Year: 2025

A ransomware gang exploited the critical React2Shell vulnerability (CVE-2025-55182) to gain initial access to corporate networks and...

A novel attack technique dubbed ”Lies-in-the-Loop” (LITL) has been observed manipulating human approval prompts in agentic AI...

The Russian state-sponsored threat actor known as APT28 has been attributed to what has been described as...

ISACA has been appointed by the US DoD as the global credentialing authority for its CMMC program

Passwords and app-based MFA add hidden costs through lost productivity, frequent resets, and risk of phishing and...