Threat Intelligence
From the Field

MegaCorp confirmed a breach affecting 47M users including hashed passwords, emails, and payment metadata. Data already circulating on BreachForums.

Google issued an emergency patch for a zero-day in Chrome's V8 JavaScript engine being exploited by a known threat actor to achieve remote code execution via crafted web pages.

CISA updated its KEV catalog with three newly confirmed exploited vulnerabilities affecting Microsoft Exchange, Ivanti Connect Secure, and Palo Alto PAN-OS. Federal agencies have 3 weeks to patch.

Researchers from TU Graz published CacheWarp 2.0, a side-channel attack exploiting cache invalidation behavior in AMD Zen 2–4 processors to recover AES-256 keys in under 60 seconds.

The BlackCipher APT group deployed a coordinated ransomware attack against three EU energy grid operators, demanding $45M combined ransom. ENISA has raised the threat level to High.

OpenSSL project released an emergency patch for CVE-2025-3301, a heap buffer overflow in the X.509 certificate parser that can be triggered by a malformed certificate chain sent during TLS handshake.

New research demonstrates how threat actors embed malicious instructions in documents, emails, and web pages that are then processed by AI assistants to exfiltrate data or perform unauthorized actions.

NIST's updated digital identity guidelines eliminate mandatory password complexity rules and rotation policies, instead focusing on length and breach-checking. What this means for your organization.