Category: Security
Threat Spotlight: Half the spam in your inbox is generated by AI
Cyber attackers are leveraging the power of artificial intelligence (AI) to boost their chances of success in email-based attacks. AI tools can help them to develop and launch more attacks, more frequently, and to make these attacks more evasive, convincing,...
Cybersecurity Threat Advisory: Critical Grafana vulnerability
A newly disclosed Grafana vulnerability puts thousands of monitoring systems at risk of compromise through a simple malicious link. Review this Cybersecurity Threat Advisory to secure your environment. What is the threat? To exploit CVE-2025-4123, multiple conditions must be met....
Cybersecurity Threat Advisory: Critical Veeam vulnerability
Veeam has released security patches to address a critical vulnerability in its Backup & Replication software, identified as CVE-2025-23121. The flaw allows unauthenticated remote attackers to execute arbitrary code under certain conditions. Review the details of this Cybersecurity Threat Advisory...
Cybersecurity Threat Advisory: TP-Link and Zyxel devices targeted
Two vulnerabilities are actively targeted by threat actors for exploits, CVE-2023-33538, affects TP-Link routers, and CVE-2023-28771, affects Zyxel firewalls. Review this Cybersecurity Threat Advisory to help mitigate the risk of attackers targeting these vulnerabilities. What is the threat? CVE-2023-33538...
Unraveling the cybersecurity risks of LLMs
As language learning models (LLMs) become more prevalent, the cyber dangers posed by DeepSeek, ChatGPT, Claude, and others are just beginning to be understood. Jacob Anderson, owner of Beyond Ordinary, states that cyber personnel are overworked and continue to have...
Email Threat Radar – June 2025
In this edition of the Email Threat Radar, we see how during May, threat analysts identified several notable email-based threats targeting organizations around the world and designed to evade detection and boost the chances of success, including: The EvilProxy phishing...
Cybersecurity Threat Advisory: Wazuh servers targeted to launch Mirai attacks
Threat actors are actively targeting Wazuh servers running software version 4.4.0 by exploiting a vulnerability that enables them to install Mirai botnets. These botnets facilitate distributed denial of service (DDoS) attacks against victims and execute malicious payloads on the compromised...
Cybersecurity Threat Advisory: Critical Fortinet vulnerability exploited by Qilin ransomware
The Qilin ransomware group is exploiting two critical Fortinet vulnerabilities that allow attackers to bypass authentication and execute remote code on vulnerable systems. Read this Cybersecurity Threat Advisory to discover the tactics used and the best practices you can implement...
Email scams: A year-round challenge for businesses of all sizes
In today’s rapidly changing digital landscape, businesses and consumers face a constant stream of cyberthreats – not just during peak periods like tax season, back-to-school, and holiday shopping, but all year. In fact, according to Barracuda’s 2025 Email Threats Report,...
Cybersecurity Threat Advisory: Critical Cisco ISE vulnerability
The Cisco Identity Services Engine (ISE) has a critical vulnerability, CVE-2025-20286, with a CVSS score of 9.9 out of 10. If successfully exploited, threat actors can gain privileged access without authentication and perform unauthorized operations on vulnerable systems. Read this...
