Blog – Page 37 – VigilantAI

December 2, 2025
No Comments

SecAlerts Cuts Through the Noise with a Smarter, Faster Way to Track Vulnerabilities

December 2, 2025
No Comments

Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild

December 1, 2025
No Comments

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware

December 1, 2025
No Comments

India Orders Phone Makers to Pre-Install Sanchar Saathi App to Tackle Telecom Fraud

December 1, 2025
No Comments

Webinar: The “Agentic” Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams

December 1, 2025
No Comments

⚡ Weekly Recap: Hot CVEs, npm Worm Returns, Firefox RCE, M365 Email Raid & More

December 1, 2025
No Comments

New Albiriox MaaS Malware Targets 400+ Apps for On-Device Fraud and Screen Control

December 1, 2025
No Comments

Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets

November 30, 2025
No Comments

CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV

November 28, 2025
No Comments

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

Closing the Cross-Platform Security Gap in Citizen Developer Apps February 13, 2026
In many ways, managing security for citizen-developer apps is like flying several planes built by different manufacturers all at once. That’s because each no-code development platform uses separate dashboards, controls, policy engines, etc. Microsoft Power Platform measures altitude in feet, ServiceNow in meters, Salesforce reports it in knots, and UiPath wants to automate the landing […]
Yair Finzi
The Top Pentesting Platforms of 2026: What You Need to Know February 11, 2026
What to Look for in a Pentesting Platform? As the primary way of finding and exploiting vulnerabilities (before attackers do), pen testing platforms are a popular choice for businesses looking to launch sophisticated simulated attacks at scale. Here is a look at some of the top pen testing tools to watch in 2026, and what […]
Joe Pettit
The Cyberattack That Exposed the Fragility of Digital Heritage February 11, 2026
Saturday 28 October 2023 is a date that will live long in the memory of staff at the British Library. As they arrived for work that day, they encountered chaos taking place. Servers were no longer online. Crucial systems were encrypted. And digital catalogues had disappeared altogether. A cultural institution renowned all over the world, […]
Kashif Nazir
Why Traditional Cyber Risk Management Is No Longer Enough in 2026 February 10, 2026
As we settle into 2026, the cybersecurity industry is experiencing dramatic change. AI, AI agents, Quantum, and even traditional attack techniques are developing in ways that impact how we protect our organisations and even how we communicate with our customers. Preserving the status quo simply isn’t good enough, so evolving our defences to not only […]
Peter Jones
Substack Discloses Major Data Breach February 9, 2026
Media platform Substack has disclosed a data breach that exposed email addresses, phone numbers, and internal metadata of an unknown number of users. Credit card numbers, passwords, and financial information were not accessed. In an email, Substack CEO Chris Best informed affected users that on 3 February, the company found evidence pointing to a third party having […]
Kirsten Doyle
The Winter Olympics Are Back, and So Are Attackers February 6, 2026
The Olympics have traditionally been a major attack vector for cyber disruption, espionage, and financially motivated attacks. The 2018 Winter Olympic Games in PyeongChang saw the Olympic Destroyer malware used to disrupt Wi-Fi, ticket, and venue systems during the opening ceremony of the games. During the Paris 2024 event, there was an increase in scanning, […]
Kirsten Doyle
Rethinking the Security Estate: Why IT Spend Isn’t the Same as Cybersecurity Readiness February 5, 2026
Cybersecurity spend is projected to reach $183 billion by 2028, but that growth masks a dangerous misconception. Many midmarket organizations equate rising IT budgets with improved security, assuming that broad spending on technology automatically translates to better protection. However, this is creating a widening gap between what companies perceive and their actual security readiness. IT […]
Michael Gray
Microsoft: Python-Powered Infostealers Are Now Targeting macOS at Scale February 5, 2026
Microsoft has warned that information-stealing attacks are rapidly expanding beyond Windows to target Apple macOS environments using cross-platform languages such as Python. The software giant’s Defender Security Research Team has observed macOS-targeted infostealer campaigns using social engineering techniques like ClickFix since late 2025 to distribute disk image (DMG) installers that deploy stealer malware families like Atomic macOS Stealer (AMOS), MacSync, and DigitStealer. The […]
Kirsten Doyle
Forescout’s 2025 Threat Roundup: 84% OT Surge Signals Expanding Cyber Chaos February 5, 2026
In 2025, attackers didn’t only target traditional areas of vulnerability; they went after those with the least defense and the most rapid change. These include new AI technologies, web applications, and operational technology (OT) for industries such as healthcare, manufacturing, energy, government, and finance. In fact, attacks against OT protocol rose by a whopping 84% with Modbus, Ethernet/IP, and BACnet at the forefront. IoT exploits increased to 19%, hitting cameras and […]
Kirsten Doyle
Notepad++ Update Hijacked in Six-Month, State-Linked Supply-Chain Attack February 3, 2026
Attackers have hijacked the update mechanism of Notepad++, one of the world’s most popular open-source text editors, delivering malware to targeted users over a period of six months. In an advisory, developer Don Ho discussed how bad actors weaponized his two-decade-old project between June and December last year. An update, said: “Multiple independent security researchers have assessed that the threat actor is likely a Chinese state-sponsored group, which would explain […]
Kirsten Doyle

Category: Blog

SecAlerts Cuts Through the Noise with a Smarter, Faster Way to Track Vulnerabilities

Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware

India Orders Phone Makers to Pre-Install Sanchar Saathi App to Tackle Telecom Fraud

Webinar: The “Agentic” Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams

⚡ Weekly Recap: Hot CVEs, npm Worm Returns, Firefox RCE, M365 Email Raid & More

New Albiriox MaaS Malware Targets 400+ Apps for On-Device Fraud and Screen Control

Tomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government Targets

CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

[email protected]