Articles about Security

Cybersecurity exposure management company Intruder has introduced GregAI, an AI-powered security analyst that, unlike generic AI assistants, has full visibility into each user’s security environment.

Currently in beta, GregAI is available to free trial users and customers on Intruder’s Cloud, Pro, and Enterprise plans. The assistant is named after Intruder’s original mascot, following a design file mix-up involving a designer named Greg.

Continue reading →

Microsoft has released emergency patches for two remote code execution vulnerabilities in SharePoint. The CVE-2025-53770 and CVE-2025-53771 security flaws are addressed by KB5002768 and KB5002754.

The issue was discovered by security researchers back in May, when it was found that the vulnerability allows for RCE attacks dubbed ToolShell. Microsoft had tried to plug the security holes earlier in the month with the July Security Update, but this only partly addressed the problem – hence the need for the emergency, out-of-band patches.

Continue reading →

The Matanbuchus malware loader is not new – it has been around for at least 4 years – but it has evolved into something incredibly dangerous.

Matanbuchus 3.0 has been found targeting victims as part of a ransomware attack. Described as being “highly targeted”, the cyberattack campaign uses Microsoft Teams as a delivery method for the latest version of the malware loader. The highly sophisticated attack employs a Microsoft Teams call impersonating an IT helpdesk.

Continue reading →

As we are being reminded on a near daily basis, Microsoft is ending support for Windows 10 in mid-October. The company has made it clear that the end of support means the end of security updates, but this does not mean that all Windows 10 users will take notice and jump to Windows 11.

However much Microsoft might wish otherwise, Windows 10 will remain in popular usage for some years to come – so the company is tightening the thumbscrews. A quiet announcement reveals that anyone sticking with Windows 10 will no longer receive feature updates for their Microsoft 365 (Office) apps.

Continue reading →

When we think about storage, the primary concern is usually reliability – you need to know that the data you save remain safe and accessible. But there are plenty of other things to consider, and new offerings from TEAMGROUP takes a unique approach to security.

With the internal P250Q‑M80 NVMe SSD and the portable T‑Create Expert P35S external, there is not only military-grade AES-256 encryption to ensure data is not going to fall into the wrong hands, but also an uninterruptible self-destruct option. Push a red button on either of the devices and they can be wiped, or completely nuked – and nothing can stop the process.

Continue reading →

Following complaints from users about problems with Windows Server Update Services, Microsoft has spoken out. The company has confirmed that WSUS has suffered issues preventing synchronization and deployment of updates.

This is a serious headache for businesses and organizations that rely on WSUS to manage Windows updates across networks. Reports of errors have been popping up for a couple of days, with scheduled synchronization actions showing to have failed in event logs.

Continue reading →

The shift to remote work was hastened by the Covid-19 pandemic, pushing companies to quickly adapt to employees working from home. Years later, remote and hybrid work remain common, offering a high degree of flexibility that many workers now take for granted.

Businesses have increasingly begun encouraging employees to return to the office, if only part-time. Leaders point to benefits like easier collaboration, improved team dynamics, and a clearer boundary between work and home life.

Continue reading →

Microsoft has released the KB5062553 update for Windows 11 24H2. Billed primarily as a security update for the operating system, it is actually more than that – much more.

As is the case with Microsoft’s monthly security updates, it also includes the non-security improvements, fixes and additions that were previewed last month. One of the key new arrivals here is the new PC-to-PC migration experience which uses the Windows Backup app to ease the process of moving to a new computer.

Continue reading →

There are large numbers of ransomware groups operating around the world, some of which have been conducting their nefarious work for years. There are older which are rather less long in the tooth, such as the recently formed SatanLock.

The group has been in existence for mere months, popping up in April this year. Responsible for a spate of attacks over a number of weeks, the ransomware group has announced that it is already shutting up shop. More than this, it plans to leak any data it has stolen.

Continue reading →

Jack Dorsey – the co-founder of Twitter and Block, and the founder of Bluesky – took to X to share some enticing details about the latest project he is working on.

Called bitchat, this is a messaging app that not only has security at its very core, but does not require internet access to work. A messaging app without internet? Dorsey explains that this is a secure, decentralized, peer-to-peer messaging app that works over Bluetooth mesh networks.

Continue reading →

Microsoft has issued a warning about a recent update for Windows 11. The KB5060829 update was released late last month as a non-security preview update, and it has been found to be causing issues.

Available for Windows 11 24H2, the optional KB5060829 update has been causing Windows Firewall With Advanced Security errors to be logged by the operating system. While error message relating to a security feature are likely to result in concern and fear, Microsoft is at pains to reassure users that there is no need to panic.

Continue reading →

Having previously announced the future deprecation of PowerShell 2.0, Microsoft has now released a version of Windows 11 that sees this command line shell removed.

The writing has been on the wall for this old version of PowerShell for some time, but Microsoft has – as is often the case with deprecated features – never been very clear about the precise schedule. But with the newly released Windows 11 Insider Preview Build 27891 on the Canary Channel dropping PowerShell 2.0, it is only a matter of time before other builds ditch the utility as well.

Continue reading →

As summer travel plans ramp up, so do concerns around identity theft, fraud, and safety – especially as travelers engage with everything from airlines to Airbnbs, ride shares to public Wi-Fi.

We spoke to Bala Kumar, chief technology and product officer at Jumio, to discuss the AI-powered scams threatening enterprises' customers this summer, and how businesses can ensure safe, secure, and efficient identity verification.

Continue reading →

Microsoft has published a warning about a problem in its Intune management software that stops customizations from being saved. Stemming from an issue in the security baseline policy update flow, an update can wipe out settings that have been put in place by administrators.

Although Microsoft has acknowledged the problem, the company is currently working on working out how to address it. In the meantime, Intune users are being told to use a workaround that could prove to be time-consuming for many.

Continue reading →

Mobile security enhancements have become an essential part of OS developments. To make mobile security better, Google has announced that Android 16 will include a feature that detects and warns users about fake or insecure cell towers and an often-overlooked threat that can be used to spy on individuals or steal sensitive data.

This new feature is part of strategic efforts by Google to strengthen privacy protections within its mobile ecosystem. As detailed in recent reports from Android Authority, the upcoming version of Android will notify users when their devices connect to suspicious mobile networks, particularly those attempting to gather identifying information or lacking encryption.

Continue reading →