Blog – Page 5 – VigilantAI

August 14, 2025
No Comments

Simple Steps for Attack Surface Reduction

August 14, 2025
No Comments

Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Losses

August 14, 2025
No Comments

CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalog

August 13, 2025
No Comments

New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacks

August 13, 2025
No Comments

Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flaws

August 13, 2025
No Comments

AI SOC 101: Key Capabilities Security Leaders Need to Know

August 13, 2025
No Comments

Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code

August 13, 2025
No Comments

Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive

August 13, 2025
No Comments

Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws

August 13, 2025
No Comments

Charon Ransomware Hits Middle East Sectors Using APT-Level Evasion Tactics

Out of Office, Not Out of Mind: Staying Cyber-Smart Over the Holidays August 22, 2025
We’re back with another expert interview! This time, we’re joined by Matt Warner, CEO and co-founder of Blumira, to talk about how businesses can stay ahead of cyber threats during the summer months and why this quieter season might be the best time to strengthen their security defenses. It’s the holiday season, and attacks often […]
Dilki Rathnayake
Cybercrime Is Hiring: AI, IoT, and Cloud Experts Power the Next Wave of Attacks August 22, 2025
The dark web has its own job boards. Its own recruiters. Its own economy of skills. There, posts read like the listings on LinkedIn or Indeed, only the roles are not for project managers or analysts. They are for AI specialists, cloud exploiters, and social engineers fluent in English. The recruits are not employees. They […]
Kirsten Doyle
From VPS to Phishing: Darktrace Exposes SaaS Hijacks through Virtual Infrastructure Abuse August 22, 2025
Darktrace has uncovered a coordinated campaign of SaaS account takeovers. Attackers hid behind Virtual Private Servers, slipping into accounts, moving unseen, and wiping away the traces of phishing. The pattern was consistent: suspicious logins from VPS-linked infrastructure, swift creation of inbox rules, and deleted emails, particularly those tied to phishing. What researchers found was a […]
Kirsten Doyle
Scamlexity: When AI Agents Become the Target, Not Just the Human August 22, 2025
AI Browsers promise a future where an Agentic AI can handle your online life. From shopping to emails, they are designed to act autonomously, to save time, to make life easier. Yet convenience has a price. Recent researach by Guardio reveals a worrying truth: security guardrails are inconsistent, sometimes absent entirely. The AI clicks, pays, […]
Kirsten Doyle
Manufacturers Scramble to Adopt AI as Cyber Threats Escalate August 22, 2025
Cybersecurity has risen to the top of the manufacturing industry’s risk agenda. A new report from Rockwell Automation reveals that 61% of IT and security professionals plan to adopt AI and machine learning (ML) for cyber defense in the next year – 12 points ahead of general AI adoption across the sector. Meanwhile, 30% of […]
Josh Breaker Rolfe
Your Microsoft 365 Email Security Needs a Smarter Ally August 22, 2025
On a Friday afternoon, a finance executive at a mid-sized firm receives a short email. No links. No attachments. Just a familiar name, a sense of urgency, and a request to move funds. It looked right, and it felt right. But it wasn’t. The transfer went through, and the money vanished without the bad actor […]
Usman Choudhary
Russian Espionage Group Exploits Old Cisco Flaw to Target Critical Infrastructure August 21, 2025
The FBI and Cisco Talos have issued fresh warnings about a Russian cyber espionage campaign that has quietly compromised network devices around the world. The threat actor, tracked as Static Tundra, is linked to the Federal Security Service’s (FSB) Center 16 unit and has been active for more than a decade. At the heart of […]
Kirsten Doyle
Patching for Persistence: DripDropper Malware Secures the Door It Broke Open August 21, 2025
It sounds counterintuitive. An adversary exploits a system, gains access, and then patches the very hole they used to break in. Yet that is exactly what Red Canary researchers observed in a recent campaign targeting cloud-based Linux servers. The logic is simple. By fixing the exploited vulnerability, a malefactor can lock out rivals and mask […]
Kirsten Doyle
Crypto Agility Under Pressure: Enterprises Lag on Certificates and Quantum Prep August 21, 2025
A new report from Sectigo and Omdia reveals that enterprises are dangerously underprepared for two converging megatrends shaking the foundations of Public Key Infrastructure (PKI): the radical shortening of SSL/TLS certificate lifespans and the looming transition to post-quantum cryptography (PQC). The State of Crypto Agility 2025 study, based on a survey of 272 IT decision-makers […]
Josh Breaker Rolfe
Have I Been Pwned: Allianz Life Breach Impacts 1.1m August 21, 2025
Have I Been Pwned has added Allianz Life to its breach notification database, confirming that cybercriminals compromised personal data belonging to more than 1.1 million individuals. The breach stems from an attack on a cloud-based customer relationship management (CRM). Allianz Life disclosed the incident in a filing with the Maine attorney general’s office in late […]
Josh Breaker Rolfe

Category: Blog

Simple Steps for Attack Surface Reduction

Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Losses

CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalog

New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacks

Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flaws

AI SOC 101: Key Capabilities Security Leaders Need to Know

Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code

Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive

Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws

Charon Ransomware Hits Middle East Sectors Using APT-Level Evasion Tactics

[email protected]