Why Threat Hunting Should Be Part of Every Security Program

Blog

Byadmblake September 4, 2025

The more you hunt, the more you learn.

Blog

Alert (AA23-040A) #StopRansomware: Ransomware Activities Related to DPRK

UPDATE 02/27/2023: Added protection for CVE-2022-24990.FortiGuard Labs is aware of a joint advisory on ransomware activities against organizations in healthcare and critical infrastructure performed by threat actors related to the Democratic People’s Republic of Korea (DPRK). The advisory was issued by multiple agencies in the United States and the Republic of Korea (ROK) and contains…

Read More Alert (AA23-040A) #StopRansomware: Ransomware Activities Related to DPRK
Blog

n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens

Threat actors have been observed uploading a set of eight packages on the npm registry that masqueraded as integrations targeting the n8n workflow automation platform to steal developers’ OAuth credentials. One such package, named “n8n-nodes-hfgjf-irtuinvcm-lasdqewriit,” mimics a Google Ads integration, and prompts users to link their advertising account in a seemingly legitimate form and then

Read More n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens
Blog

PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution

Cybersecurity researchers have discovered a set of four security flaws in OpenSynergy’s BlueSDK Bluetooth stack that, if successfully exploited, could allow remote code execution on millions of transport vehicles from different vendors. The vulnerabilities, dubbed PerfektBlue, can be fashioned together as an exploit chain to run arbitrary code on cars from at least three major…

Read More PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
Blog

How to Develop and Communicate Metrics for CSIRPs

A well-documented cybersecurity incident response program (CSIRP) provides the transparency needed for informed decision-making, protecting the organization in a constantly changing threat environment.

Read More How to Develop and Communicate Metrics for CSIRPs
Blog

Sophos Endpoint: Consistently AAA rated – Q2 2025 SE Labs Endpoint Protection Report

The secret of success is consistency!

Read More Sophos Endpoint: Consistently AAA rated – Q2 2025 SE Labs Endpoint Protection Report
Blog

⚡ Weekly Recap: Fortinet Exploit, Chrome 0-Day, BadIIS Malware, Record DDoS, SaaS Breach & More

This week saw a lot of new cyber trouble. Hackers hit Fortinet and Chrome with new 0-day bugs. They also broke into supply chains and SaaS tools. Many hid inside trusted apps, browser alerts, and software updates. Big firms like Microsoft, Salesforce, and Google had to react fast — stopping DDoS attacks, blocking bad links,…

Read More ⚡ Weekly Recap: Fortinet Exploit, Chrome 0-Day, BadIIS Malware, Record DDoS, SaaS Breach & More

Related