Advertisement
Azure CLI Password Spray Campaign: Defending 81 Million Login Attempts
A massive password spray campaign targeting Azure CLI via LSHIY hosting infrastructure has been detected, highlighting the urgent need for conditional access.
Microsoft Teams Enhances Meeting Security with New Bot Protection Policy
Microsoft introduces a new admin policy for Teams meetings, preventing unapproved third-party bots from joining, mitigating meeting bombing incidents.
Falcon Cloud Security Expands Multi-Cloud Coverage for Azure, GCP
CrowdStrike Falcon Cloud Security's latest updates enhance multi-cloud protection across Azure and Google Cloud, improving visibility and threat detection.

Djinn Stealer Targets Cloud & AI Credentials via SimpleHelp CVE-2026-48558
Analysis of Djinn Stealer, an infostealer delivered via critical SimpleHelp CVE-2026-48558, targeting cloud and AI development credentials.

Mustang Panda Exploits Zoho WorkDrive for C2 in Indian Govt Attacks
Mustang Panda, a China-aligned APT, targets Indian government and hydropower entities, leveraging Zoho WorkDrive as a C2 channel and deploying new malware.

Cisco Secures Non-Human Identity with Astrix and WideField
Cisco's acquisition of Astrix and WideField signals a strategic shift toward Non-Human Identity (NHI) as a critical control plane for securing cloud access.
Amazon Q Flaw: Cloud Credential Theft via Malicious Repositories
AWS patches a critical Amazon Q flaw enabling cloud credential theft via malicious repositories. Understand its impact and recommended mitigations.

Amazon Q Developer RCE via CVE-2026-12957 - Cloud Credential Theft
High-severity CVE-2026-12957 in Amazon Q Developer allowed malicious repositories to execute arbitrary code and steal cloud credentials upon workspace trust. Patch now.
AI Security Platform Runlayer Raises $30M Series A Funding
Runlayer secures $30 million in Series A funding to develop its secure control layer platform, aiming to fortify AI tools across enterprise environments.
Dify AI Platform Data Exposure: Multi-Tenant Risks
Dify AI platform users face critical data exposure flaws, enabling access to private chats, documents, and internal APIs in multi-tenant environments.
GCP Config Connector Takeover: Unpatched Flaw Critical for Cloud Environments
An unpatched flaw in GCP Config Connector poses a critical takeover risk to Google Cloud environments. Learn about Velvet Ant's decade-long stealth and the Popa Android

NastyC2 npm Packages, AI Abuse & macOS Threats Identified
Analysis of NastyC2 npm supply chain attacks, Claude chat abuse for malware, memory-resident macOS threats, and device-code phishing.