LABScon25 Replay | Are Your Chinese Cameras Spying For You Or On You?
In this LABScon 25 presentation, Marc Rogers and Silas Cutler explore the complex, “shadow” supply chain of ultra-cheap Chinese smart home devices, specifically focusing on…
Category: VendorResearch
Phishing and MFA exploitation: Targeting the keys to the kingdom
In 2025, attackers increasingly targeted weaknesses in multi-factor authentication (MFA) workflows, and phishing attacks leveraged valid, compromised credentials to launch lures from trusted accounts. The…
Fragmentation Defined 2025’s Threat Landscape. Here’s What It Means for 2026
Uncertainty has become the operating environment for business. And this year, fragmentation is driving it. The global threat landscape didn’t simplify in 2025; it shattered.…
Emerging Enterprise Security Risks of AI
Summary Agentic AI adoption is accelerating rapidly as enterprise software and applications increasingly incorporate task-specific AI agents, enabling autonomous execution of complex tasks at machine…
Ransomware negotiations: What CISOs should know before negotiating
When ransomware hits, decisions move fast. Ransomware negotiations begin at one of the most stressful moments in an incident: once a victim has been compromised…
Fracturing Software Security With Frontier AI Models
Introduction Unit 42 recently got hands-on with frontier AI models, and our initial findings indicate a major shift in the speed, scale and capability of…
VIP Credential Monitoring Blog
There’s a category of employee credentials where standard monitoring often falls short: executives, finance leaders, IT administrators, and those with privileged access have a large…
PowMix botnet targets Czech workforce
Cisco Talos discovered an ongoing malicious campaign, operating since at least December 2025, affecting a broader workforce in the Czech Republic with a previously undocumented botnet we call “PowMix.” PowMix employs randomized command-and-control (C2) beaconing intervals, rather than persistent connection to the C2…
The Q1 vulnerability pulse
Welcome to this week’s edition of the Threat Source newsletter. The first quarter of 2026 passed faster than a misconfigured firewall rule gets exploited — and the…
Your Supply Chain Breach Is Someone Else’s Payday
TeamPCP exploited a single stolen credential to gain write access to trusted software repositories, inject credential-harvesting malware, and cascade across five ecosystems in five days.…
How AI is getting better at finding security holes : NPR
AI lab Anthropic announced this week that it had developed a powerful new model the company believes could “reshape cybersecurity.” It said that its latest…
From Bazooka to Fake Nikes
Business impersonation is the hidden thread connecting old and new fraud. Discover how the same core tactic is fueling both a surge in commercial check…