Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

If vulnerabilities were a currency, they’d be inflating faster than anything else in the world. According to Astra’s State of Continuous Pentesting Report, 5.33 new ones are discovered every minute, i.e., by the time you’ve finished this paragraph, dozens more doors have swung open for attackers.

AI Risk & Governance Sam Soares CRO 31 October 2025 5 min read Share.

Rate this post Last Updated on October 31, 2025 by Narendra Sahoo NIS2 doesn’t test your paperwork. It tests your readiness — that starts long before the audit. When there’s an audit, an auditor doesn’t just check how neat your policies look — we check how your systems behave when no one’s watching.

Around the world, banks and payment processors are reporting an explosion of mysterious tap-to-pay transactions happening nowhere near real cardholders. The European Association for Secure Transactions (EAST), for instance, has tracked a 1,500% surge in these relay-based attacks over the past year, with incidents stretching from Santiago to Singapore.

Welcome to The researcher’s desk – a content series where the Detectify security research team will conduct a technical autopsy on vulnerabilities that are particularly interesting, complex, or persistent. The goal here is not to report the latest research (for which you can refer to the Detectify release log); it is to take a closer look at certain vulnerabilities, regardless of their disclosure date, that still offer critical lessons.

Learn how GitGuardian supports expanding privileged access management to include non-human identities and improve secrets management across your infrastructure and vaults.

Credential abuse occurs when cybercriminals use stolen or leaked credentials to gain unauthorized access to online accounts and critical systems. As part of broader cyber attacks, credential abuse is a highly effective attack vector, especially when many people reuse the same password across multiple accounts. Credential abuse can lead to data breaches, identity theft, financial loss and lasting reputational damage for both individuals and organizations.

The European Union (EU) is redefining its digital landscape with sovereignty, security and trust at the core. In the 2025 EU State of the Union, Commission President Ursula von der Leyen outlined a bold vision: sovereignty, resilience, data protection and digital identity. These priorities reflect a reality where security, privacy and accountability are not only regulatory demands but also competitive advantages.

Organizations are moving from traditional workstations to advanced, mobile-based solutions. Hybrid working mode is on the rise, and with that, the role of phones and tablets becomes more important. Individuals now work from any location on their mobile devices. But the convenience of working on phones and tablets can turn into a serious security risk if there is no mechanism in place for securing data. This is where tools like MCM clients fill the gap.

Recharging the battery of phones, tablets, or laptops in public places such as airports, stations, hotels, or cafés is quite normal and convenient. Everybody does it while traveling or working on the go. Most of these charging points rely on USB ports, which not only deliver power but also support data transfer. In recent years, cybersecurity authorities such as the FBI and the Federal Communications Commission (FCC) have warned users about a rising cyber threat known as juice jacking.