%term

New RMM Abuse Exposes Remote Access Blind Spots in U.S. and EU Companies

May 6, 2026 By SecuritySenses In SecuritySenses

Can your SOC prove when a trusted remote access tool becomes unauthorized access? That is the challenge behind the latest RMM abuse targeting companies in the U.S. and Europe. Attackers are using phishing pages to deliver legitimate remote access software, making malicious activity look like routine IT work. For CISOs, the risk is clear: if the team cannot see how the tool entered the environment, what executed, and where the connection went next, containment slows down and business exposure grows.

Read Post

SecuritySenses

Read more about New RMM Abuse Exposes Remote Access Blind Spots in U.S. and EU Companies

How Telecom Operators Can Secure OSS/BSS Stacks

May 6, 2026 By SecuritySenses In SecuritySenses

Telecom security conversations still orbit around the network. Firewalls, signaling protection, DDoS mitigation-those get budget and attention. Meanwhile, the systems that handle billing, subscriptions, and customer data often sit in the background, treated as operational plumbing rather than a primary risk surface.

Read Post

SecuritySenses

Read more about How Telecom Operators Can Secure OSS/BSS Stacks

The UK Government's Open Letter on AI Cyber Threats Underscores the Need for Measurable Security

May 5, 2026 By Greg Keshian In BitSight

A recent open letter from the UK government on AI-driven cyber threats highlights a clear shift in the threat landscape. Cyberattacks are no longer constrained in the same way by human expertise, as advanced AI models can now help identify vulnerabilities, generate exploit code, and increase the speed and scale of attacks.

Read Post

BitSight

Read more about The UK Government's Open Letter on AI Cyber Threats Underscores the Need for Measurable Security

Payment Infrastructure Is Now Part of the Attack Surface

May 5, 2026 By SecuritySenses In SecuritySenses

Every payment creates a moment of trust. A customer enters card details, a gateway approves or rejects the transaction, fraud checks run in the background, and sensitive data moves between systems in seconds. When that process works, it feels invisible. When it fails, the damage can reach far beyond a lost sale.

Read Post

SecuritySenses

Read more about Payment Infrastructure Is Now Part of the Attack Surface

PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

May 3, 2026 By Tom Abai In Mend

Mend’s security research team has identified a previously undocumented fifth wave of the PhantomRaven campaign, an ongoing NPM supply chain attack that has been stealing developer credentials and secrets since August 2025. This new wave uses a fresh command-and-control server, 33 new malicious packages, and a more sophisticated three-stage payload chain.

Read Post

Mend

Read more about PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

How to Stop Digital Impersonation Attacks: Why Email Authentication Alone Isn't Enough

May 1, 2026 By Ezra M. In Memcyco

Phishing reports and customer complaints are not early warning signals. By the time they arrive, attackers have already built the infrastructure. Lookalike domains are live, credential harvesting pages are indexed, and the exposure window is open. To stop digital impersonation attacks, organizations need to shift detection to the infrastructure preparation stage, before distribution begins.

Read Post

Memcyco

Read more about How to Stop Digital Impersonation Attacks: Why Email Authentication Alone Isn't Enough

Alert: Payroll-Hijacking Attacks Are Targeting Canadian Employees

May 1, 2026 By KnowBe4 Team In KnowBe4

Microsoft warns that a new criminal threat actor dubbed “Storm-2755” is launching payroll-pirate attacks against Canadian users. These attacks use social engineering to compromise employee accounts and divert salary payments to attacker-controlled bank accounts.

Read Post

KnowBe4

Read more about Alert: Payroll-Hijacking Attacks Are Targeting Canadian Employees

Turning Attackers into Signals: How Deception is Redefining Threat Detection | Fidelis Security

Apr 30, 2026 By Fidelis Security In Fidelis Security

Traditional detection methods are struggling to keep up with modern threats. What if you could turn attackers into your strongest signal? In this session, our Sales Engineer Jim breaks down how deception technology is transforming cybersecurity by: Delivering high-fidelity alerts with minimal noise Adapting dynamically to attacker behavior Extending protection to IoT and non-standard devices Scaling seamlessly across enterprise environments.

View Video

Fidelis Security

Read more about Turning Attackers into Signals: How Deception is Redefining Threat Detection | Fidelis Security

CyberPhysical Security: Protecting the Modern EV Charging Perimeter

Apr 30, 2026 By SecuritySenses In SecuritySenses

Electric vehicles have crossed from niche technology into mainstream infrastructure. Charging networks now form a critical layer of both the energy grid and the transportation system, and attackers have noticed. EV charging sits at a three-way intersection of cloud software, operational technology, and automotive systems. Each domain has its own threat model, its own tooling, and its own team assuming someone else owns the risk. That gap is where adversaries operate.

Read Post

SecuritySenses

Read more about CyberPhysical Security: Protecting the Modern EV Charging Perimeter

Inside the Hidden VM: How Attackers Stay Undetected

Apr 29, 2026 By Sophos In Sophos

Threat actors are getting better at hiding in plain sight through using virtual environments to evade detection and deliver ransomware. New research from Sophos X-Ops reveals an increase in the abuse of QEMU, an open-source emulator, to conceal malicious activity inside virtual machines. While this technique isn’t new, its use for defense evasion is accelerating, making visibility and detection even more challenging for defenders.

View Video