My Courses
-
CISA has issued a warning regarding vulnerabilities in D-Link products that are currently being exploited in attacks.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new alert, adding three vulnerabilities affecting D-Link devices to its Known Exploited Vulnerabilities (KEV)…
-
Over 10,000 harmful TikTok Shop websites are targeting users to obtain login details and distribute malware.
A sophisticated cybercriminal campaign known as “ClickTok” has emerged as a significant threat to TikTok Shop users globally. Researchers have identified over 10,000 malicious domains…
-
The Compliance Checklist for Network Security: 25 Controls That Are Mapped and Prepared for Auditing
Following new SEC rules announced on July 26, 2023, U.S. public companies are required to disclose any cybersecurity incident deemed ‘material’ within four business days…
-
The ClickFix malware campaign takes advantage of CAPTCHAs to facilitate cross-platform infection spread.
A combination of propagation methods, narrative sophistication, and evasion techniques enabled the social engineering tactic known as ClickFix to take off over the past year,…
-
How to Obtain Real-Time Indicators of Compromise from Incidents in 15,000 Security Operations Centers.
Cybersecurity is fundamentally about staying one step ahead of potential threats. The security of business assets relies heavily on proactive threat detection and rapid response,…
-
How Poor Certificate Management Creates Vulnerabilities for Phishing and Man-in-the-Middle Attacks
SSL Certificates are ubiquitous, utilised across websites, APIs, mobile applications, internal tools, and CI/CD pipelines. While most teams recognise their significance, they often fail to…
-
A newly identified MCPoison attack utilizes the Cursor IDE’s MCP validation process to run arbitrary commands within the system.
A critical vulnerability in Cursor IDE, an increasingly popular AI-powered development environment, allows for persistent remote code execution through the manipulation of the Model Context…
-
Microsoft’s Project Ire independently reverse engineers software to detect malware.
Microsoft has introduced Project Ire, an innovative prototype that leverages autonomous AI technology to analyse software files for potential malicious content. This advanced AI agent…
-
A vulnerability in the Cursor AI Code Editor allows for remote code execution (RCE) by swapping in a malicious MCP file after it has been approved.
Cybersecurity researchers have identified a significant security vulnerability in the AI-powered code editor Cursor, which could lead to remote code execution. This flaw, designated as…
-
Google’s August update addresses two Qualcomm vulnerabilities that have been actively exploited.
Google has released critical security updates to address multiple vulnerabilities in Android, including two Qualcomm bugs identified as actively exploited. The vulnerabilities, CVE-2025-21479 (CVSS score:…