The quantum computing era, although not yet fully realized, is already influencing how organizations should think about security. In this article, I explore the threats that quantum technologies pose to businesses, who will be affected, and what can be done today to prepare for the future. Quantum Threats on the Horizon Breaking the Foundations of […]
Introduction In October 2025 a critical remote‑code‑execution (RCE) bug in Windows Server Update Services (WSUS) shook the security community. The flaw, tracked as CVE‑2025‑59287, resides in WSUS’s handling of encrypted AuthorizationCookie data. An unauthenticated attacker can send a specially crafted SOAP request and trigger unsafe deserialization in the WSUS service, leading to arbitrary code execution with […]
The latest threat landscape On October 15 2025 BleepingComputer broke the news that attackers had launched a convincing phishing campaign aimed at users of LastPass and Bitwarden—two of the most popular password managers. E‑mails arriving from domains such as lastpasspulse[.]blog and bitwardenbroadcast[.]blog falsely warned users that the companies had suffered security breaches and urged recipients […]
Agentic artificial intelligence – AI systems capable of setting goals, devising strategies and executing actions without constant human oversight – is no longer science fiction. As generative AI exploded into the mainstream and cybersecurity platforms began to sprinkle “AI‑powered” on every dashboard, a more advanced class of agents quietly emerged. These agentic AI systems are […]
Overview A critical remote‑code execution (RCE) vulnerability dubbed RediShell (CVE‑2025‑49844) recently sent shockwaves through the cloud‑security community. Discovered by the Wiz research team and demonstrated at Pwn2Own Berlin, the bug has been lurking in the Redis in‑memory database for more than 13 years. It arises from a use‑after‑free flaw in Redis’s embedded Lua scripting engine. […]
Imagine you’ve just hired a new IT specialist. Their CV looks great, their references are impeccable, and the interview was professional. You send them a laptop, provide access to their systems, and… a few days later, your SOC (or external IT provider) notices the installation of strange software. This isn’t a scene from an action […]
Recent weeks in the world of cybersecurity have shown one thing: the Scattered Spider group has no intention of letting up. On the contrary, they’re accelerating. The FBI and CISA are sounding the alarm, and we’re seeing an increase in reports from companies that have fallen victim to their clever (and unfortunately effective) tactics. According […]
As part of our ongoing series on tools that protect your digital privacy and security, this edition focuses on web browsers—your gateway to the internet. While most browsers prioritize speed and convenience, few are designed with privacy as a core principle. Fortunately, several alternatives offer enhanced protection against tracking, fingerprinting, and surveillance. In this article, […]
If you run a business in the EU (or have clients in the EU) and the word “cybersecurity” gives you a little shiver, you’ve come to the right place. Introducing NIS2 – a new EU directive that will come into force in 2024/2025 and will affect significantly more companies than its predecessor, NIS1. But don’t […]
This article continues our series on practical tools that enhance digital privacy and security – both in the workplace and at home. Today, we turn our attention to browser extensions: lightweight add-ons that can significantly reduce online tracking, improve browsing performance, and give users more control over their data. We’ll explore four standout tools: uBlock […]
Our knowledge, your security – a shield in the digital reality.