Why data centers now belong on the critical infrastructure list
Missile and drone attacks that took out cloud data centers in the Middle East underscored a critical vulnerability in the modern economy: reliance on digital…
Month: May 2026
Security agencies draw red lines around agentic AI deployments
CISA and its international partners also recommended integrating human control and oversight into agentic AI workflows to ensure they are approved for non-sensitive, low-risk tasks.…
MITRE ATT&CK v19 brings structural overhaul, industrial visibility, detection strategies as AI-driven attacks emerge
Not-for-profit organization MITRE released ATT&CK v19, introducing a series of structural and intelligence updates across the framework. The long-anticipated Defense Evasion split is now implemented,…
Shadow-Earth-053 targets Asian government, defense, critical infrastructure via Exchange and IIS vulnerabilities
Researchers from Trend Micro uncovered an ongoing cyberespionage campaign, tracked as Shadow-Earth-053, attributed to a China-aligned threat cluster targeting government, defense, and critical infrastructure organizations…
Phishing campaigns and BEC attacks through Amazon SES
Introduction The primary goal for attackers in a phishing campaign is to bypass email security and trick the potential victim into revealing their data. To…
How Security-Centric Procedures and Training Helped
On August 7, 2023, Huntress caught a business email compromise (BEC) that would have scammed us out of more than $100,000 had it gone undetected.…
Microsoft confirms April Windows updates cause backup failures
Microsoft has confirmed that the April 2026 security updates are causing failures in third-party backup applications using the psmounterex.sys driver. As BleepinComputer reported last week, this issue…
CISA Warns of cPanel & WHM Vulnerability Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical security flaw affecting widely used web hosting management platforms.…
Preparing For Hybrid Warfare: Actions To Take When The Cloud Goes Dark
By the end of 2024, Amazon reported detecting approximately 750 million cyberthreat or intrusion attempts per day, which was up from 100 million over the…
CISA Flags Linux Kernel Vulnerability as Threat Actors Launch Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a high-severity Linux kernel vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2026-31431,…
Rethinking Security Standards from compliance burden to Developer Advantage
In software engineering circles, compliance is commonly misinterpreted. When it is mentioned during a standup meeting, you will practically hear a collective groan. When developers…
7 Key Features That Make Secure Browsers Safer
The browser has quietly become the most dangerous place in the modern workplace. New research finds that nearly half (48%) of cyberattacks involve the web…