Security Bulletin

Discover why lateral movement is a key tactic in cyber breaches and how defenders can strengthen security by focusing on this critical threat vector.

Organizations across the continent saw 10% fewer attacks in September, but Africa remains the most attacked region in the world, leading the Global South.

As we mark the one-year anniversary of Hurricane Helene and the 20th anniversary of Cisco Crisis Response (CCR), I find myself reflecting on the true meaning of resilience — both within communities facing unimaginable disaster and within the teams...

About 7% of organizations in the EU are fully prepared to leverage AI. Early warning signs point to a gap between AI ambition and operational readiness.

For a while, clipboard content has been monitored by many infostealers. Purposes can be multiple, like simply searching and exfiltrating juicy data or on-the-fly modification like crypto-wallet swapping[ 1]. Note that the...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

October 2025's enormous Patch Tuesday offers plenty of nightmares for admins, including actively exploited zero-days and insidious high-severity privilege-escalation bugs — and it spells curtains for Windows 10 updates.

Chinese APT threat actors compromised an organization's ArcGIS server, modifying the widely used geospatial mapping software for stealth access.

We’ve finally arrived at the third and final installment of this riveting blog series. While some may be sad at the disappearance of extra sleep they received from reading this (my prose is usually a great cure for insomnia), in this blog, we’ll be...

The proof-of-concept exploit allows an attacker to steal sensitive data from Gmail, Google Accounts, Google Authenticator, Google Maps, Signal, and Venmo.

I am experimenting today with a little bit of a cleaned-up patch overview. I removed vulnerabilities that affect Microsoft's cloud systems (but appreciate Microsoft listing them at all), as well as vulnerabilities in third-party software...

Cisco's AI-powered Partner Experience Platform (PXP) revolutionizes the partner journey with Cisco’s AI Assistant. It's the "front door" to the Cisco 360 Partner Program. PXP delivers real-time support, insights, empowering partners for growth...