top of page
.png){kind=logo}
F5 BIG-IP Breach 2025: Nation-State Attack Exposes Source Code and Undisclosed Vulnerabilities
Executive Summary On October 15, 2025, F5 publicly disclosed a significant cybersecurity breach involving a nation-state actor who gained persistent access to its internal development and engineering knowledge management systems. The breach, first detected on August 9, 2025, resulted in the exfiltration of files containing portions of BIG-IP source code, information on undisclosed vulnerabilities, and configuration or implementation data for a limited number of customers. I
Oct 15, 20255 min read
Attackers Season Spam With a Touch of 'Salt' to Bypass Microsoft 365 and Google Workspace Email Security
Executive Summary The "Attackers Season Spam With a Touch of 'Salt'" campaign represents a sophisticated evolution in spam and phishing...
Oct 8, 20255 min read
BatShadow Group Exploits Windows Systems with New Go-Based Vampire Bot Malware Targeting Job Seekers and Digital Marketers
Rescana Threat Intelligence Report BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers Date: October 7, 2025...
Oct 8, 20255 min read
Asahi Group Holdings Ransomware Attack 2025: Digital Order System Disrupted, Nationwide Beer Shortage in Japan
Executive Summary On September 29, 2025, Asahi Group Holdings experienced a significant ransomware attack that severely disrupted its...
Oct 8, 20256 min read
BK Technologies IT Systems Breach: Employee Data Compromised in Public Safety Communications Cyberattack (2025)
Executive Summary On September 20, 2025, BK Technologies , a provider of communications equipment for public safety and government...
Oct 8, 20256 min read
DraftKings Account Breaches: Credential Stuffing Attacks Expose Customer Data and Financial Risks
Executive Summary DraftKings, a leading sports betting and daily fantasy sports provider, has experienced multiple waves of account...
Oct 8, 20257 min read
SORVEPOTEL Malware: Comprehensive Analysis of Self-Spreading WhatsApp Threat Targeting Windows Systems
Executive Summary Publication Date: October 2025 Researchers have identified a sophisticated, self-propagating malware campaign named...
Oct 5, 20255 min read
Scattered Lapsus$ Hunters Launch Data Leak Site Targeting Salesforce: Massive OAuth Supply Chain Breach Exposes 1 Billion Records
Executive Summary On October 3, 2025, a coalition of threat actors known as Scattered Lapsus$ Hunters —comprising members of the...
Oct 5, 20257 min read
Discord Zendesk Data Breach 2025: Support Ticket System Compromised by Scattered Lapsus$ Hunters
Executive Summary On September 20, 2025, Discord disclosed a data breach resulting from the compromise of a third-party customer service...
Oct 5, 20256 min read
Taldor Cyber Attack : In-Depth Analysis of Advanced Malware Intrusion in Industrial Systems
Executive Summary On 30 September 2024, Taldor Cyber & Security was the target of a significant cyberattack, as reported by PC.co.il...
Sep 30, 20254 min read
Gcore Radar Report 2025: Gaming Platforms Under Siege from Sophisticated DDoS Attacks
Executive Summary The recent Gcore radar report highlights a significant shift where the gaming industry has overtaken traditional...
Sep 25, 20253 min read
Microsoft Announces Free Windows 10 Security Updates in Europe for Legacy System Protection
Executive Summary Microsoft’s recent initiative to offer free Windows 10 security updates in Europe marks a significant evolution in how...
Sep 25, 20252 min read
Feds Tie Scattered Spider Duo to $115M in Ransoms: Legacy System Exploits in Municipal and Financial Networks Uncovered
Executive Summary Publication Date: September 24, 2025 This report provides a detailed, evidence-based analysis of the recent incident...
Sep 25, 20259 min read
North Korean Hackers Exploit AkdoorTea Backdoor to Target CryptoDev Toolkit – Comprehensive Cybersecurity Report
Executive Summary In recent months, intelligence sources have observed a sophisticated and concerning evolution in cyber tactics,...
Sep 25, 20257 min read
In-Depth Analysis: Supply Chain Poisoning of Popular npm Packages Exploiting event-stream, ua-parser-js, and More
Executive Summary In recent months, security researchers have observed a sophisticated supply chain attack targeting highly popular npm ...
Sep 14, 20257 min read
US Offers $10M Reward for Ukrainian Ransomware Operator Targeting Critical Infrastructure Systems
Executive Summary Publication Date: Oeptember 10, 2025 In an unprecedented effort to counter the rapid evolution of cyber threats and to...
Sep 10, 20256 min read
Fortinet FortiGate, Ivanti Connect Secure, and Nvidia GPU Driver Security Updates: In-Depth Vulnerability Exploitation and Mitigation Analysis
Executive Summary In recent weeks, major industry players have taken proactive measures to secure their networks by releasing critical...
Sep 10, 20257 min read
Mitigating CVE-2025-54236: Addressing Adobe Commerce's Critical Input Sanitization Flaw for Customer Account Hijacking
Executive Summary The recent discovery of CVE-2025-54236 in Adobe Commerce has unveiled a sophisticated vulnerability that allows...
Sep 10, 20257 min read
NPM Supply Chain Attack: In-Depth Analysis of the Whimper Exploit on Debug and Chalk Packages
Executive Summary Publication Date: September 8, 2025. The incident, dubbed the Whimper Attack , involved a significant breach in the npm...
Sep 10, 20256 min read
Critical SAP NetWeaver (CVSS 10) and SAP S/4HANA Vulnerabilities: APT Exploitation and Urgent Patching Strategies
Executive Summary Recent threat intelligence highlights the alarming exploitation of critical vulnerabilities within SAP NetWeaver and...
Sep 10, 20257 min read
bottom of page