Shutdown Threatens US Intel Sharing, Cyber Defense

Blog

Byadmblake October 1, 2025

Lapse of critical information sharing and mass furloughs at CISA are just some of the concerns.

Blog

Proof-of-Concept Code Now Available for an Exploited Windows Local Privilege Escalation Vulnerability

FortiGuard Labs is aware that a Proof-of-Concept (POC) code for a newly patched Windows vulnerability (CVE-2022-21882) that is reported to have been exploited in the wild was released to a publicly available online repository. CVE-2022-21882 is a local privilege (LPE) escalation vulnerability which allows a local, authenticated attacker to gain elevated local system or administrator…

Read More Proof-of-Concept Code Now Available for an Exploited Windows Local Privilege Escalation Vulnerability
Blog

North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms

North Korean threat actors have been attributed to a coordinated cyber espionage campaign targeting diplomatic missions in their southern counterpart between March and July 2025. The activity manifested in the form of at least 19 spear-phishing emails that impersonated trusted diplomatic contacts with the goal of luring embassy staff and foreign ministry personnel with convincing…

Read More North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms
Blog

Flawed Vendor Guidance Exposes Enterprises to Avoidable Risk

Oracle E-Business Suite customers received conflicting deployment guidance, leaving enterprises exposed a recent zero-day flaw, Andrew argues.

Read More Flawed Vendor Guidance Exposes Enterprises to Avoidable Risk
Blog

YouTube Ghost Network Utilizes Spooky Tactics to Target Users

The malware operation uses compromised accounts and bot networks to distribute infostealers and has tripled its output in 2025.

Read More YouTube Ghost Network Utilizes Spooky Tactics to Target Users
Blog

Sophos achieves its best-ever results in the MITRE ATT&CK Enterprise 2025 Evaluation

A major milestone: Sophos XDR delivers 100% detection coverage in the latest ATT&CK Evaluation.

Read More Sophos achieves its best-ever results in the MITRE ATT&CK Enterprise 2025 Evaluation
Blog

Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals

An Iranian-backed ransomware-as-a-service (RaaS) named Pay2Key has resurfaced in the wake of the Israel-Iran-U.S. conflict last month, offering bigger payouts to cybercriminals who launch attacks against Israel and the U.S. The financially motivated scheme, now operating under the moniker Pay2Key.I2P, is assessed to be linked to a hacking group tracked as Fox Kitten (aka Lemon…

Read More Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals

Related