Red Team

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Threat Intelligence

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

The 2024 MITRE ATT&CK® Evaluations for Enterprise reveal critical insights into ransomware and macOS threats, with vendors...

Extrude: Open-Source Binary Analysis Tool for Security Teams

News

Extrude: Open-Source Binary Analysis Tool for Security Teams

Security teams now have access to a powerful new open-source tool for analyzing binary security posture. Extrude...

Ashok OSINT Reconnaissance Tool: The Swiss Army Knife for Security Professionals

Security Tools & Research

Ashok OSINT Reconnaissance Tool: The Swiss Army Knife for Security Professionals

Ashok has emerged as a powerful open-source OSINT reconnaissance tool that consolidates multiple information-gathering capabilities into a...

Imperius: Exposing Hidden Linux Kernel Rootkits for Security Teams

Red-Team

Imperius: Exposing Hidden Linux Kernel Rootkits for Security Teams

A new tool called Imperius has emerged, designed to detect and expose Linux Kernel Module (LKM) rootkits...

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

News

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

Internal and external penetration testing (pentesting) are critical components for evaluating an organization’s security posture. These simulated...

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

Red-Team

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

In an era of evolving cyber threats, organizations are adopting realistic methods to test their defenses. Red...

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

Blue-Team
Threat Intelligence

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

The global outage caused by a faulty update from CrowdStrike has led to significant disruptions for organizations...

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

APT-News
Threat Intelligence

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

The National Cyber Security Centre (NCSC) and the Digital Trust Center (DTC) have recently issued a warning...

Malicious Macros in Microsoft Office: Updated Guidance to Mitigate Risks

Blue-Team
Exploitation

Malicious Macros in Microsoft Office: Updated Guidance to Mitigate Risks

TL;DR Malicious macros remain a significant threat, with Microsoft Office being a common attack vector. Updated guidance...

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

Blue-Team
Exploitation

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

The National Cyber Security Centre (NCSC) has issued a warning about the increasing use of malicious software...

Preventing Lateral Movement in Enterprise Networks: A Comprehensive Guide

Blue-Team
Red-Team
SIEM & Detection Engineering

Preventing Lateral Movement in Enterprise Networks: A Comprehensive Guide

Lateral movement is a technique used by attackers to navigate through a network after gaining initial access....

Cyber Essentials ‘Pathways’: A New Approach to Cybersecurity Certification for Large Organizations

Cyber Laws & Regulations

Cyber Essentials ‘Pathways’: A New Approach to Cybersecurity Certification for Large Organizations

The UK’s National Cyber Security Centre (NCSC) is taking a significant step forward in cybersecurity certification with...

CVE-2025-2691: High-Severity SSRF Vulnerability in Nossrf Package

Blue-Team
CVE News
Exploitation
Red-Team
Threat Intelligence

CVE-2025-2691: High-Severity SSRF Vulnerability in Nossrf Package

A critical Server-Side Request Forgery (SSRF) vulnerability (CVE-2025-2691) has been identified in the nossrf package, affecting versions...

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

Bug Bounties & Responsible Disclosure
Cyber Laws & Regulations
Exploitation
Malware Analysis
Red-Team
SIEM & Detection Engineering

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

A critical vulnerability, CVE-2025-2609, has been identified in MagnusSolution’s MagnusBilling software, a widely used billing and call...

CVE-2024-9880 – Apache Pandas Command Injection Vulnerability

Exploitation

CVE-2024-9880 – Apache Pandas Command Injection Vulnerability

A high-severity vulnerability, CVE-2024-9880, has been identified in the Apache Pandas library, a cornerstone of data analysis...

Posts pagination

Previous 1 2 3

Red Team

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Extrude: Open-Source Binary Analysis Tool for Security Teams

Ashok OSINT Reconnaissance Tool: The Swiss Army Knife for Security Professionals

Imperius: Exposing Hidden Linux Kernel Rootkits for Security Teams

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

Malicious Macros in Microsoft Office: Updated Guidance to Mitigate Risks

Preventing Lateral Movement in Enterprise Networks: A Comprehensive Guide

Cyber Essentials ‘Pathways’: A New Approach to Cybersecurity Certification for Large Organizations

CVE-2025-2691: High-Severity SSRF Vulnerability in Nossrf Package

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

CVE-2024-9880 – Apache Pandas Command Injection Vulnerability

You may have missed

Trump Administration Considers TikTok Deal Allowing Chinese Algorithm Ownership

How Intezer’s AI SOC Balances Automation with Human Expertise

How Security Platformization Improves Threat Response and Operational Efficiency

World Backup Day: Essential Strategies for Enterprise Data Protection