a Remote Monitoring and Management (RMM) software, due to a critical unauthenticated path traversal vulnerability (CVE-2024-57727) affecting versions 5.5.7 and earlier. This flaw allows remote attackers to access and download arbitrary files from the server without authentication, simply by sending specially crafted…

Read More SimpleHelp Path Traversal Vulnerability
Blog

Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models

Cybersecurity researchers have disclosed two security flaws in Wondershare RepairIt that exposed private user data and potentially exposed the system to artificial intelligence (AI) model tampering and supply chain risks. The critical-rated vulnerabilities in question, discovered by Trend Micro, are listed below – CVE-2025-10643 (CVSS score: 9.1) – An authentication bypass vulnerability that

Read More Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models

Related