Blog – Page 2 – VigilantAI

August 21, 2025
No Comments

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

August 21, 2025
No Comments

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

August 20, 2025
No Comments

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

August 20, 2025
No Comments

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

August 20, 2025
No Comments

Experts Find AI Browsers Can Be Tricked by PromptFix Exploit to Run Malicious Hidden Prompts

August 20, 2025
No Comments

🕵️ Webinar: Discover and Control Shadow AI Agents in Your Enterprise Before Hackers Do

August 20, 2025
No Comments

From Impact to Action: Turning BIA Insights Into Resilient Recovery

August 20, 2025
No Comments

North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms

August 20, 2025
No Comments

DOJ Charges 22-Year-Old for Running RapperBot Botnet Behind 370,000 DDoS Attacks

August 19, 2025
No Comments

Apache ActiveMQ Flaw Exploited to Deploy DripDropper Malware on Cloud Linux Systems

Out of Office, Not Out of Mind: Staying Cyber-Smart Over the Holidays August 22, 2025
We’re back with another expert interview! This time, we’re joined by Matt Warner, CEO and co-founder of Blumira, to talk about how businesses can stay ahead of cyber threats during the summer months and why this quieter season might be the best time to strengthen their security defenses. It’s the holiday season, and attacks often […]
Dilki Rathnayake
Cybercrime Is Hiring: AI, IoT, and Cloud Experts Power the Next Wave of Attacks August 22, 2025
The dark web has its own job boards. Its own recruiters. Its own economy of skills. There, posts read like the listings on LinkedIn or Indeed, only the roles are not for project managers or analysts. They are for AI specialists, cloud exploiters, and social engineers fluent in English. The recruits are not employees. They […]
Kirsten Doyle
From VPS to Phishing: Darktrace Exposes SaaS Hijacks through Virtual Infrastructure Abuse August 22, 2025
Darktrace has uncovered a coordinated campaign of SaaS account takeovers. Attackers hid behind Virtual Private Servers, slipping into accounts, moving unseen, and wiping away the traces of phishing. The pattern was consistent: suspicious logins from VPS-linked infrastructure, swift creation of inbox rules, and deleted emails, particularly those tied to phishing. What researchers found was a […]
Kirsten Doyle
Scamlexity: When AI Agents Become the Target, Not Just the Human August 22, 2025
AI Browsers promise a future where an Agentic AI can handle your online life. From shopping to emails, they are designed to act autonomously, to save time, to make life easier. Yet convenience has a price. Recent researach by Guardio reveals a worrying truth: security guardrails are inconsistent, sometimes absent entirely. The AI clicks, pays, […]
Kirsten Doyle
Manufacturers Scramble to Adopt AI as Cyber Threats Escalate August 22, 2025
Cybersecurity has risen to the top of the manufacturing industry’s risk agenda. A new report from Rockwell Automation reveals that 61% of IT and security professionals plan to adopt AI and machine learning (ML) for cyber defense in the next year – 12 points ahead of general AI adoption across the sector. Meanwhile, 30% of […]
Josh Breaker Rolfe
Your Microsoft 365 Email Security Needs a Smarter Ally August 22, 2025
On a Friday afternoon, a finance executive at a mid-sized firm receives a short email. No links. No attachments. Just a familiar name, a sense of urgency, and a request to move funds. It looked right, and it felt right. But it wasn’t. The transfer went through, and the money vanished without the bad actor […]
Usman Choudhary
Russian Espionage Group Exploits Old Cisco Flaw to Target Critical Infrastructure August 21, 2025
The FBI and Cisco Talos have issued fresh warnings about a Russian cyber espionage campaign that has quietly compromised network devices around the world. The threat actor, tracked as Static Tundra, is linked to the Federal Security Service’s (FSB) Center 16 unit and has been active for more than a decade. At the heart of […]
Kirsten Doyle
Patching for Persistence: DripDropper Malware Secures the Door It Broke Open August 21, 2025
It sounds counterintuitive. An adversary exploits a system, gains access, and then patches the very hole they used to break in. Yet that is exactly what Red Canary researchers observed in a recent campaign targeting cloud-based Linux servers. The logic is simple. By fixing the exploited vulnerability, a malefactor can lock out rivals and mask […]
Kirsten Doyle
Crypto Agility Under Pressure: Enterprises Lag on Certificates and Quantum Prep August 21, 2025
A new report from Sectigo and Omdia reveals that enterprises are dangerously underprepared for two converging megatrends shaking the foundations of Public Key Infrastructure (PKI): the radical shortening of SSL/TLS certificate lifespans and the looming transition to post-quantum cryptography (PQC). The State of Crypto Agility 2025 study, based on a survey of 272 IT decision-makers […]
Josh Breaker Rolfe
Have I Been Pwned: Allianz Life Breach Impacts 1.1m August 21, 2025
Have I Been Pwned has added Allianz Life to its breach notification database, confirming that cybercriminals compromised personal data belonging to more than 1.1 million individuals. The breach stems from an attack on a cloud-based customer relationship management (CRM). Allianz Life disclosed the incident in a filing with the Maine attorney general’s office in late […]
Josh Breaker Rolfe