Alert Fatigue Messages
21 extensions from Tigren, Magesolution, and Meetanshi carried six-year-old card-stealing malware—audit your plugins for the fake license and strengthen runtime protections.
Blacked-out video for screenshots on Windows, macOS, iOS, and Android ensures sensitive content remains secure.
Isolate OT from the Internet, enforce strong credentials, segment networks, and practice manual operations to prevent defacements and disruptions.
Inventory, segment, and secure outdated devices using FBI IoCs to block anonymized cybercriminal traffic.
Business profits are down 16.6 billion due to increase of fraud and ransomware
VeriSource Data breach that reveals employee benefit records
Security Teams Should Strengthen Vendor Oversight
Critical Infrastructure Operators Should Validate Contingency Plans
SAP has issued an emergency patch for CVE-2025-31324 (CVSS 10.0) in NetWeaver Visual Composer Framework 7.50 after ReliaQuest researchers observed active exploitation of a missing authorization check in the Metadata Uploader. This flaw allowed unauthenticated attackers to upload malicious binaries, jeopardizing system confidentiality, integrity, and availability. Organizations should immediately apply the update via the SAP Software Download Center and audit their systems for indicators of compromise; contact us for assistance with patch deployment and verification. (Source: SAP security advisory; contact us for more information.)