Exclusive

Offensive Security February 21, 2025

SoaPy: Stealthy enumeration of Active Directory environments through ADWS

Introduction Over time, both targeted and large-scale enumeration of Active Directory (AD) environments have become increasingly detected due to modern defensive solutions. During our internship at X-Force Red this past summer, we noticed FalconForce’s SOAPHound was becoming popular for enumerating…

Bypassing Windows Defender Application Control with Loki C2

10 min read - Windows Defender Application Control (WDAC) is a security solution that restricts execution to trusted software. Since it is classified as a security boundary, Microsoft offers bug bounty payouts for qualifying bypasses, making it an active and competitive field of research.…

News March 4, 2025

FYSA — VMware Critical Vulnerabilities Patched

< 1 min read - Summary Broadcom has released a security bulletin, VMSA-2025-0004, addressing and remediating three vulnerabilities that, if exploited, could lead to system compromise. Products affected include vCenter Server, vRealize Operations Manager, and vCloud Director. Threat Topography Threat Type: Critical Vulnerabilities Industry: Virtualization…

Threat Intelligence February 14, 2025

Smoltalk: RCE in open source agents

26 min read - Big shoutout to Hugging Face and the smolagents team for their cooperation and quick turnaround for a fix! Introduction Recently, I have been working on a side project to automate some pentest reconnaissance with AI agents. Just after I started…

Risk Management February 14, 2025

4 ways to bring cybersecurity into your community

4 min read - It’s easy to focus on technology when talking about cybersecurity. However, the best prevention measures rely on the education of those who use technology. Organizations training their employees is the first step. But the industry needs to expand the concept…

Latest Podcast

Season 3 |Episode 7

Cyber leaders: Stop being your own worst career enemy. Here’s how.

How do you transition from security SME to security leader? Learn how to supercharge your cybersecurity career on this episode of Into the Breach with special guest Brian Donovan, author of “Leadership is Changing the Game: The transition from technical expert to leader.”

Now playing

36:18

ALL Episodes

How red teaming helps safeguard the infrastructure behind AI models

4 min read - Artificial intelligence (AI) is now squarely on the frontlines of information security. However, as is often the case when the pace of technological innovation is very rapid, security often ends up being a secondary consideration. This is increasingly evident from…

Risk Management February 12, 2025

When you shouldn’t patch: Managing your risk factors

4 min read - Look at any article with advice about best practices for cybersecurity, and about third or fourth on that list, you’ll find something about applying patches and updates quickly and regularly. Patching for known vulnerabilities is about as standard as it…

Artificial Intelligence February 11, 2025

The straight and narrow — How to keep ML and AI training on track

3 min read - Artificial intelligence (AI) and machine learning (ML) have entered the enterprise environment. According to the IBM AI in Action 2024 Report, two broad groups are onboarding AI: Leaders and learners. Leaders are seeing quantifiable results, with two-thirds reporting 25% (or…

IBM Security X-Force Threat Intelligence Index: Explore the top threats of 2023.

In 2023, abusing valid credentials became the most common entry point into victim environments with a 71% increase in volume year over year. Learn more.

Read the report

Featured by topic

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.

Subscribe today

Analysis and insights from hundreds of the brightest minds in the cybersecurity industry to help you prove compliance, grow business and stop threats.

Cybersecurity News By Topic By Industry Exclusive Series X-Force Podcast Events Contact About Us

Security Intelligence

{{title}}

{{title}}

{{title}}

Topics

SoaPy: Stealthy enumeration of Active Directory environments through ADWS

Bypassing Windows Defender Application Control with Loki C2

FYSA — VMware Critical Vulnerabilities Patched

Smoltalk: RCE in open source agents

4 ways to bring cybersecurity into your community

How red teaming helps safeguard the infrastructure behind AI models

When you shouldn’t patch: Managing your risk factors

The straight and narrow — How to keep ML and AI training on track

IBM Security X-Force Threat Intelligence Index: Explore the top threats of 2023.

Research finds 56% increase in active ransomware groups

Cybersecurity dominates concerns among the C-suite, small businesses and the nation

What Telegram’s recent policy shift means for cyber crime

SpyAgent malware targets crypto wallets by stealing screenshots

Strela Stealer: Today’s invoice is tomorrow’s phish

National Public Data breach publishes private data of 2.9B US citizens

Cyberattack on American Water: A warning to critical infrastructure

Skills shortage directly tied to financial loss in data breaches

Topic updates