General News - Rescana Blog

Infosecurity Europe 2024 Key Findings: AI-Driven Cyber Threats, MFA Bypass, and Supply Chain Vulnerabilities Impacting Microsoft 365, Google Workspace, and Okta

Infosecurity Europe 2024 Key Findings: AI-Driven Cyber Threats, MFA Bypass, and Supply Chain Vulnerabilities Impacting Microsoft 365, Google Workspace, and Okta

May 25, 2026 Read →

Locked Shields 2026: 41 Nations Defend Critical Infrastructure in NATO’s Largest Live-Fire Cybersecurity Exercise

Locked Shields 2026: 41 Nations Defend Critical Infrastructure in NATO’s Largest Live-Fire Cybersecurity Exercise

Apr 26, 2026 Read →

For retailers: Suppliers of POS, OMS and CRM systems are not ‘Third Party’, they are actually ‘Teammates’

For retailers: Suppliers of POS, OMS and CRM systems are not ‘Third Party’, they are actually ‘Teammates’

Mar 26, 2026 Read →

Digital Frontlines: The Infrastructure Realities of the 2026 Iran Conflict

Digital Frontlines: The Infrastructure Realities of the 2026 Iran Conflict

Mar 10, 2026 Read →

Iran’s Cyberwar Has Begun: Targeted Attacks on Israeli and Unitronics ICS/OT Systems, Threat Intelligence and Mitigation Insights (2026)

Iran’s Cyberwar Has Begun: Targeted Attacks on Israeli and Unitronics ICS/OT Systems, Threat Intelligence and Mitigation Insights (2026)

Mar 4, 2026 Read →

ThreatsDay Bulletin: BIND 9 DNS Poisoning (CVE-2025-40778), NPM Supply-Chain Attack, Rust Malware, and Emerging RATs Targeting Modern Infrastructure

ThreatsDay Bulletin: BIND 9 DNS Poisoning (CVE-2025-40778), NPM Supply-Chain Attack, Rust Malware, and Emerging RATs Targeting Modern Infrastructure

Oct 30, 2025 Read →

PhantomRaven Supply Chain Attack: 126 Malicious npm Packages Stealing GitHub Tokens and CI/CD Secrets

PhantomRaven Supply Chain Attack: 126 Malicious npm Packages Stealing GitHub Tokens and CI/CD Secrets

Oct 30, 2025 Read →

LinkedIn Phishing Attack Exploits Microsoft 365 Accounts to Target Finance Executives with Fake Board Invites

LinkedIn Phishing Attack Exploits Microsoft 365 Accounts to Target Finance Executives with Fake Board Invites

Oct 30, 2025 Read →

Conduent Business Solutions Data Breach (2024-2025): Over 10.5 Million Affected Across Healthcare, Government, and Insurance Systems

Conduent Business Solutions Data Breach (2024-2025): Over 10.5 Million Affected Across Healthcare, Government, and Insurance Systems

Oct 30, 2025 Read →

Canadian Critical Infrastructure Hack: Hacktivists Tamper With ICS at Water, Oil, and Agriculture Facilities

Canadian Critical Infrastructure Hack: Hacktivists Tamper With ICS at Water, Oil, and Agriculture Facilities

Oct 30, 2025 Read →

Brash Exploit: Critical Chromium Browser Zero-Day Enables Instant DoS via Malicious URL

Brash Exploit: Critical Chromium Browser Zero-Day Enables Instant DoS via Malicious URL

Oct 30, 2025 Read →

AdaptixC2 Under Fire: Russian Ransomware Gangs Weaponize Open-Source C2 Framework for Advanced Attacks

AdaptixC2 Under Fire: Russian Ransomware Gangs Weaponize Open-Source C2 Framework for Advanced Attacks

Oct 30, 2025 Read →

SonicWall SSL VPN Vulnerability Exploited by Akira Ransomware: Comprehensive Analysis of Misconfigurations and Critical Exploits

SonicWall SSL VPN Vulnerability Exploited by Akira Ransomware: Comprehensive Analysis of Misconfigurations and Critical Exploits

Sep 11, 2025 Read →

Sangoma Patches Critical FreePBX Zero-Day Vulnerability Exploited by Hackers – In-Depth Cybersecurity Report

Sangoma Patches Critical FreePBX Zero-Day Vulnerability Exploited by Hackers – In-Depth Cybersecurity Report

Sep 3, 2025 Read →

Salesloft Drift Supply Chain Attack Exposes Zscaler & Palo Alto Networks: Technical Analysis and Mitigation Strategies

Salesloft Drift Supply Chain Attack Exposes Zscaler & Palo Alto Networks: Technical Analysis and Mitigation Strategies

Sep 3, 2025 Read →

MystRodX Backdoor Exploits DNS and ICMP to Compromise NetGear ProSafe Series Networks

MystRodX Backdoor Exploits DNS and ICMP to Compromise NetGear ProSafe Series Networks

Sep 3, 2025 Read →

Lazarus Group Expands Malware Arsenal with PondRAT, ThemeForestRAT, and RemotePE: Threat Analysis on Microsoft Windows and CMS Platforms

Lazarus Group Expands Malware Arsenal with PondRAT, ThemeForestRAT, and RemotePE: Threat Analysis on Microsoft Windows and CMS Platforms

Sep 3, 2025 Read →

In-Depth Analysis of TP-Link Firmware and WhatsApp Vulnerabilities Added to the CISA KEV Catalog

In-Depth Analysis of TP-Link Firmware and WhatsApp Vulnerabilities Added to the CISA KEV Catalog

Sep 3, 2025 Read →

Cloudflare Supply Chain Attack: In-Depth Analysis of the Salesloft Drift Compromise Impacting API Credentials

Cloudflare Supply Chain Attack: In-Depth Analysis of the Salesloft Drift Compromise Impacting API Credentials

Sep 3, 2025 Read →

S1ngularity Supply Chain Attack on Nx Build System: In-Depth Analysis & Mitigation Strategies

S1ngularity Supply Chain Attack on Nx Build System: In-Depth Analysis & Mitigation Strategies

Aug 28, 2025 Read →

Rescana Research: In-Depth Analysis of the First AI-Powered Ransomware Leveraging OpenAI's gpt-oss:20b Model

Rescana Research: In-Depth Analysis of the First AI-Powered Ransomware Leveraging OpenAI's gpt-oss:20b Model

Aug 28, 2025 Read →

Comprehensive Cybersecurity Analysis: Google-Salesforce Attacks via Third-Party App Vulnerabilities

Comprehensive Cybersecurity Analysis: Google-Salesforce Attacks via Third-Party App Vulnerabilities

Aug 28, 2025 Read →

DPRK and China Suspected in Hybrid Cyber-Physical Attack on South Korean Embassy’s Diplomatic Communication System

DPRK and China Suspected in Hybrid Cyber-Physical Attack on South Korean Embassy’s Diplomatic Communication System

Aug 21, 2025 Read →

CVE-2025-43300: Critical Apple Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks – Urgent Patch and Mitigation Strategies

CVE-2025-43300: Critical Apple Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks – Urgent Patch and Mitigation Strategies

Aug 21, 2025 Read →