Content Paint
Search
Sign in
Membership

Security

Security  | Aug 04, 2025
Sharepoint attacks: “Manual inspection”, key rotation critical says CISA
Sharepoint attacks: “Manual inspection”, key rotation critical says CISA

"If IIS is restarted without manually removing malicious module entries from applicationHost.config and web.config files, any malicious modules will persist and reload..."

Security  | Aug 04, 2025
Russian cyber group using local ISPs to spy on foreign embassies
A cat's eye is seen through a bush. Russia's Secret Blizzard group has used access to local ISPs to intercept embassy device activity.

If you're still trusting Russian network providers, please stop, researchers plead.

CISA  | Aug 01, 2025
What is CISA’s newly open-sourced Thorium?
What is CISA’s newly open-sourced Thorium?

"Users can define a series of modular steps—such as static file analysis, dynamic sandboxing, hash verification, unpacking, or signature detection"

 |  Security  | Jul 30, 2025
Palo Alto Networks swoops on CyberArk for $25 billion
Palo Alto Networks swoops on CyberArk for $25 billion

"Our market entry strategy has always been to enter categories at their inflection point"

Security  | Jul 29, 2025
Five questions for AWS after a troubling supply chain breach
Five questions for AWS after a troubling supply chain breach

“Someone intentionally slipped a live grenade into prod and AWS gave it version release notes.”

Cisco  | Jul 28, 2025
CVSS 10 bugs in Cisco's "zero trust" software exploited
CVSS 10 bugs in Cisco's "zero trust" software exploited

All exploitation takes is a “crafted API request”. The bug affects Cisco ISE and ISE-PIC releases 3.3 and 3.4, “regardless of device configuration.”

 |  Security  | Jul 26, 2025
AWS zero day exploited to access codebase for its AI assistant
AWS CodeBuild vulnerability CVE-2025-8217 exploited

AWS has now "included additional protections against memory dumps within container builds..."

Security  | Jul 25, 2025
“Invisible to EDR”: Hackers are gaining deep VMware persistence
vmware persistence hackers

"The core vulnerability is a help desk process that lacks robust, non-transferable identity verification for password resets..."

Security  | Jul 23, 2025
FBI, CISA advise Interlock ransomware "drive-by" vigilance
A car moves at speed along a road, the road and streets around it are blurred while the white car is in focus. The FBI and CISA released a joint advisory on the Interlock ransomware group

Interlock is known for using "double extortion methods" to encrypt and exfiltrate data.

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.