NSA

Weekly Top 10: 09.08.2025: ViewState Zero-Day in Sitecore (CVE-2025-53690); Debunking Microsoft 365 & Identity Myths; New AI-Powered HexStrike-AI Tool Exploits Citrix Flaws, and More.

ViewState Zero-Day in Sitecore (CVE-2025-53690); Debunking Microsoft 365 & Identity Myths; New AI-Powered HexStrike-AI Tool Exploits Citrix Flaws; and 7 More.

September 8, 2025 16:00 GMT

Weekly Top 10: 09.01.2025: Attackers Abuse Velociraptor IR Tool; npm ‘Nx’ Supply-Chain Attack Leaks ~20K Sensitive Files; TransUnion Breach Hits 4.4M People, and More.

Attackers Abuse Velociraptor IR Tool; npm ‘Nx’ Supply-Chain Attack Leaks ~20K Sensitive Files; Transunion Breach Hits 4.4M People; and 7 More.

September 1, 2025 16:00 GMT

Weekly Top 10: 7.29.2024: NSA Warns of Attacks on US Critical Infrastructure; Vulnerability in Twilio Authenticator Added to CISAs KEV List; Telegram Messenger Exploit Delivers Malware in Videos, and More.

NSA Warns of Attacks on US Critical Infrastructure; Vulnerability in Twilio Authenticator Added to CISAs KEV List; Telegram Messenger Exploit Delivers Malware in Videos and 7 more cybersecurity stories...

July 29, 2024 16:00 GMT

Weekly Top 10 – 6.23.2023 – BlackLotus Mitigation, GitHub Repojacking, Apple exploits

NSA Releases Guide to Mitigate BlackLotus, GitHub repojacking, actively exploited zero-day for Apple iOS and macOS bugs, and 7 more stories...

June 26, 2023 21:02 GMT

Hand-Picked Top-Read Stories

Beyond Indicators of Compromise: Understanding LapDogs’ Cyber Strategy

Weekly Top 10: 09.08.2025: ViewState Zero-Day in Sitecore (CVE-2025-53690); Debunking Microsoft 365 & Identity Myths; New AI-Powered HexStrike-AI Tool Exploits Citrix Flaws, and More.

Weekly Top 10: 09.01.2025: Attackers Abuse Velociraptor IR Tool; npm ‘Nx’ Supply-Chain Attack Leaks ~20K Sensitive Files; TransUnion Breach Hits 4.4M People, and More.

Trending Tags

Weekly Top 10: 09.08.2025: ViewState Zero-Day in Sitecore (CVE-2025-53690); Debunking Microsoft 365 & Identity Myths; New AI-Powered HexStrike-AI Tool Exploits Citrix Flaws, and More.

Weekly Top 10: 09.01.2025: Attackers Abuse Velociraptor IR Tool; npm ‘Nx’ Supply-Chain Attack Leaks ~20K Sensitive Files; TransUnion Breach Hits 4.4M People, and More.

Weekly Top 10: 7.29.2024: NSA Warns of Attacks on US Critical Infrastructure; Vulnerability in Twilio Authenticator Added to CISAs KEV List; Telegram Messenger Exploit Delivers Malware in Videos, and More.

Weekly Top 10 – 6.23.2023 – BlackLotus Mitigation, GitHub Repojacking, Apple exploits

2025

Threat Advisories

Weekly Top 10: 08.18.2025: The Rise of Native Phishing: Microsoft 365 Apps Abused in Attacks; WinRAR Vulnerability Exploited by Two Different Groups; Cisco Warns of CVSS 10.0 FMC RADIUS Flaw, and More.

Weekly Top 10: 08.04.2025: ShinyHunters Behind Major Salesforce Data Theft; SafePay Ransomware Threatens to Leak 35TB from Ingram Micro; Shade BIOS Attack Defeats Endpoint Security Measures, and More.

Weekly Top 10: 07.28.2025: CryptoJacking is Dead; Coyote in the Wild: First-Ever Malware That Abuses UI Automation; SharePoint Under Siege, and More.

Weekly Top 10: 07.21.2025: Hackers Use GitHub to Host Malware Payload; Critical Cisco Zero-Day Allows Root Access Without Password; Google Patches Chrome Zero-Day Used for Sandbox Escape, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware