cyber defense

Microsoft is once again raising the bar in enterprise email security with the rollout of Mail Bombing Detection in Microsoft Defender for Office 365, a move set to strengthen defenses against one of the most disruptive cyberattack trends affecting organizations worldwide—email bombing. As attack...

The recent emergence of DEVMAN ransomware has thrown a spotlight on the ever-evolving landscape of Windows-targeted threats. Security researchers were first alerted to this new strain in early 2025 after an anonymous researcher, operating under the alias TheRavenFile, uploaded a suspicious...

The cybersecurity landscape is once again under heightened scrutiny as the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has moved to add two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog. This development signals both a persistent threat to federal and...

When a system designed to keep the lights on for critical infrastructure instead risks shutting them off with a few keystrokes, alarm bells ring far beyond the server room. Such is the case with recent critical security advisories surrounding the Voltronic Power and PowerShield lines of...

Festo’s Hardware Controller and Hardware Servo Press Kit, widely deployed in global industrial and critical manufacturing environments, recently became the subject of intense cybersecurity scrutiny due to several severe vulnerabilities that can expose systems to devastating attacks. With a...

The energy sector is a foundational pillar of global infrastructure, and the security of its operational technologies has become a matter of national and economic resiliency. In this context, a recently disclosed vulnerability in Hitachi Energy’s Modular Switchgear Monitoring (MSM) system...

KONE, a Finnish multinational corporation renowned for its elevators and escalators, is embarking on a transformative digital journey to enhance customer service and operational efficiency. Central to this initiative is the integration of Microsoft Sentinel, a cloud-native Security Information...

North Korean remote IT workers, operating under what Microsoft Threat Intelligence now tracks as Jasper Sleet (previously Storm-0287), exemplify how state-sponsored cyber actors are adapting and evolving their methods to sustain financial, intelligence, and geopolitical objectives. Since 2024...

Citrix NetScaler ADC and Gateway products—key infrastructure for many enterprise environments—have once again found themselves at the center of the cybersecurity spotlight. The Cybersecurity and Infrastructure Security Agency (CISA) recently added a new vulnerability, CVE-2025-6543, to its Known...

America’s decisive air campaign against Iran’s nuclear infrastructure may have changed the global security landscape overnight, but the destruction of spinning centrifuges and command bunkers does not signify the end of Iranian threats on the world stage. Far from it. The new battlefield is not...

In a significant move to enhance cybersecurity measures and reduce associated insurance costs, Microsoft has partnered with Antigen Security to offer substantial savings on cyber liability insurance premiums. This collaboration enables organizations utilizing Microsoft 365 E3/E5 Security and...

America’s recent decimation of Iran’s nuclear infrastructure, achieved through a sophisticated blend of satellite surveillance, precision airstrikes, and overwhelming firepower, delivered a dramatic shock to Tehran’s nuclear ambitions. In the aftermath, the melted centrifuges and cratered...

Security researchers have uncovered a sophisticated cyber espionage campaign, dubbed "LapDogs," that has compromised over 1,000 small office/home office (SOHO) devices worldwide. This campaign, attributed to China-linked threat actors, leverages these devices to form an Operational Relay Box...

Microsoft's recent decision to reassign Chief Information Security Officer (CISO) Igor Tsyganskiy from the Security group to the Cloud + AI division underscores the company's strategic emphasis on integrating artificial intelligence (AI) into its cybersecurity framework. This move reflects a...

A sophisticated phishing campaign has been exploiting Microsoft 365's Direct Send feature, targeting over 70 organizations across various sectors in the United States since May 2025. This attack underscores the evolving tactics of cybercriminals and highlights the need for organizations to...

Microsoft’s shifting internal landscape is once again in the spotlight, as it undertakes a highly strategic move: transferring its chief information security officer, Igor Tsyganskiy, out of the company’s security group and placing him directly under EVP Scott Guthrie, who leads Microsoft’s...

In a significant move to bolster email security, KnowBe4 has announced a strategic integration with Microsoft, marking the first initiative within Microsoft's Integrated Cloud Email Security (ICES) vendor ecosystem. This collaboration aims to enhance protection for mutual customers by combining...

Four days of total digital silence. That was the stark reality for the 20 million users of YES24, South Korea’s largest online bookstore, after a catastrophic ransomware attack forced the entire platform—website and app—offline. Orders for books, reservations for concerts, and access to digital...

In the ever-evolving world of cyber threats, collaboration and integration between leading technology vendors have increasingly become not just beneficial, but essential. The recently announced strategic alliance between KnowBe4 – globally recognized for its comprehensive human risk management...

Microsoft's announcement to end support for Windows 10 on October 14, 2025, has prompted the Indian Computer Emergency Response Team (CERT-In) to issue an advisory urging users to upgrade to Windows 11 to mitigate potential security risks. Implications of Windows 10 End of Support Post October...