Blog – Page 30 – VigilantAI

June 26, 2025
No Comments

Critical Open VSX Registry Flaw Exposes Millions of Developers to Supply Chain Attacks

June 26, 2025
No Comments

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

June 26, 2025
No Comments

New FileFix Method Emerges as a Threat Following 517% Rise in ClickFix Attacks

June 26, 2025
No Comments

The Hidden Risks of SaaS: Why Built-In Protections Aren’t Enough for Modern Data Resilience

June 26, 2025
No Comments

Iranian APT35 Hackers Targeting Israeli Tech Experts with AI-Powered Phishing Attacks

June 26, 2025
No Comments

Cyber Criminals Exploit Open-Source Tools to Compromise Financial Institutions Across Africa

June 26, 2025
No Comments

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

June 26, 2025
No Comments

WhatsApp Adds AI-Powered Message Summaries for Faster Chat Previews

June 25, 2025
No Comments

nOAuth Vulnerability Still Affects 9% of Microsoft Entra SaaS Apps Two Years After Discovery

June 25, 2025
No Comments

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

Malicious Go Module Sends Stolen SSH Credentials to Telegram August 26, 2025
A Go package disguised as an SSH brute forcer has been caught stealing credentials and sending them straight to a Telegram bot controlled by a Russian-speaking threat actor. Socket’s Threat Research Team found the package, called golang-random-ip-ssh-bruteforce, still live on GitHub and the Go Module registry. It claims to be a “fast” SSH brute forcer. […]
Kirsten Doyle
The Technologies Redefining UK, European, and NATO Defence August 26, 2025
The United Kingdom is sharpening its defence posture. Five technologies stand at the heart of this effort. While the industry’s heavyweights continue to supply capability, fresh value lies with early to mid-stage firms. These smaller players, often led by veterans and security professionals, move fast. They innovate, adapt, and bring new answers to complex military […]
Kirsten Doyle
Reflections on the Web: Threats, AI, and the Road Ahead August 26, 2025
The web began quietly. A few servers, a handful of users, a few ideas. It promised knowledge at the speed of light. But as the connections multiplied, so did the shadows. Each innovation brings progress, but also vulnerability. Today, the internet is no longer a tool; it is a living, sprawling ecosystem. And its evolution […]
Kirsten Doyle
CrowdStrike Thwarts Malvertising Drive for SHAMOS on macOS August 25, 2025
Between June and August this year, CrowdStrike’s Falcon platform stopped a coordinated malware campaign aimed at more than 300 customer environments. The operation involved SHAMOS, a variant of the Atomic macOS Stealer (AMOS), built and rented out by the cybercriminal group COOKIE SPIDER. The scheme was simple. Malvertising lured users searching for macOS fixes to […]
Kirsten Doyle
Ransomware Surges as AI Drives New Cyber Threats August 25, 2025
The number of publicly known ransomware victims jumped early 70% compared to the same period in 2023 and 2024, according to the newly released Acronis Cyberthreats Report H1 2025. The surge underscores ransomware’s continuing grip on businesses worldwide, especially as attackers increasingly exploit AI to sharpen their tactics. While the endgame for cybercriminals is still […]
Josh Breaker Rolfe
Out of Office, Not Out of Mind: Staying Cyber-Smart Over the Holidays August 22, 2025
We’re back with another expert interview! This time, we’re joined by Matt Warner, CEO and co-founder of Blumira, to talk about how businesses can stay ahead of cyber threats during the summer months and why this quieter season might be the best time to strengthen their security defenses. It’s the holiday season, and attacks often […]
Dilki Rathnayake
Cybercrime Is Hiring: AI, IoT, and Cloud Experts Power the Next Wave of Attacks August 22, 2025
The dark web has its own job boards. Its own recruiters. Its own economy of skills. There, posts read like the listings on LinkedIn or Indeed, only the roles are not for project managers or analysts. They are for AI specialists, cloud exploiters, and social engineers fluent in English. The recruits are not employees. They […]
Kirsten Doyle
From VPS to Phishing: Darktrace Exposes SaaS Hijacks through Virtual Infrastructure Abuse August 22, 2025
Darktrace has uncovered a coordinated campaign of SaaS account takeovers. Attackers hid behind Virtual Private Servers, slipping into accounts, moving unseen, and wiping away the traces of phishing. The pattern was consistent: suspicious logins from VPS-linked infrastructure, swift creation of inbox rules, and deleted emails, particularly those tied to phishing. What researchers found was a […]
Kirsten Doyle
Scamlexity: When AI Agents Become the Target, Not Just the Human August 22, 2025
AI Browsers promise a future where an Agentic AI can handle your online life. From shopping to emails, they are designed to act autonomously, to save time, to make life easier. Yet convenience has a price. Recent researach by Guardio reveals a worrying truth: security guardrails are inconsistent, sometimes absent entirely. The AI clicks, pays, […]
Kirsten Doyle
Manufacturers Scramble to Adopt AI as Cyber Threats Escalate August 22, 2025
Cybersecurity has risen to the top of the manufacturing industry’s risk agenda. A new report from Rockwell Automation reveals that 61% of IT and security professionals plan to adopt AI and machine learning (ML) for cyber defense in the next year – 12 points ahead of general AI adoption across the sector. Meanwhile, 30% of […]
Josh Breaker Rolfe

Category: Blog

Critical Open VSX Registry Flaw Exposes Millions of Developers to Supply Chain Attacks

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

New FileFix Method Emerges as a Threat Following 517% Rise in ClickFix Attacks

The Hidden Risks of SaaS: Why Built-In Protections Aren’t Enough for Modern Data Resilience

Iranian APT35 Hackers Targeting Israeli Tech Experts with AI-Powered Phishing Attacks

Cyber Criminals Exploit Open-Source Tools to Compromise Financial Institutions Across Africa

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

WhatsApp Adds AI-Powered Message Summaries for Faster Chat Previews

nOAuth Vulnerability Still Affects 9% of Microsoft Entra SaaS Apps Two Years After Discovery

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

[email protected]