Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Hybrid 2FA phishing threatens enterprises, RomCom uses SocGholish to deploy Mythic Agent malware, and MuddyWater targets critical infrastructure with evolving tactics.

Windows patch management is the practice of deploying and managing feature updates, bug fixes, and security patches at scale for Windows operating systems and applications. These updates go beyond adding new features, acting as critical safeguards that address vulnerabilities attackers commonly target.

Whisper Leak targets remote language models, @acitons/artifact targets GitHub Actions users, and Quantum Route Redirect simplifies phishing.

Converge 2025 keynotes opened with a clear message: resilience isn’t enough in an era of complexity and AI-driven threats. Here’s how Tanium and its customers are shaping the future of Autonomous IT.

Actors exploit RMM tools to target trucking and logistics companies, SesameOp uses the OpenAI Assistants API for C2 communications, and Google warns of rising adversary AI adoption in 2026.

DragonForce expands its reach, Qilin rises as a global ransomware threat, and Water Saci spreads through WhatsApp.

Vulnerability scanning identifies weaknesses across systems, applications, and networks to help organizations reduce exposure and stay ahead of threats.

Famous Chollima combines BeaverTail and OtterCookie, COLDRIVER deploys three new malware families, and Vidar Stealer 2.0 demonstrates upgraded capabilities.

Astaroth trojan uses GitHub to host malware configurations, TA585 delivers MonsterV2 malware in phishing campaigns, and threat actors exploit Microsoft’s logo in tech support scams.