Security Bulletin

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

CISA issued a handful of alerts to address vulnerabilities in 10 industrial control appliances.

GrayAlpha uses custom loaders to deploy the NetSupport RAT backdoor.

Unlike typical data-stealing malware, this attack tool targets data specific to corporate and cloud infrastructures in order to execute supply chain attacks.

When security becomes a performance, the fallout isn’t just technical, it’s organizational.

The threat of wiping files and servers clean gives Anubis affiliates yet another way to leverage ransomware victims who may be hesitant to pay to get their data back, Trend Micro said.

Bad package takes aim at AI apps that contain MacOS data, CI/CD pipelines, and AWS tokens.

Journalists' Microsoft accounts were breached, which would have given attackers access to emails of staff reporters covering national security, economic policy, and China.

The emerging threat group attacks the supply chain via weaponized repositories posing as legitimate pen-testing suites and other tools that are poisoned with malware.

The Cisco Customer Achievement Awards: Americas 2025 took place last week at Cisco Live San Diego 2025, recognizing Cisco customers who have achieved exceptional results through the innovative use of technology. We’re thrilled by the response of the...

Here’s how automation can secure the organization’s documents.

Join the Super Optics League, an exciting enablement campaign for Cisco Partners and Distributors, and discover how Cisco Optics deliver performance, reliability, and growth in high-speed network environments.