Most ransomware attacks occur during weekends and holidays, times of distraction or disruption when the majority of SOCs are not adequately staffed. A new report from Semperis finds that 52 percent of surveyed organizations in the US, UK, France, Germany, Italy, Spain, Singapore, Canada, Australia and New Zealand were targeted at holidays or weekends. Alarmingly, 78 percent of companies cut security operation centre (SOC) staffing by 50 percent or more during holidays and w

A sophisticated privilege escalation vulnerability in Windows SMB servers, leveraging Ghost Service Principal Names (SPNs) and Kerberos authentication reflection to achieve remote SYSTEM-level access. Microsoft designated this as CVE-2025-58726 , an “SMB Server Elevation of Privilege” flaw impacting all Windows versions absent enforced SMB signing. According to Semperis, the issue persists in environments with default Active Directory (AD) configurations, underscoring Kerber

In the ever-evolving landscape of mobile technology, Google’s Quick Share is poised for a significant security upgrade. According to recent reports, the file-sharing feature could soon integrate with Android’s Advanced Protection Program, potentially revolutionizing how users safeguard their data during transfers. This development comes amid growing concerns over unauthorized access and file theft in an increasingly connected world. The rumor, first highlighted by Android Aut

Pupil size reduction remained consistent through day 8. More eyes improved from day 1 to day 8. These results suggest neuroadaptation with Qlosi. Qlosi demonstrated consistent pupil size reduction and increasing rates of near visual acuity in patients with presbyopia over 8 days, according to a study. Read more.

SafeBreach experts have disclosed details of a vulnerability in the Windows Remote Procedure Call (RPC) protocol, patched by Microsoft in the July 2025 update. The flaw, CVE-2025-49760 , allowed an attacker to conduct spoofing attacks and impersonate a legitimate server using the Windows storage mechanism. Ron Ben Yizak discussed the discovery at the DEF CON 33 conference. Read more.

A newly discovered attack method could allow hackers to crash public Windows domain controllers (DCs) worldwide and weaponize them for...

For likely the first time ever, security researchers from Safebreach have shown how AI can be hacked to create real-world havoc, allowing...

By sending a calendar invite with an embedded prompt injection, often hidden in the event title, attackers can potentially exfiltrate...

Ransomware actors are resorting to extreme measures to pressure victims into paying demands, including threats of physical harm to...

New research has uncovered continued risk from a known security weakness in Microsoft's Entra ID , potentially enabling malicious actors...

S emperis has announced new detection capabilities in its Directory Services Protector platform in collaboration with Akamai to address...

A new survey of 1,000 businesses across the UK, UK, Europe and the Asia-Pacific region reveals a worrying disconnect between...

80 percent of operators were targeted multiple times. More than half of cyber-attacks experienced by critical services disrupted...

The patches Google rolled out last year to address vulnerabilities in the Quick Share data transfer utility that could lead to remote...

Organizations are leaving their security teams understaffed during critical times, shows research. As cyberattacks continue to plague...

One of two critical Active Directory Domain Controller vulnerabilities patched by Microsoft last month goes beyond the original...

Windows Update may occasionally backfire with faulty patches , but for the most part, it’s meant to keep us safe from the latest threats....

According to the research team at Semperis, the vulnerability was discovered in the OAuth 2.0 scope (permissions) of Entra ID, which...

Some of Microsoft’s most important tools for protecting Windows users from malicious hackers can be twisted into being used in attacks,...

Nearly one-third of companies that suffered a ransomware attack paid a ransom four or more times in the past 12 months to regain access...