Executive Summary On January 29, 2026, Ivanti disclosed two critical zero-day vulnerabilities in its Endpoint Manager Mobile (EPMM) platform—CVE-2026-1281 and CVE-2026-1340—both actively exploited in the wild before patches became available. These command injection flaws allow unauthenticated remote attackers to execute arbitrary code on vulnerable EPMM appliances with a
When one 9.9 CVSS vulnerability leads to another, and attackers target the credential vault of modern automation Executive Summary The n8n workflow automation platform, with over 100 million Docker pulls and thousands of enterprise deployments, has become a security liability. Between December 2025 and February 2026, security researchers disclosed
Your password might be weaker than you think—and artificial intelligence knows exactly why. The Wake-Up Call You Didn't Know You Needed Let me paint you a picture. You're pretty proud of your password. You didn't use "password123" like some amateur. No,
Sam Altman announces upcoming releases will reach unprecedented AI cyber capability levels, introducing "defensive acceleration" strategy January 24, 2026 | CISO Marketplace In a significant announcement posted to X on January 23, 2026, OpenAI CEO Sam Altman revealed that the company is preparing to cross a critical threshold in
Executive Summary: Groundbreaking research from Anthropic reveals that poisoning large language models requires far fewer malicious documents than previously believed—just 250 carefully crafted documents can successfully backdoor models of any size, from 600 million to 13 billion parameters. This finding fundamentally challenges assumptions about AI security and demonstrates that
Executive Summary Bulletproof Hosting (BPH) providers represent a foundational pillar of the modern cybercrime ecosystem, offering resilient infrastructure services deliberately designed to shield malicious actors from legal and technical disruption. These providers ignore abuse complaints and law enforcement requests, creating safe havens for criminal operations such as ransomware, phishing, malware
A cybersecurity analysis of the incident that wiped a developer's entire drive and what it means for enterprise security Executive Summary On December 3, 2024, a developer experienced what may become the poster child for why autonomous AI coding agents need enterprise-grade security controls. Google's recently
December 2025 is here, and for cybersecurity enthusiasts, that means one thing: Advent Calendar CTF season! If you're looking to sharpen your OSINT (Open Source Intelligence) and cybersecurity skills while enjoying the festive season, you're in luck. This year brings an impressive lineup of free, educational
Game-changing release establishes practical methodology for validating AI system security, reliability, and responsible deployment The AI security community just got its most significant resource to date. OWASP has officially released the AI Testing Guide v1, marking the first comprehensive, community-driven standard for trustworthiness testing of artificial intelligence systems. This isn&
Executive Summary A sophisticated malware campaign dubbed "Water Saci" is leveraging WhatsApp's massive user base in Brazil to deploy banking trojans that hijack browser sessions and steal financial credentials. With 148 million WhatsApp users in Brazil representing 98% of smartphone users with the messaging app, cybercriminals
On October 24, 2025, a digital tsunami slammed into Microsoft Azure's Australian endpoint. 15.72 terabits per second (Tbps) of malicious traffic—equivalent to streaming 3.5 million Netflix movies simultaneously—flooded the network from over 500,000 compromised IP addresses. The attack peaked at 3.64 billion
When malware starts writing its own code, cybersecurity enters uncharted territory Bottom Line Up Front Security researchers have identified five groundbreaking malware families in 2025 that leverage large language models (LLMs) to dynamically generate attack code, evade detection, and adapt to their environments. From FRUITSHELL's reverse shell with