Microsoft Defender can now automatically isolate hacked endpoints
Microsoft is testing a new Defender for Endpoint capability that will automatically isolate compromised endpoints to thwart attackers’ attempts to move laterally across the network.…
Month: May 2026
GitLab Suspends Windows Exploit Researcher Nightmare-Eclipse After GitHub Ban
The anonymous researcher known as Nightmare-Eclipse has been blocked from two major code-hosting platforms in less than a week, as their disruptive public zero-day campaign…
Microsoft SharePoint Server Flaw Enables Remote Code Execution Attacks
Microsoft has disclosed a critical security vulnerability in SharePoint Server that could allow attackers to execute arbitrary code remotely, raising significant concerns for enterprise environments…
Coinflow CISO on crypto payments security under AI pressure
Crypto payment firms sit near the top of the target list for advanced persistent threat groups, and the workload on their security leaders keeps growing.…
MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You
Multi-factor authentication (MFA) was supposed to close a critical gap in identity security. It meant that, even if an attacker possessed the account credentials, they…
CrowdStrike, Google slay ‘unkillable’ Glassworm botnet targeting devs
Security vendor CrowdStrike said it has taken down the command and control (C2) channels used by the operators of the Glassworm botnet that has targeted…
Anthropic Expands Claude’s Enterprise Security Governance With 28 New Integrations
Anthropic announced last week that Claude now connects with 28 security and compliance platforms, a move designed to make the AI assistant a more manageable…
Third-Party Cyberattack Impacts Patient Information at The Oncology Institute
Third-Party Cyberattack Impacts Patient Information at The Oncology Institute Pierluigi Paganini May 26, 2026 The Oncology Institute disclosed a data breach tied to a third-party…
White House charts new course for federal agencies and cybersecurity logging
The White House has updated rules for federal agencies to keep logs of significant cyber activities in their networks, touting it as a measure to…
Sovereign Technology Report highlights execution pressure on public sector transformation
Australian government and critical infrastructure organisations face growing pressure to modernise technology environments while maintaining operational control, accountability and resilience, according to new research commissioned…
Microsoft previews automatic device isolation in Defender for Endpoint
However, a new SANS Institute research paper warns that, in certain conditions, an attacker could leverage the new function to disable all user accounts. The…
2021 in Review (And Other Horror Stories)
There’s a funny story behind the creation of this blog. The content of this blog was originally going to be the focus of December’s Tradecraft…