Reducing Risks in Cloud Applications
As organizations increasingly rely on SaaS applications to run their operations, securing them has become a necessity. Without strong protection, sensitive data, user access, and…
Month: April 2025
The Cloud: Reducing Security To Way Above Where It Is Today
I was just reading a good post over at securosis by my friend Rich Mogull, and I have a few comments. He, and many others,…
Microsoft Defender will isolate undiscovered endpoints to block attacks
Microsoft is testing a new Defender for Endpoint capability that will block traffic to and from undiscovered endpoints to thwart attackers’ lateral network movement attempts.…
The Role of AI In Cybersecurity: Enhancing Defense And Adapting To Threats
The cybersecurity landscape today feels like a constant game of cat and mouse. Every time we think we’ve outpaced the attackers; they find new ways…
Threat Actors Launch Active Attacks on Semiconductor Firms Using Zero-Day Exploits
Semiconductor companies, pivotal in the tech industry for their role in producing components integral to everything from consumer electronics to critical defense systems, are under…
Russia’s Storm-2372 Hits Orgs with MFA Bypass via Device Code Phishing
Russian APT group Storm-2372 employs device code phishing to bypass Multi-Factor Authentication (MFA). Targets include government, technology, finance, defense, healthcare. Cybersecurity researchers at SOCRadar have…
The Power of Twitter Search
Twitter Search continues to impress me. It’s quickly becoming one of the best things about the service. I woke up this morning and noticed that…
Hackers retain access to patched FortiGate VPNs using symlinks
Fortinet warns that threat actors use a post-exploitation technique that helps them maintain read-only access to previously compromised FortiGate VPN devices even after the original…
Securing The AI Frontier: Addressing Emerging Threats In AI-Powered Software Development
AI in software development is no longer a glimpse into the future – it’s here, woven into daily workflows and it’s accelerating at a breakneck…
Threat Actors Leverage Email Bombing to Evade Security Tools and Conceal Malicious Activity
Threat actors are increasingly using email bombing to bypass security protocols and facilitate further malicious endeavors. Email bombing, known also as a “spam bomb,” involves…
Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices
A threat actor that has been using known old FortiOS vulnerabilities to breach FortiGate devices for years has also been leveraging a clever trick to…
Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit
Apr 11, 2025Ravie LakshmananNetwork Security / Vulnerability Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices…