Collaborate Disseminate
Cybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully exploited, could enable attackers to gain unauthorized access to files, inject malicious data, and tamper with logs under certain … Continue reading Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers
Cybersecurity researchers are warning about a new malware called DslogdRAT that’s installed following the exploitation of a now-patched security flaw in Ivanti Connect Secure (ICS).
The malware, along with a web shell, were “installed by exploiting a z… Continue reading DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks
Detectify announced new Asset Classification and Scan Recommendations capabilities. This innovation directly addresses a critical challenge for security teams: knowing what else, beyond their core applications, requires in-depth testing. The new featur… Continue reading Detectify Asset Classification and Scan Recommendations improves vulnerability testing
Claude was used to create advanced malware and push paid political agendas on social media. Continue reading Anthropic finds alarming ’emerging trends’ in Claude misuse report
Rubrik announced its upcoming solution, Identity Resilience, designed to secure the entire identity landscape alongside data. Identity Resilience aims to protect the most common entry points for attackers – human and non-human identities (NHIs) – to he… Continue reading Rubrik Identity Resilience protects vulnerable authentication infrastructure
The passkey standard has reached a precarious moment. Let’s not blow it, OK? Continue reading Why the road from passwords to passkeys is long, bumpy, and worth it – probably
BreachLock AEV automates multistep, threat-intelligence-led attack scenarios—helping security teams uncover real exposures and prioritize what matters most. Going beyond just showing security teams their risk, BreachLock Adversarial Exposure Validation… Continue reading BreachLock AEV simulates Real attacks to validate and prioritize exposures
Dashlane unveiled a new approach to addressing human risk in response to the rise of AI-driven phishing attacks and shadow IT in corporate environments. Built on innovation that pushes beyond vault-based password management, Dashlane Omnix is the AI-ac… Continue reading Dashlane introduces Omnix for AI-powered credential protection
As cloud app adoption continues to rise, and the modern workplace continues to evolve, LastPass will introduce a new approach to democratize access management. Built with the needs of small-to-mid-sized businesses in mind, Secure Access Experiences rep… Continue reading LastPass Secure Access Experiences simplifies access management
Vanta announced new ways to help organizations demonstrate AI security and evaluate AI risk across their ecosystem. With the launch of Vanta’s new AI Security Assessment offering, customers using, developing or building with AI can now more effectively… Continue reading Vanta AI Security Assessment evaluates AI risk