My Courses
-
Croatian research institute targeted by ToolShell ransomware attack
The Ruđer Bošković Institute (RBI), the largest Croatian science and technology research institute, confirmed that it was among “at least 9,000 institutions worldwide” targeted by…
-
Microsoft has addressed the “BadSuccessor” Kerberos vulnerability identified as CVE-2025-53779.
In August 2025, Microsoft released security updates addressing over 100 vulnerabilities across its products, including a significant relative path traversal flaw in Windows Kerberos (CVE-2025-53779)….
-
NIST releases lightweight cryptography standard for IoT devices
The National Institute of Standards and Technology (NIST) has finalised a lightweight cryptography standard aimed at safeguarding even the smallest networked devices from cyberattacks. Published…
-
Manpower has reported that a data breach resulting from a ransomware attack has affected 140,000 individuals.
In January, the RansomHub ransomware group executed a significant cyberattack on the staffing and recruiting firm Manpower, resulting in a substantial data breach. This incident…
-
New Zoom and Xerox security updates address privilege escalation and remote code execution (RCE)
Zoom and Xerox have recently addressed significant security vulnerabilities in their respective software products, which could potentially lead to privilege escalation and remote code execution….
-
AWS CISO explains cloud-native security
In a recent interview with Help Net Security, Amy Herzog, CISO at AWS, elaborates on the concept of cloud-native security, which provides scalable and flexible…
-
Adobe patches 60+ security flaws in 13 products
Adobe has released critical security updates addressing over 60 vulnerabilities across 13 of its products, including Adobe Commerce, Substance, InDesign, FrameMaker, and Dimension. These updates…
-
Fortinet and Ivanti issue new security updates
Fortinet and Ivanti have announced the release of new security advisories as part of their August 2025 Patch Tuesday updates. These updates address critical vulnerabilities…
-
PS1Bot malware executes multi-stage attacks
Cybersecurity researchers have identified a new malvertising campaign aimed at infecting victims with a sophisticated multi-stage malware framework known as PS1Bot. This malware features a…
-
N-able N-Central vulnerabilities actively exploited (CISA)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently added two security vulnerabilities affecting N-able N-central to its Known Exploited Vulnerabilities (KEV) catalog, highlighting evidence…