Hackers Weaponize SharePoint 0-Day: Widespread Exploitation Ongoing
A critical zero-day vulnerability chain, called “ToolShell,” is actively exploited in Microsoft SharePoint Server on-premises environments. This sophisticated attack vector…
Security
Subliminal Learning in AIs
Today’s freaky LLM behavior: We study subliminal learning, a surprising phenomenon where language models learn traits from model-generated data that…
Rogue CAPTCHAs: Look out for phony verification pages spreading malware
Before rushing to prove that you’re not a robot, be wary of deceptive human verification pages as an increasingly popular…
ToolShell: An all-you-can-eat buffet for threat actors
ESET Research has been monitoring attacks involving the recently discovered ToolShell zero-day vulnerabilities
DDoS Attack – Everything You Need to Know
Imagine your business website grinding to a halt. But it’s not the usual suspects, a technical glitch or human error,…
Streamline Endpoint Security and Compliance at Scale
Security service providers are under increasing pressure to do more with less time. Clients expect faster response, tighter control, and…
Patch Now: SonicWall Addresses Critical CVE-2025-40599 in SMA Appliances Amid Exploit Risk
SonicWall has released a patch for a critical vulnerability, CVE-2025-40599, affecting its Secure Mobile Access (SMA) 100 series appliances and…
Why the CIS Benchmarks are the Gold Standard for Secure Configurations
Misconfigured network infrastructure continues to be one of the biggest cybersecurity concerns for organizations everywhere. In one study, 82% of…
Red Team vs Blue Team in Cybersecurity
In the ever-evolving battlefield of cybersecurity, organizations adopt military-inspired strategies to test, strengthen, and evolve their defenses. Two key players…
Faster Delivery of Vulnerability Scanning for Security Platforms
Vulnerability detection is becoming a baseline expectation in security product evaluations. Buyers want tools that go beyond runtime signals to…