Sources

Mayfly - Hack, Code, Sleep, Repeat

INDICATORS OF COMPROMISE (IOC)

Introducing simple and secure egress policies by hostname in Cloudflare’s SASE platform

The Cloudflare Blog

Weekly Update 460

Troy Hunt

Welcoming Push Security to Have I Been Pwned's Partner Program

Troy Hunt

Weekly Update 459

Troy Hunt

VMware security advisory (AV25-422)

CCCS - Alerts and advisories

Fortinet security advisory (AV25-406) - Update 1

CCCS - Alerts and advisories

Red Hat security advisory (AV25-421)

CCCS - Alerts and advisories

Cyber threat bulletin: Iranian cyber threat to Canada from Israel-Iran conflict

CCCS - Guidance, news and events

Canadian Common Criteria program requirements and procedures for testing laboratories

CCCS - Guidance, news and events

Roadmap for the migration to post-quantum cryptography for the Government of Canada (ITSM.40.001)

CCCS - Guidance, news and events

關於分分鐘拿下整個網域，你還疏忽了什麼？

DEVCORE 戴夫寇爾

From Convenience to Contagion: The Half-Day Threat and Libarchive Vulnerabilities Lurking in Windows 11

DEVCORE 戴夫寇爾

全境擴散：從 Windows 11 到 Libarchive 的 Half-Day 威脅與全面影響

DEVCORE 戴夫寇爾

既定の設定による NTLM リレー攻撃の軽減について

MSRC on Microsoft Security Response Center

Mitigating SSRF Vulnerabilities Impacting Azure Machine Learning

MSRC on Microsoft Security Response Center

Azure Machine Learning に影響がある SSRF 脆弱性の軽減について

MSRC on Microsoft Security Response Center

New MITRE framework takes aim at crypto threats

Help Net Security

Exploits for unauthenticated FortiWeb RCE are public, so patch quickly! (CVE-2025-25257)

Help Net Security

Blumira simplifies compliance reporting for IT teams and MSPs

Help Net Security

Sources

Mayfly - Hack, Code, Sleep, Repeat

Exchange - Part 1 - no creds

SCCM / MECM LAB - Part 0x1 - Recon and PXE

SCCM / MECM LAB - Part 0x2 - Low user

INDICATORS OF COMPROMISE (IOC)

Bleeping Computer.

UK launches vulnerability research program for external experts

Interlock ransomware adopts FileFix method to deliver malware

Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot

The Cloudflare Blog

Quicksilver v2: evolution of a globally distributed key-value store (Part 1)

How TimescaleDB helped us scale analytics and reporting

Introducing simple and secure egress policies by hostname in Cloudflare’s SASE platform

Troy Hunt

Weekly Update 460

Welcoming Push Security to Have I Been Pwned's Partner Program

Weekly Update 459

CCCS - Alerts and advisories

VMware security advisory (AV25-422)

Fortinet security advisory (AV25-406) - Update 1

Red Hat security advisory (AV25-421)

CCCS - Guidance, news and events

Cyber threat bulletin: Iranian cyber threat to Canada from Israel-Iran conflict

Canadian Common Criteria program requirements and procedures for testing laboratories

Roadmap for the migration to post-quantum cryptography for the Government of Canada (ITSM.40.001)

DEVCORE 戴夫寇爾

關於分分鐘拿下整個網域，你還疏忽了什麼？

From Convenience to Contagion: The Half-Day Threat and Libarchive Vulnerabilities Lurking in Windows 11

全境擴散：從 Windows 11 到 Libarchive 的 Half-Day 威脅與全面影響

MSRC on Microsoft Security Response Center

既定の設定による NTLM リレー攻撃の軽減について

Mitigating SSRF Vulnerabilities Impacting Azure Machine Learning

Azure Machine Learning に影響がある SSRF 脆弱性の軽減について

Help Net Security

New MITRE framework takes aim at crypto threats

Exploits for unauthenticated FortiWeb RCE are public, so patch quickly! (CVE-2025-25257)

Blumira simplifies compliance reporting for IT teams and MSPs

Sources

Mayfly - Hack, Code, Sleep, Repeat

INDICATORS OF COMPROMISE (IOC)

Bleeping Computer.

The Cloudflare Blog

Troy Hunt

CCCS - Alerts and advisories

CCCS - Guidance, news and events

DEVCORE 戴夫寇爾

MSRC on Microsoft Security Response Center

Help Net Security

Managed ad