Cyber (In)Securities | Edition 160: Iranian Cyber Threats, 2FA Bypass Surge, and AI Disinformation This edition of Cyber (In)Securities tracks urgent cyber alerts from CISA, an exploited Citrix vulnerability (CVE-2025-6543), and a rise in 2FA bypass attacks. We cover healthcare data breaches, phishing campaigns, ransomware …
23 – 29 June 2025 The blast radius of a compromised security solution is always massive — just like the Cisco ISE API vulnerabilities featured in this post from our CVE of the Week series. Cisco’s ISE (Identity Services Engine) is the Network Access Control …
(In)Securities | Edition 159: ICS Alerts, IntelBroker Fallout, and Cybercrime Crackdowns This edition covers rising threats to critical infrastructure, major vulnerability disclosures, and global law enforcement action. CISA has released new Industrial Control Systems advisories and expanded its Known Exploited Vulnerabilities catalog. Meanwhile, the arrest …
The landscape of AI security presents a unique challenges. Adversaries are increasingly sophisticated, aiming to manipulate AI models, exfiltrate sensitive data, or exploit vulnerabilities within AI systems for various malicious ends. On top they are using /consuming millions of feeds , so we are looking …
When Infrastructure Becomes Political Once upon a time, infrastructure was invisible. It quietly kept the world running – roads, pipes, power grids, protocols. You only noticed it when it broke. But digital infrastructure isn’t invisible anymore. It’s political. It’s strategic. And increasingly, it’s personal. In …
There is a very specific time of day when it all seems to fall apart. For Cyber Security, that time is around 03:17 AM. If you’re in security, you will recognise this feeling, the kind of sensation where you feel there is an elephant in …
(In)Securities | Edition 158: Internet Users Advised to Change Passwords After 16bn Logins Exposed This edition dives into the massive RockYou2024 data dump, critical Citrix NetScaler flaws, and global breaches spanning Canada, Iran, and South Africa. We track MFA bypasses used by Russian hackers, malware …
When 16 billion credentials turn up in a single breach compilation, it should shake us. But it doesn’t. Not anymore. And that’s the problem. In the latest reminder that password-based security is a brittle mess, security researchers revealed a mega-leak containing more than 16 billion …
16 – 22 June 2025 It’s Friday again, which for some people means throwing a party to let the stress out after a long week at work. Not for engineers responsible for securing SUSE Linux systems, though. SUSE is a distribution loved by many desktop …
