Network Security

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Threat Intelligence

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, named “Morphing Meerkat,” has been leveraging DNS mail exchange (MX) records...

NIST SP 800-82r3: Strengthening OT Security with Dragos and NP-View Integration

News

NIST SP 800-82r3: Strengthening OT Security with Dragos and NP-View Integration

The latest revision of NIST SP 800-82 (r3) provides critical guidance for securing Operational Technology (OT) systems,...

StormBamboo APT Targets ISPs to Poison Software Updates with Malware

APT-News

StormBamboo APT Targets ISPs to Poison Software Updates with Malware

A China-linked cyberespionage group known as StormBamboo (also tracked as Evasive Panda, Daggerfly, and Bronze Highland) has...

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Blue-Team

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Kerberos pre-authentication brute-force attacks pose a significant risk to Active Directory environments, enabling attackers to identify valid...

Advanced Netsniff-ng: Enterprise-Grade Packet Analysis for Security Teams

Blue-Team

Advanced Netsniff-ng: Enterprise-Grade Packet Analysis for Security Teams

Netsniff-ng represents a paradigm shift in network traffic analysis, offering security professionals a zero-copy, high-performance toolkit for...

TCP Stream Analysis with Tcpick: A Security Professional’s Guide to PCAP Forensics

Blue-Team

TCP Stream Analysis with Tcpick: A Security Professional’s Guide to PCAP Forensics

Tcpick provides security teams with specialized capabilities for reconstructing and analyzing TCP streams from packet captures. This...

Extracting Image Metadata from HTTP Captures Using Tshark for Security Analysis

News

Extracting Image Metadata from HTTP Captures Using Tshark for Security Analysis

Network traffic analysis often reveals hidden artifacts, including images transferred over HTTP. These images can contain valuable...

Docker Remote API Servers Targeted by perfctl Malware in New Attack Wave

News

Docker Remote API Servers Targeted by perfctl Malware in New Attack Wave

Security researchers have uncovered a new campaign targeting misconfigured Docker Remote API servers, where attackers deploy the...

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

APT-News

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

ESET Research has uncovered a series of cyberespionage campaigns conducted by the advanced persistent threat (APT) group...

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

APT-News
Threat Intelligence

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

The National Cyber Security Centre (NCSC) and the Digital Trust Center (DTC) have recently issued a warning...

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Exploitation
Threat Intelligence

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

The Nationaal Cyber Security Centrum (NCSC) of the Netherlands has issued a warning regarding a series of cyberattacks...

Vulnerability Scanning: Essential Strategies for Modern Cybersecurity

Blue-Team
Red-Team

Vulnerability Scanning: Essential Strategies for Modern Cybersecurity

In today’s rapidly evolving cybersecurity landscape, vulnerability scanning has become a cornerstone of effective security management. With...

Mastering Network Device Lifecycle: Acquisition, Management, and Secure Disposal for Cybersecurity Professionals

Blue-Team
Red-Team

Mastering Network Device Lifecycle: Acquisition, Management, and Secure Disposal for Cybersecurity Professionals

In today’s interconnected world, the lifecycle of network devices—from acquisition to disposal—plays a critical role in maintaining...

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

APT-News
Data Breach

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

The SolarWinds Orion compromise, disclosed in December 2020, remains one of the most significant cybersecurity incidents in...

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

Blue-Team
Exploitation

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

The National Cyber Security Centre (NCSC) has issued a warning about the increasing use of malicious software...

Network Security Fundamentals: Essential Strategies for Protecting Your Network

Blue-Team
Red-Team

Network Security Fundamentals: Essential Strategies for Protecting Your Network

In today’s rapidly evolving digital landscape, network security has become a cornerstone of organizational resilience. As networks...

Network Security

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

NIST SP 800-82r3: Strengthening OT Security with Dragos and NP-View Integration

StormBamboo APT Targets ISPs to Poison Software Updates with Malware

Kerberos Username Enumeration: Detection and Mitigation Strategies for Enterprise Security Teams

Advanced Netsniff-ng: Enterprise-Grade Packet Analysis for Security Teams

TCP Stream Analysis with Tcpick: A Security Professional’s Guide to PCAP Forensics

Extracting Image Metadata from HTTP Captures Using Tshark for Security Analysis

Docker Remote API Servers Targeted by perfctl Malware in New Attack Wave

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Vulnerability Scanning: Essential Strategies for Modern Cybersecurity

Mastering Network Device Lifecycle: Acquisition, Management, and Secure Disposal for Cybersecurity Professionals

Network Security Fundamentals: Essential Strategies for Protecting Your Network

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)