%term

StrongestLayer Research Finds Trusted Platforms Like DocuSign and Google Calendar Are Now the Primary Email Attack Surface

Jan 12, 2026 By StrongestLayer

77% of attacks impersonated business-critical brands such as DocuSign, Microsoft, and Google-platforms most organizations cannot afford to block.

Read Post

Read more about StrongestLayer Research Finds Trusted Platforms Like DocuSign and Google Calendar Are Now the Primary Email Attack Surface

Automate Security: A Practical Guide for Modern Organizations

Jan 12, 2026 By SafeAeon Inc. In SafeAeon

Many attacks start without drawing attention. Nothing looks obviously wrong at first. It could be through a reused password or an exposed service that allows attackers to gain access to their systems. Sometimes, a well-crafted email is all that's needed. By the time security teams notice something is wrong, attackers have already been inside for days or weeks. This poses a huge challenge for many security teams. They often use multiple tools and conduct manual checks to find signs of intrusion.

Read Post

SafeAeon

Read more about Automate Security: A Practical Guide for Modern Organizations

Cyber War is Already Here. CISOs Must Prepare for Cyber Conflict

Jan 12, 2026 By SafeBreach In SafeBreach

Cyber warfare isn’t coming—it’s already here. This conversation on The Cyber Resilience Brief dives into the Fifth Domain of Warfare—and why nation-state cyber activity should matter to every organization. From Russia’s chaos-driven campaigns to China’s long-game persistence, Iran’s retaliatory attacks, and North Korea’s financial theft—your network isn’t a bystander.

View Video

SafeBreach

Read more about Cyber War is Already Here. CISOs Must Prepare for Cyber Conflict

How to Protect Telematics Systems from Cyberattacks?

Jan 11, 2026 By SecuritySenses In SecuritySenses

Telematics systems face elevated cybersecurity risks due to continuous connectivity between vehicles, cloud servers, and users. This constant data exchange expands the attack surface across fleet operations, making these systems attractive targets for cyber threats. Cyberattacks on telematics infrastructure can expose sensitive data such as vehicle locations, driver behavior, operational workflows, and personal information. When compromised, this data can disrupt fleet operations, damage trust, and create serious compliance and regulatory risks.

Read Post

SecuritySenses

Read more about How to Protect Telematics Systems from Cyberattacks?

ConsentFix Attacks Fake Cloudflare Prompts

Jan 9, 2026 By Roger Grimes In KnowBe4

ClickFix attacks have been around for decades; only the name is new. ClickFix attacks use social engineering to trick users into clicking on buttons and links that the user is told are needed so their browser or computer can perform some desired action.

Read Post

KnowBe4

Read more about ConsentFix Attacks Fake Cloudflare Prompts

Initial Attack Vectors: How Most Cyber Attacks Begin

Jan 8, 2026 By SafeAeon Inc. In SafeAeon

Malicious actors use different tactics to launch cyberattacks, commonly referred to as attack vectors. They exploit misconfigurations, weak controls, and other poor security practices to gain unauthorized access to victims’ systems. There is a document co-authored by cybersecurity authorities from various countries, like the US, Canada, the UK, the Netherlands, and New Zealand. It is released by CISA (Cybersecurity and Infrastructure Security Agency).

Read Post

SafeAeon

Read more about Initial Attack Vectors: How Most Cyber Attacks Begin

Domains, DNS and Forgotten Risks in Modern Security Stacks

Jan 8, 2026 By SecuritySenses In SecuritySenses

When most cybersecurity teams map their threat landscape, they start with endpoints, users, cloud environments and network layers. It's a solid strategy - but it leaves one critical layer wide open: the domain and hosting infrastructure everything else depends on.

Read Post

SecuritySenses

Read more about Domains, DNS and Forgotten Risks in Modern Security Stacks

CTI roundup: SantaStealer, BlackForce, Ink Dragon

Jan 7, 2026 By Tanium In Tanium

SantaStealer spreads via Telegram and underground forums, the BlackForce phishing kit targets major brands, and Ink Dragon launches new attacks.

Read Post

Tanium

Read more about CTI roundup: SantaStealer, BlackForce, Ink Dragon

Behavioral Threat Detection: Identifying Attacks That Blend into Normal Activity

Jan 6, 2026 By SafeAeon Inc. In SafeAeon

Some attacks are easy to spot. Others aren’t. In many cases, nothing obviously breaks or crashes, and no malware ever shows up. Nothing looks wrong at first. Access appears normal, and systems continue to run as usual. Modern attacks are challenging to detect because attackers often use the same tools and access paths as legitimate users. In addition, attackers remain low-key and use access that appears normal.

Read Post

SafeAeon

Read more about Behavioral Threat Detection: Identifying Attacks That Blend into Normal Activity

Agentic AI Security: How Microsoft Prevents Autonomous Agent Attacks?

Jan 6, 2026 By Protecto In Protecto

As agentic AI systems move into the mainstream—powered by tool calling, MCP, and autonomous workflows—security is no longer a “nice to have.” It’s mission-critical. In this episode, we sit down with Raji, Principal Engineer & Manager for AI and Safety at Microsoft, to deep-dive into the rapidly evolving world of AI security, autonomous agents, and enterprise governance. Discover how Microsoft identifies and mitigates risks in agentic AI, distinguishes AI Security vs AI Safety, and enables organizations to deploy autonomous systems safely at scale—without slowing innovation.

View Video