Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

On April 16, 2025, fixes were released for a maximum severity vulnerability in Erlang/OTP SSH, CVE-2025-32433. Erlang/OTP SSH is a library within the Erlang/OTP platform, typically used in telecommunications, messaging, IoT, and distributed applications. CVE-2025-32433 allows unauthenticated remote threat actors to achieve remote code execution (RCE) in the SSH daemon. The issue arises due to a flaw in SSH protocol message handling, which permits the sending of protocol messages before authentication.

Let’s be honest — when most people hear “cybersecurity training,” their eyes glaze over faster than a workstation running Windows 98. But here’s the kicker: 74% of data breaches still involve a human element, whether through social engineering, errors, or misuse, according to Verizon’s 2023 DBIR. That’s not just a stat — it’s a blinking neon sign pointing to the importance of cybersecurity culture.

If there’s one truth in payments, it’s this: the network always wins. Think of what Visa and Mastercard created: not just payment rails, but global ecosystems of merchants, issuers, acquirers, and processors. Their networks didn’t just move money—they connected entire economies. As digital assets move into the mainstream, the same principle applies. But the networks of tomorrow won’t be built on closed systems and settlement delays.

The recent financial crisis surrounding MITRE and the CVE program has sent shockwaves through the cybersecurity industry. For decades, CVEs have been the de facto index of software vulnerabilities. They’ve structured how we communicate, prioritize, and track issues across the ecosystem. But now, with their future uncertain, we’re forced to ask: what if the CVE system collapses? And more importantly—what should come next?

In this blog post we'll walk you through the essential steps of getting started with LimaCharlie's SecOps Cloud Platform. This guide is designed for technical security professionals who want to leverage LimaCharlie's capabilities to enhance their organization's security posture. By the end of this guide you will have configured your organization in LimaCharlie, deployed sensors, and enabled detection and response rules.

Imagine waking up to news that your company’s data has been leaked, your customers' trust is shattered, and your brand’s reputation is in tatters. Cybercriminals don’t wait for you to react—they exploit vulnerabilities the moment they find them. You're already playing a dangerous game if your security measures are outdated or reactive.

While retail cybersecurity concerns only gain attention as the holiday shopping season approaches, the reality is retail is a 24/7/365 operation and so are its associated security issues. Recently, we sat down with Craig Searle, Director, Consulting & Professional Services in Pacific at Trustwave, to discuss the security moves retailers need to have in place. Question: Let's start off in your neighborhood and explore the Australian retail space for a moment. Is there anything unique to this region?

APIs are now the most attacked layer in the application stack— APIs are being hit 68% more often per host than traditional web apps with APIs facing 1600% more DDoS traffic than web apps. This was found in the state of application security 2024 report where we analyzed 2 billion API attacks blocked on AppTrana WAAP. This isn’t surprising. APIs are inherently automation-friendly, often underprotected, and expose direct access to data and logic.

If you’ve been doing digital forensics, detection engineering, or threat hunting for some time, you already know how essential Windows event logs are for spotting malicious activities. Although Windows’ default logging has improved over the years, it still falls short of delivering the depth of visibility needed to catch sophisticated threats. That’s where Windows Advanced Audit Policies come into play. It offers additional, high-value events that are crucial for detection and hunting.

Cyberattacks continue to evolve and increase in frequency, making it difficult for organizations to keep up. This can leave them vulnerable, especially when resources are constrained, and no clear processes exist to respond in a timely manner. Coupled with the SEC’s new regulations around risk disclosure and incident reporting, this lack of preparedness is a growing concern.