Cybercriminals Don’t Care About National Cyber Policy
We can’t put defense on hold until Inauguration Day.
We can’t put defense on hold until Inauguration Day.
Related
Seven Malicious Go Packages Found Deploying Malware on Linux and macOS Systems
Cybersecurity researchers are alerting of an ongoing malicious campaign targeting the Go ecosystem with typosquatted modules that are designed to deploy loader malware on Linux and Apple macOS systems. “The threat actor has published at least seven packages impersonating widely used Go libraries, including one (github[.]com/shallowmulti/hypert) that appears to target financial-sector developers
Minnesota Tribe Struggles After Ransomware Attack
Hotel and casino operations for the Lower Sioux Indians have been canceled or postponed, and the local health center is redirecting those needing medical or dental care.
Microsoft Office Zero-Day (CVE-2026-21509) – Emergency Patch Issued for Active Exploitation
Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability exploited in attacks. The vulnerability, tracked as CVE-2026-21509, carries a CVSS score of 7.8 out of 10.0. It has been described as a security feature bypass in Microsoft Office. “Reliance on untrusted inputs in a security decision in Microsoft Office allows…
Too Many Secrets: Attackers Pounce on Sensitive Data Sprawl
Hardcoded credentials, access tokens, and API keys are ending up in the darnedest places, prompting a call for organizations to stop over-privileging secrets.
ClickFix Attack Compromises 100+ Car Dealership Sites
The ClickFix attack tactic seems to be gaining traction among threat actors.
Citrix Patches Critical Vulns in NetScaler ADC and Gateway
Citrix is recommending its customers upgrade their appliances to mitigate potential exploitation of the vulnerabilities.