Running a SOC often feels like drowning in alerts. Every morning, dashboards light up with thousands of signals; some urgent, many irrelevant. The job is to find the real threats fast enough to keep cases from piling up, prevent analyst burnout, and maintain client or leadership confidence. The toughest challenges,Read More »How to Close Threat Detection Gaps: Your SOC’s Action Plan

Cybersecurity researchers have discovered two Android spyware campaigns dubbed ProSpy and ToSpy that impersonate apps like Signal and ToTok to target users in the United Arab Emirates (U.A.E.). Slovak cybersecurity company ESET said the malicious apps are distributed via fake websites and social engineering to trick unsuspecting users into downloadingRead More »Warning: Beware of Android Spyware Disguised as Signal Encryption Plugin and ToTok Pro

A database in the healthcare industry was exposed. 

In yet another piece of research, academics from Georgia Institute of Technology and Purdue University have demonstrated that the security guarantees offered by Intel’s Software Guard eXtensions (SGX) can be bypassed on DDR4 systems to passively decrypt sensitive data. SGX is designed as a hardware feature in Intel server processorsRead More »New WireTap Attack Extracts Intel SGX ECDSA Key via DDR4 Memory-Bus Interposer

The U.S. government has shut down as of 12:01 am on October 1, 2025.

A high-severity security flaw has been disclosed in the One Identity OneLogin Identity and Access Management (IAM) solution that, if successfully exploited, could expose sensitive OpenID Connect (OIDC) application client secrets under certain circumstances. The vulnerability, tracked as CVE-2025-59363, has been assigned a CVSS score of 7.7 out of 10.0.Read More »OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps