cyber defense

When news of new vulnerabilities in Schneider Electric’s Modicon Controllers emerges, the industrial and Windows enterprise community pays close attention. These controllers are not niche devices; they comprise critical automation platforms used globally across sectors such as energy, critical...

A new chapter in the ongoing saga of cyber espionage has emerged, this time taking the form of sophisticated attacks against government agencies and high-value organizations in Eastern Europe and the Balkans. At the center of these attacks is XDigo, a newly discovered Go-based malware, which...

In an era where every business interaction, financial transaction, and personal relationship is underpinned by digital connectivity, the imperative to safeguard our cyberspace has never been more pressing. As organisations leverage the immense opportunities of the internet to drive innovation...

Microsoft has recently announced significant enhancements to the default security settings of Windows 365 Cloud PCs, aiming to bolster defenses against data exfiltration and malicious exploits. These updates introduce advanced security features and modify default configurations to create a more...

In a chilling demonstration of how cybercriminals are evolving their attack strategies, security researchers recently uncovered an advanced and highly orchestrated campaign by the North Korean BlueNoroff hacking group that leverages deepfake technology, social engineering, and custom macOS...

AI agents built on large language models (LLMs) are rapidly transforming productivity suites, operating systems, and customer service channels. Yet, the very features that make them so useful—their ability to accurately interpret natural language and act on user intent—have shown to create a new...

IT Nation Secure 2025, held in Orlando, Florida, convened over 1,200 cybersecurity professionals, including more than 600 Managed Service Providers (MSPs), to explore the evolving landscape of cybersecurity, artificial intelligence (AI), and community collaboration. Hosted by ConnectWise, a...

Datalink Networks, a name already familiar to many within the cybersecurity and IT solutions space, has moved further into the spotlight after achieving the prestigious Microsoft Solutions Partner for Security designation. As highlighted in recent reports, this recognition elevates the...

Microsoft has unveiled a new security feature within its Defender for Office 365 suite aimed at mitigating the rising threat of email bombing attacks. This feature, termed "Mail Bombing Detection," is designed to automatically identify and quarantine high-volume email flooding campaigns that...

A new and deeply concerning evolution in cyberattack methodology is putting Microsoft Entra ID (formerly known as Azure Active Directory) users and organizations at unprecedented risk. This surge in account takeover (ATO) campaigns exploits TeamFiltration—a legitimate penetration testing tool...

Microsoft’s recent expansion of its Defender for Office 365 platform signals another significant step toward creating a holistic, adaptive, and integrated email security solution for enterprises navigating increasingly complex threat landscapes. The latest announcement introduces a broad ICES...

Fuji Electric’s Smart Editor software, widely used in critical manufacturing sectors worldwide, has come under the cybersecurity spotlight following the public disclosure of multiple critical vulnerabilities. These flaws—identified as out-of-bounds read, out-of-bounds write, and stack-based...

Microsoft has recently enhanced its Security Copilot's Guided Response feature by integrating the TITAN intelligence system, a real-time threat intelligence framework designed to bolster cybersecurity defenses. This integration aims to provide security analysts with more precise and timely...

Anubis ransomware has emerged as a formidable threat in the cybersecurity landscape, employing a destructive wiper module that ensures victims lose their data irretrievably, even if they comply with ransom demands. This evolution in ransomware tactics underscores the increasing sophistication...

Illusive Networks, an Israeli cybersecurity company renowned for its pioneering work in deception technology, has once again made headlines by securing $24 million in a recent funding round. This capital injection comes at a critical time for the cybersecurity sector, marked by rising...

Password spraying attacks have become one of the most persistent and damaging techniques in the arsenal of modern cybercriminals, as demonstrated by a newly disclosed incident in which over 80,000 Microsoft Entra ID accounts were targeted using legitimate penetration testing tools. According to...

In January 2025, cybersecurity researchers at Aim Labs uncovered a critical vulnerability in Microsoft 365 Copilot, an AI-powered assistant integrated into Office applications such as Word, Excel, Outlook, and Teams. This flaw, named 'EchoLeak,' allowed attackers to exfiltrate sensitive user...

In a groundbreaking development in cybersecurity, researchers from Aim Labs have identified a critical vulnerability in Microsoft 365 Copilot, termed 'EchoLeak' (CVE-2025-32711). This flaw represents the first documented zero-click attack targeting an AI agent, enabling unauthorized access to...

In a landmark event that is sending ripples through the enterprise IT and cybersecurity landscapes, Microsoft has acted to patch a zero-click vulnerability in Copilot, its much-hyped AI assistant that's now woven throughout the Microsoft 365 productivity suite. Dubbed "EchoLeak" by cybersecurity...

Across the sprawling landscape of industrial control system (ICS) security, the significance of rock-solid privilege management cannot be overstated. Recent advisories surrounding Siemens SCALANCE and RUGGEDCOM products have brought this into sharp relief, revealing how privilege...