SAP and Onapsis security researchers have released a threat intelligence report detailing the active exploitation of critical SAP application vulnerabilities. Multiple “advanced threat actors” are carrying out a range of attacks with techniques that could lead to full control of unsecured applications.

Microsoft has announced multiple zero-day Microsoft Exchange vulnerabilities are being exploited by Chinese hacking group Hafnium.

Another major hospital network, experienced a significant ransomware attack that led to the shutdown of several US computing systems.

The 'SigRed' vulnerability allows remote attackers to gain domain administrator privileges by sending malicious queries to Windows DNS servers, opening the door for attackers to execute remote code, intercept traffic and steal credentials. 

In this CBI Security Alert, Senior Penetration Tester Aaron Pohl goes in-depth about Ripple20, a set of critical software vulnerabilities that could potentially affect hundreds of millions of devices in the coming years.

In this CBI Security Alert, VP of Systems Engineering Dan Gregory provides his perspective on the EKANS ransomware threat that has been targeting industrial control system environments.

In this Security Alert, CBI’s David Mamikonyan reviews the recent Wawa credit card breach, what it means for consumers and how companies can prevent similar breaches in the future.

Microsoft recently announced a data breach that affected their databases in the cloud. It is estimated that 250 million records were exposed in this incident. CBI's David Mamikonyan breaks down the details - and how to defend yourself from potential phishing attacks.

CBI's David Mamikonyan reviews a recent breach involving millions of debit and credit cards stolen from four different restaurant chains across the Midwest and Eastern US.

Microsoft Internet Explorer has a Zero Day exploit that is already being taken advantage of – CBI's Troy Jessee provides details and remediation info in this CBI Security Alert.

The latest CBI Insights article give you everything you need to know about the Capital One data breach, what it means to you and next steps to protect your organization.

CBI’s Jeff Goreski provides an overview of BEC scams, a threat where employees receive realistic but falsified email requests.

Today’s Security Alert highlights the new Microsoft patch that protects older versions of Windows from “wormable” malware attacks.

Unidentified group of hackers breached the City of Baltimore’s IT infrastructure in a cyberattack using ransomware known as, “RobbinHood.”

In this CBI Insights blog post, Jeff Goreski reviews evolving data threats like RAMBleeds and how to get ahead of them.