-
The Real-World Attacks Behind OWASP Agentic AI Top 10
OWASP's new Agentic AI Top 10 highlights real-world attacks already targeting autonomous AI systems, from goal hijacking to malicious MCP servers. Koi Security breaks down real-world incidents behind multiple categories, including two cases cited by OWASP, showing how agent tools and runtime behavior are being abused.
- December 29, 2025
- 10:00 AM
0
-
Your cybersecurity skills start with 18 courses for just $33
If improving your skills is on your radar this year, this is an easy (and affordable) way to do it. The All-in-One Super-Sized Ethical Hacking Bundle packs 18 in-depth cybersecurity courses—typically worth $1,098—into a single $32.97 deal for a limited time.
- December 25, 2025
- 08:11 AM
0
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Coupang breach affecting 33.7 million users raises data protection questions
Coupang disclosed a data breach affecting 33.7 million customers after unauthorized access to personal data went undetected for nearly five months. Penta Security explains how the incident highlights insider credential abuse risks and why encrypting customer data beyond legal requirements can reduce exposure and limit damage.
- December 22, 2025
- 09:00 AM
- 0
-
Criminal IP and Palo Alto Networks Cortex XSOAR integrate to bring AI-driven exposure intelligence to automated incident response
Criminal IP (criminalip.io), the AI-powered threat intelligence and attack surface monitoring platform developed by AI SPERA, is now officially integrated into Palo Alto Networks' Cortex XSOAR.
- December 19, 2025
- 09:30 AM
- 0
-
NIS2 compliance: How to get passwords and MFA right
NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk. Specops Software explains how to align password policies and MFA with NIS2 requirements.
- December 18, 2025
- 10:01 AM
- 0
-
Your MFA Is Costing You Millions. It Doesn't Have To.
Passwords and app-based MFA add hidden costs through lost productivity, frequent resets, and risk of phishing and social engineering attacks. Token explains how wireless biometric, passwordless authentication eliminates credential-based attacks and delivers measurable financial returns by reducing login time across the enterprise.
- December 17, 2025
- 09:00 AM
- 0
-
The Hidden Risk in Virtualization: Why Hypervisors are a Ransomware Magnet
Ransomware groups are targeting hypervisors to maximize impact, allowing a single breach to encrypt dozens of virtual machines at once. Drawing on real-world incident data, Huntress explains how attackers exploit visibility gaps at the hypervisor layer and outlines steps orgs can take to harden virtualization infrastructure.
- December 16, 2025
- 10:01 AM
- 0
-
2025’s Top Phishing Trends and What They Mean for Your Security Strategy
Phishing attacks in 2025 increasingly moved beyond email, with attackers using social platforms, search ads, and browser-based techniques to bypass MFA and steal sessions. Push Security outlines key phishing trends and what security teams must know as identity-based attacks continue to evolve in 2026.
- December 15, 2025
- 10:05 AM
- 0
-
Kali Linux 2025.4 released with 3 new tools, desktop updates
Kali Linux has released version 2025.4, its final update of the year, introducing three new hacking tools, desktop environment improvements, the preview of Wifipumpkin3 in NetHunter, and enhanced Wayland support.
- December 12, 2025
- 10:27 AM
- 0
-
Shadow spreadsheets: The security gap your tools can’t see
When official systems can't support everyday workflows, employees turn to spreadsheets — creating "shadow spreadsheets" that circulate unchecked. Grist shows how these spreadsheets expose sensitive data, create version sprawl, and remove the audit trails security teams depend on.
- December 12, 2025
- 10:01 AM
- 0
-
AI is accelerating cyberattacks. Is your network prepared?
AI-driven attacks now automate reconnaissance, generate malware variants, and evade detection at a speed that overwhelms traditional defenses. Corelight explains how network detection and response (NDR) provides the visibility and behavioral insights SOC teams need to spot and stop these fast-moving threats.
- December 11, 2025
- 10:05 AM
- 0
-
Why a secure software development life cycle is critical for manufacturers
Recent supply-chain breaches show how attackers exploit development tools, compromised credentials, and malicious NPM packages to infiltrate manufacturing and production environments. Acronis explains why secure software development life cycle (SSDLC) practices are now critical for evaluating partners and protecting systems.
- December 10, 2025
- 10:00 AM
- 0
-
Maintaining enterprise IT hygiene using Wazuh SIEM/XDR
Poor IT hygiene, such as unused accounts, outdated software, and risky extensions, creates hidden exposure in your infrastructure. Wazuh, the open-source XDR and SIEM, shows how continuous inventory monitoring across endpoints helps teams spot drift and tighten security.
- December 09, 2025
- 12:09 PM
- 0
-
How Agentic BAS AI Turns Threat Headlines Into Defense Strategies
Picus Security explains why relying on LLM-generated attack scripts is risky and how an agentic approach maps real threat intel to safe, validated TTPs. Their breakdown shows how teams can turn headline threats into reliable defense checks without unsafe automation.
- December 08, 2025
- 10:02 AM
- 0
-
A Practical Guide to Continuous Attack Surface Visibility
Passive scan data goes stale fast as cloud assets shift daily, leaving teams blind to real exposures. Sprocket Security shows how continuous, automated recon gives accurate, up-to-date attack surface visibility.
- December 05, 2025
- 10:00 AM
- 0
-
InfoSec4TC lifetime cybersecurity training is now $53 in this deal
InfoSec4TC offers a workaround. Their Platinum Membership unlocks lifelong access to a massive catalog of cybersecurity courses and exam prep, including all current and future courses and programs. And for a limited time, you can get it for $52.97, instead of the usual $280.
- December 05, 2025
- 07:11 AM
- 0
-
Create compliance docs with this $40 governance & cybersecurity bundle
Get the Ultimate ISO & Cybersecurity Toolkit Mega Pack, a complete set of 168 templates designed to help organizations quickly align with major international standards.
- December 04, 2025
- 02:06 PM
- 0
-
How strong password policies secure OT systems against cyber threats
OT environments rely on aging systems, shared accounts, and remote access, making weak or reused passwords a major attack vector. Specops Software explains how stronger password policies and continuous checks for compromised credentials help secure critical OT infrastructure.
- December 04, 2025
- 10:11 AM
- 0
-
Marquis data breach impacts over 74 US banks, credit unions
Financial software provider Marquis Software Solutions is warning that it suffered a data breach that impacted dozens of banks and credit unions across the US.
- December 03, 2025
- 05:06 PM
- 1
-
Deep dive into DragonForce ransomware and its Scattered Spider connection
DragonForce expanded its ransomware operation in 2025 by working with English-speaking hackers known for advanced social engineering and initial access. Acronis explains how the "Scattered Spider" collaboration enables coordinated, multistage intrusions across major environments.
- December 03, 2025
- 10:05 AM
- 0
0
