Author: Robbie
How Attackers Abuse Cloud Logging Services to Evade Detection
Unit 42 researchers outline five techniques adversaries use to manipulate AWS CloudTrail and Google Cloud Logging, turning essential security infrastructure into a…
CISA Warns of Two High-Severity Flaws in AzeoTech DAQFactory
CISA has published an updated advisory detailing two memory-corruption vulnerabilities in AzeoTech DAQFactory that allow arbitrary code execution via malicious control files.
Critical Path Traversal Flaw in pynetdicom Threatens Healthcare Systems
A critical path traversal vulnerability in the pynetdicom library allows unauthenticated attackers to write files to arbitrary locations, affecting all versions from…
Researchers Link Ransomware Group ‘The Gentlemen’ to Izhevsk Man
Intelligence trails connecting forum handles, leaked databases, and open-source lookups point to a named Russian individual as the administrator behind one of…
Mitsubishi MELSEC iQ-F EtherNet/IP Module Vulnerable to Remote DoS
An integer overflow flaw in the FX5-EIP module allows unauthenticated remote attackers to crash the device by flooding it with TCP connections.…
CISA Flags Two High-Severity Flaws in H.VIEW HV-500S6 IP Camera
A pair of vulnerabilities in H.VIEW's HV-500S6 IP camera allow authenticated attackers to execute arbitrary commands and upload malicious files. The vendor…
AI Agent Skills Need Supply-Chain Audits, Unit 42 Research Finds
A new audit primitive called Behavioral Integrity Verification scanned nearly 50,000 agent skills and found that 80 percent deviate from their declared…
AI-Driven Vuln Discovery Has Outpaced Human Patching, Talos Warns
Cisco Talos researcher Yuri Kramarz argues that frontier AI models can autonomously find and exploit zero-days in minutes, collapsing the traditional vulnerability…
New macOS Tahoe 26 Biome Stream Logs Every Menu Selection Users Make
Unit 42 researchers have identified a previously undocumented macOS artifact, App.MenuItem, that records granular user menu interactions and can help forensic examiners…
Bucket Squatting Flaw in Vertex AI Python SDK Enabled Cross-Tenant RCE
A now-patched vulnerability in Google Cloud's Vertex AI Python SDK allowed an attacker with no access to a victim's project to hijack…
Cisco Talos Shows How AI Agents Can Drive a Disassembler via COM
A new technique from Cisco Talos demonstrates that reverse engineering tools do not need built-in AI features to support agentic workflows. By…
Popa Android Botnet Tied to Publicly Traded Israeli Proxy Firm
Researchers from multiple security firms have linked the Popa botnet, which routes traffic through millions of compromised TV boxes, to NetNut, a…