Log Horizon connects to your Microsoft Sentinel workspace (and optionally Defender XDR), goes through every log table you’re ingesting, and tells you whether you’re getting security value from it or just burning money. It classifies...
The video hosting vanguard Vimeo has disclosed a security transgression impacting its user repository, precipitated by a compromise of the third-party analytics provider Anodot—a service utilized by a vast array of global enterprises. According...
The seemingly mundane git push command has emerged as a significantly more treacherous vector than conventionally presumed. A critical vulnerability was unearthed within the GitHub infrastructure, transmuting a routine code operation into a potent...
MAPS Cloud Scanner A research tool for interacting with Windows Defender’s MAPS (Microsoft Active Protection Service) cloud-based file reputation and dynamic signature delivery system. MAPS is the cloud backend that powers Defender’s real-time protection verdicts, sample...
Checkmarx is grappling with a distressing sequel to its March security breach, as data exfiltrated from a private GitHub repository has surfaced in the possession of the LAPSUS$ collective. The organization posits that the...
Corporate correspondence has once again emerged as a convenient portal for adversaries. In this nascent campaign, the assailants eschew direct “forced entry,” choosing instead to orchestrate a familiar professional complication for employees and promptly...
The GlassWorm campaign has resurfaced within the developer community, though the adversaries have adopted a more surreptitious operational profile. Rather than disseminating overtly malicious extensions via OpenVSX, they initially publish innocuous facsimiles of popular...
The ubiquitous Python library elementary-data has emerged as a conduit for the exfiltration of sensitive developer telemetry. The compromised iteration infiltrated not only the PyPI repository but also the project’s official Docker images, causing...
A clandestine Android dropper, masquerading as a mundane PDF reader, has once again infiltrated the Google Play Store. While the application appeared to function as advertised—seamlessly opening documents without initially arousing suspicion—it harbored the...
The cryptocurrency landscape has received yet another ominous signal as adversaries successfully breached yet another DeFi platform, leaving users to await an investigation only after the capital had already been exfiltrated from the protocol....