Latest Intelligence
U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions
The U.S. Department of the Treasury's Office of Foreign Assets Control has renewed sanctions against the Russian cryptocurrency exchange Garantex for facilitating over $100 million in ransomware-linked transactions since 2019. Additionally, sanctions have been imposed on Garantex's successor, Grinex, for similar illicit activities. Read Original »
Zero Trust + AI: Privacy in the Age of Agentic AI
The article discusses the shift in privacy considerations from a perimeter-based approach to one focused on trust, particularly in the context of autonomous artificial agents. As these agents operate independently, the challenge lies in ensuring privacy when oversight is not constant. Read Original »
Tight Cybersecurity Budgets Accelerate the Shift to AI-Driven Defense
Organizations are increasingly adopting AI-powered automation in response to tight cybersecurity budgets. This shift aims to address staffing shortages and enhance defense mechanisms against rising threats. Read Original »
Google Says Android pKVM Earns Highest Level of Security Assurance
Google's Android pKVM has achieved SESIP Level 5 certification, indicating its strong resistance to sophisticated attacks. This certification highlights the platform's enhanced security assurance against highly skilled adversaries. Read Original »
Critical Flaws Patched in Rockwell FactoryTalk, Micro800, ControlLogix Products
Rockwell Automation has identified and published advisories regarding critical and high-severity vulnerabilities in several of its products. These vulnerabilities could pose significant risks to users if not addressed promptly. Read Original »
Cisco Patches Critical Vulnerability in Firewall Management Platform
Cisco has addressed a critical vulnerability affecting its firewall management platform as part of a broader security update. The company released over 20 advisories for its ASA, FMC, and FTD products in August 2025. Read Original »
Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution
Cisco has issued security updates to address a critical vulnerability in Secure Firewall Management Center (FMC) Software, which could allow remote code execution by an unauthenticated attacker. The flaw, identified as CVE-2025-20265, has a maximum CVSS score of 10.0. Read Original »
Downgrade Attack Allows Phishing Kits to Bypass FIDO
Researchers have identified a downgrade attack that can circumvent FIDO authentication, suggesting vulnerabilities in the system. While FIDO is generally considered secure, this finding highlights potential weaknesses that could be exploited by phishing kits. Read Original »
State and Local Leaders Lobby Congress for Cybersecurity Resources
State and local leaders are urging Congress to restore funding for the Multi-State Information Sharing and Analysis Center (MS-ISAC) to ensure that over 18,000 organizations can access essential cybersecurity resources. The cuts in federal funding pose a significant threat to the cybersecurity infrastructure necessary for protecting US national security. Read Original »
Agentic AI Use Cases for Security Soar but Risks Demand Close Attention
Organizations are increasingly leveraging agentic AI to automate routine tasks and manage large volumes of sensitive data. However, the adoption of these technologies necessitates stringent security measures to ensure human oversight remains integral. Read Original »
Google Chrome Enterprise: Advanced Browser Security for the Modern Workforce
The article discusses the importance of browsers in the modern work environment and how Google Chrome Enterprise is adapting to address contemporary security challenges while maintaining productivity. Mark Berschadski from Google emphasizes the need for advanced browser security measures. Read Original »
Police & Government Email Access For Sale on Dark Web
Cybercriminals are currently auctioning live email credentials on the dark web, which allows other criminals to gain access to sensitive systems and confidential intelligence. This trend could lead to an increased success rate for cybercriminal activities. Read Original »
NIST Digital Identity Guidelines Evolve with Threat Landscape
The US National Institute of Standards and Technology has updated its Digital Identity Guidelines to address the evolving cybersecurity threat landscape. The updated document includes both technical recommendations and strategic suggestions for organizations to enhance their digital identity management. Read Original »
CISA Warns N-able Bugs Under Attack, Patch Now
CISA has issued a warning about two critical vulnerabilities in N-able software that allow for local code execution and command injection. These vulnerabilities require authentication to exploit, indicating they are not typically seen at the start of an exploit chain. Read Original »
Cybersecurity Spending Slows & Security Teams Shrink
The article highlights a slowdown in cybersecurity spending, particularly in sectors like healthcare, retail, and hospitality, while noting that budget growth continues in financial services, insurance, and technology. Additionally, it mentions a trend of shrinking security teams across these industries. Read Original »