A dangerous phishing-as-a-service platform called VoidProxy is enabling attackers to bypass traditional protections—even MFA. Attackers send messages from high-reputation domains, often embedding a link inside a PDF that appears to come from a trusted source like DocuSign. Once opened, users are redirected to a real Microsoft login page. The credentials and MFA code you enter...Read More

As artificial intelligence (AI) continues to evolve, so do its applications in cybersecurity—both for defense and offense. While AI-driven security solutions have strengthened threat detection and response, cybercriminals are also leveraging AI to enhance the sophistication and scale of their attacks. Businesses must be aware of these evolving threats to stay ahead of potential risks. ...Read More

The world is aghast watching Russia invade Ukraine, and it’s critical that the physical separation of these events doesn’t create a false sense of security for the US.   As the countries around the globe step up sanctions and impose restrictions on critical Russian resources, war will expand on a different front.  Cyberwarfare is nothing new,...Read More

The recent discovery of Log4J and its widespread impact on businesses highlights the importance of scanning networks to identify and mitigate software vulnerabilities. But periodically scanning networks is the easy part of building an effective vulnerability management program. Since these “programs” aim to identify and fix software vulnerabilities, ongoing management must include a schedule of...Read More