Sources

ThreatPost

The 2025 Cloudflare Radar Year in Review: The rise of AI, post-quantum, and record-breaking DDoS attacks

The Cloudflare Blog

React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques

The Cloudflare Blog

Reflecting on 20 years of Patch Tuesday

Microsoft Update Tuesday

Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086

Microsoft Update Tuesday

Dynamically Instrumenting Beacon With BeaconGate – For All Your Call Stack Spoofing Needs!

Cobalt Strike Blog

Creating sustainability for abuse.ch and its community

abuse.ch | IT-Security Blog

Introducing: abuse.ch Hunting Platform

abuse.ch | IT-Security Blog

Community First - new authentication, new data, and new functionality

abuse.ch | IT-Security Blog

Multiple Threat Actors Exploit React2Shell (CVE-2025-55182)

Mandiant Threat Intelligence

Sanctioned but Still Spying: Intellexa’s Prolific Zero-Day Exploits Continue

Mandiant Threat Intelligence

Beyond the Watering Hole: APT24's Pivot to Multi-Vector Attacks

Mandiant Threat Intelligence

Bun and done: The second coming of the Shai-Hulud worm

The Red Canary Blog: Information Security Insights

Beyond the bomb: When adversaries bring their own virtual machine for persistence

The Red Canary Blog: Information Security Insights

Lost in the cloud: What Home Alone 2 teaches us about cloud security

The Red Canary Blog: Information Security Insights

Sources

ThreatPost

The Akamai Blog

Stop Overpaying for East-West Traffic Control: Firewalls vs. Security Groups

CVE-2025-66516: Detecting and Defending Against Apache Tika XXE Attack

How Akamai Is Powering Trust in Tomorrow’s AI-Driven Ecosystem

The Cloudflare Blog

ChatGPT's rivals, Kwai's quiet rise: the top Internet services of 2025

The 2025 Cloudflare Radar Year in Review: The rise of AI, post-quantum, and record-breaking DDoS attacks

React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques

Microsoft Update Tuesday

Reflecting on 20 years of Patch Tuesday

Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086

Security Update Guide Supports CVEs Assigned by Industry Partners

CTF Time

niteCTF 2025

SECCON CTF 14 Quals

Cybercoliseum IV

Troy Hunt

Processing 630 Million More Pwned Passwords, Courtesy of the FBI

Weekly Update 481

Why Does Have I Been Pwned Contain "Fake" Email Addresses?

Cobalt Strike Blog

Get to Know Cobalt Strike: New Introductory Training

Artificial Intelligence for Post-Exploitation

Dynamically Instrumenting Beacon With BeaconGate – For All Your Call Stack Spoofing Needs!

abuse.ch | IT-Security Blog

Creating sustainability for abuse.ch and its community

Introducing: abuse.ch Hunting Platform

Community First - new authentication, new data, and new functionality

Mandiant Threat Intelligence

Multiple Threat Actors Exploit React2Shell (CVE-2025-55182)

Sanctioned but Still Spying: Intellexa’s Prolific Zero-Day Exploits Continue

Beyond the Watering Hole: APT24's Pivot to Multi-Vector Attacks

The Red Canary Blog: Information Security Insights

Bun and done: The second coming of the Shai-Hulud worm

Beyond the bomb: When adversaries bring their own virtual machine for persistence

Lost in the cloud: What Home Alone 2 teaches us about cloud security

Sources

ThreatPost

The Akamai Blog

The Cloudflare Blog

Microsoft Update Tuesday

CTF Time

Troy Hunt

Cobalt Strike Blog

abuse.ch | IT-Security Blog

Mandiant Threat Intelligence

The Red Canary Blog: Information Security Insights

Managed ad