cybersecurity

Cobalt Strike 4.12 lands as one of the most consequential updates to the commercial red‑team platform in recent memory, combining major operator‑facing convenience features — a refreshed GUI, theme support and a beta REST API — with a broad set of new offensive capabilities: a user‑defined C2...

Microsoft has pushed a high-priority November cumulative update for Windows that closes dozens of security holes — including a Windows kernel flaw Microsoft says was being actively exploited in the wild — and users and administrators are being urged to install the patch without delay. Background...

Sophos’ decision to surface its Intelix threat intelligence inside Microsoft’s Copilot ecosystem marks a practical inflection point: high-fidelity telemetry and sandbox analysis that once lived behind SOC consoles are now available inside Microsoft Security Copilot and Microsoft 365 Copilot...

The industry just reached a new inflection point: Anthropic, Microsoft, and NVIDIA unveiled a tightly coordinated set of partnerships that stitch model development, chip co‑engineering, and hyperscale cloud capacity into a single commercial fabric — Anthropic has committed to purchase roughly...

CISA’s latest package of Industrial Control Systems (ICS) advisories is a blunt reminder that adversaries continue to probe and exploit the operational technology (OT) layer — and that Windows-centric IT teams are often the fastest path from a network foothold to physical process disruption. The...

Embee Software’s latest strategic pivot—doubling down on AI-led productivity, cloud optimisation and managed cybersecurity—signals an aggressive move to convert decades of channel experience into a scalable services business focused on Microsoft platforms and recurring revenue. In an exclusive...

Roman Kepczyk’s annual technology forecast for accounting firms lays out a tight, practitioner-focused set of predictions that should be on every firm leader’s 2026 strategic radar: cloud engagement binder stagnation, change management as a competitive moat, vendor‑led adoption of agentic AI...

Russia’s sudden mobile “cooling-off” for returning travellers, Microsoft’s push to make passkeys a first-class OS feature, and a flurry of vendor patches and threat intelligence reports together make this an unusually consequential week for enterprise defenders and everyday Windows users alike —...

Siemens has published fixes for a cluster of high‑severity vulnerabilities in Spectrum Power 4 that can lead to local and network‑accessible privilege escalation and remote command execution; operators must update to V4.70 SP12 Update 2 (or later) immediately and apply network compensations...

The Siemens SICAM P850 and SICAM P855 families of power‑system devices have a history of web‑interface flaws that together create a meaningful operational risk for utilities and industrial operators: multiple advisories from Siemens ProductCERT and republished CISA advisories identify Cross‑Site...

Microsoft has published an advisory for CVE-2025-62206, an information disclosure vulnerability affecting Microsoft Dynamics 365 (On‑Premises); the issue is network‑accessible, requires user interaction, and has been assigned a CVSS v3.1 base score of 6.5 (Medium) with a confidentiality impact...

The image of masked thieves riding away from the Musée du Louvre with crown jewels in broad daylight was cinematic — the more damaging part is the audit trail and leaked excerpts showing that auditors once accessed the museum’s video‑surveillance server with the literal password LOUVRE, and that...

The Louvre’s security story after the October heist is less a thriller’s last-act twist and more an institutional autopsy: auditors once logged that the server driving the museum’s video surveillance accepted the literal password LOUVRE, a detail that has become shorthand for a decade of...

The image of masked men riding scooters away from the Musée du Louvre with jewel-encrusted relics is the cinematic part — the deeper, more unsettling story is the discovery that auditors once accessed the museum’s video‑surveillance server using the password “LOUVRE,” a finding that reframes the...

A wave of high-severity vulnerabilities affecting ABB’s FLXeon building-automation controllers has forced urgent action across industrial operations and facilities management teams: multiple CVEs expose remote command execution, hard-coded credentials, weak hashing and file-path handling that —...

The Louvre’s security collapse reads like a cautionary tale written for IT teams: a daylight heist that lasted under eight minutes exposed not only a physical breach of priceless objects but decades of deferred cybersecurity maintenance, trivial credential hygiene, and unsupported vendor...

Microsoft and multiple security vendors are warning of an active, high‑urgency exploitation campaign that abuses a critical, unauthenticated Remote Code Execution (RCE) flaw in Windows Server Update Services (WSUS) — tracked as CVE‑2025‑59287 — and defenders must treat every WSUS host as a...

Microsoft has confirmed an emergency out‑of‑band patch for a critical Windows Server Update Services (WSUS) remote code execution flaw — and threat actors moved quickly, exploiting internet‑exposed WSUS instances within days of public proof‑of‑concept code appearing. Background WSUS is the...

Microsoft has released an out‑of‑band emergency patch to fix a critical remote code execution vulnerability in Windows Server Update Services (WSUS) — tracked as CVE‑2025‑59287 — and every WSUS host must be treated as a top‑tier remediation priority until it is patched or isolated. The flaw is a...

In a development that reads like a modern Cold War thriller, U.S. prosecutors this month accused a former executive tied to a government cyber-intelligence contractor of stealing and selling proprietary hacking tools to a Russian-based buyer for roughly $1.3 million — allegations that expose...