Vulnerabilities
Progress Confirms Zero-Day Vulnerability Behind ShareFile Disruption and Ships Fix
Progress closes the ShareFile emergency with a confirmed zero-day and shipped fix — Storage Zones Controller customers apply and restore this week.
Strategic frameworks for detecting, containing, and recovering from security incidents. Covers technical containment, forensic investigations, and the coordination of legal and communications teams to meet regulatory notification deadlines.
Vulnerabilities
Progress closes the ShareFile emergency with a confirmed zero-day and shipped fix — Storage Zones Controller customers apply and restore this week.
Cybersecurity 101
A clear guide to cyber resilience — how it goes beyond cybersecurity, the four pillars, the key practices, and the frameworks organizations use to build it.
Cybersecurity 101
A clear guide to digital forensics — the branches, the investigative process, chain of custody, and how forensics supports incident response and prosecutions.
Data Breaches
The UN World Food Programme says its self-registration application for Palestine was breached, exposing names, ID and mobile numbers and location data for roughly 600,000 Gaza households — potentially the largest-known breach of humanitarian beneficiary data to date.
Cybersecurity 101
A clear guide to incident response plans — what they are, why every organization needs one, what they should contain, and how to build, test, and maintain one.
Cybersecurity 101
A complete guide to incident response — the six-phase lifecycle, the response team, plans and playbooks, frameworks, and the practices that limit breach damage.
Cyber Attacks
An Iranian state-sponsored APT spent early 2026 conducting espionage while wearing the Chaos ransomware brand as a costume. Rapid7 pulled back the curtain. The Microsoft Teams screen-sharing tradecraft is why IR triage needs updating.
Critical Infrastructure
West Pharmaceutical Services disclosed a disruptive ransomware attack via SEC Form 8-K on May 7, took global systems offline, and engaged Palo Alto Unit 42. The pharma-packaging CI adjacency just became a documented sector risk.
Critical Infrastructure
The ICO fined South Staffordshire Water nearly GBP 1 million over a Cl0p attack that exposed 633,887 records. Hackers sat undetected for 20 months. Only 5 percent of the IT environment was monitored.
Trending
A deep-dive investigation by ESET Research reveals that prominent threat actors, including RansomHub, are expanding their toolkit of specialized malware designed to disable Endpoint Detection and Response (EDR) agents. BRATISLAVA, Slovakia — Security researchers at ESET have issued a comprehensive warning regarding the professionalization of "EDR Killers" — malicious
Cyber Analysis
As ransomware becomes a structured extortion economy, a new class of specialist is emerging — one whose most powerful tool isn't code. It's conversation. When MGM Resorts was hit by a ransomware attack in September 2023, the company made a decision that cost it an estimated $100
Supply Chain Attack
A breach at the cloud-cost monitoring firm Anodot has emerged as the "patient zero" for a series of high-profile data thefts, highlighting the extreme risk of third-party integrations with elevated cloud permissions. RA'ANANA, Israel — Anodot, a prominent SaaS platform specializing in AI-driven