An overview of the “Grafana Ghost” vulnerability (CVE-2025-4123), which enables account takeover through malicious plugin installation and has left tens of thousands of Grafana instances exposed. Originally written in June 2025.
A security tip highlighting the rise of tariff-related scams that exploit confusion around U.S. trade policies, using phishing messages and spoofed websites to trick individuals and businesses into paying fake fees or sharing sensitive information. Originally written in May 2025.
An overview of chained Ivanti Endpoint Manager Mobile vulnerabilities (CVE-2025-4427 and CVE-2025-4428) that enable unauthenticated remote code execution and have been actively exploited by a China-linked threat actor. Originally written in May 2025.
An overview of a malware campaign using AI-generated TikTok videos to socially engineer users into installing infostealer malware via malicious PowerShell commands. Originally written in May 2025.
An overview of Scattered Spider’s shift toward targeting U.S. retail organizations, highlighting the group’s use of social engineering, credential abuse, and trusted access to breach enterprise environments. Originally written in May 2025.