A sophisticated phishing campaign leveraging a legitimate but often overlooked Microsoft 365 feature has enabled Russian-aligned hackers to bypass conventional security measures and achieve full account takeovers against critical Western targets. This method, known as device code phishing, subverts
We're joined today by our in-house security and infrastructure specialist, Rupert Marais, to dissect a recent, turbulent event in the developer world. GitHub’s abrupt plan to charge for self-hosted runners—and its even more abrupt reversal—sent shockwaves through the community, igniting a crucial
A recently uncovered, maximum-severity zero-day vulnerability in Cisco's Secure Email Gateway is not just a theoretical risk; it is an active threat being exploited by state-sponsored actors, putting corporate networks in immediate and significant danger. A Critical Flaw Uncovered: The Threat to
The mundane digital tools that power modern productivity are increasingly being twisted into sophisticated instruments of state-sponsored espionage, a reality brought into sharp focus by the activities of a newly documented, China-aligned threat group. Active since at least September 2023, this
The Dawn of a New IT Paradigm A profound shift is underway in the information technology sector, one that promises to redefine the very nature of IT services. The recent appointment of former Palantir CIO Jim Siders to lead Shield Technology Partners, a new venture backed by over $100 million, is
We're joined by Rupert Marais, our in-house security specialist whose work focuses on the sharp end of cybersecurity—endpoint protection and tracking the strategies of emerging threat groups. Today, we're diving into the curious case of CyberVolk, a pro-Russian group whose new ransomware service
