Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

A critical remote code execution vulnerability in the Windows Server Update Services (WSUS) server role tracked as CVE 2025 59287 (CVSS: 9.8) addressed in the October patch cycle is under active exploitation. Researchers at RandoriSec produced a report on the current state of Microsoft Teams Access Token theft, a tactic that has been used by many threat actor groups to move laterally within environments and assist in internal phishing attacks.

Most people don’t realize it, but software is what economists call a credence good, you can’t easily judge its quality before or after you buy it. That means organizations are often running on code they can’t fully evaluate for security or reliability.

How AI prevents catastrophic mistakes in complex systems.

Keeper’s Endpoint Privilege Manager is an advanced Privileged Elevation and Delegation Management solution that eliminates standing admin rights and provides just-in-time elevated access across your Windows, macOS, and Linux endpoints. This video will provide a simple walkthrough of the setup, deployment and utilization of Keeper Endpoint to significantly reduce the threat of ransomware, insider threats and data breaches – all without sacrificing productivity or performance.

“AI-powered.” “AI-native.” “End-to-end AI.” At some point, it all sounds the same—but it’s not. In this “Heard in the Founder Group Chat” episode, Tom Skelton, Information Security and Technology Lead at Inflo, shares how to spot real AI that saves time (and risk)—and how to avoid platforms that just rebrand old features.

Q3 provided us with another opportunity to dig into API vulnerabilities, exploits, and breaches. We'll dive into the details, picking out the trends that impact how you defend your APIs. This quarter's report includes a special focus on business logic abuse. Join the webinar to learn.

Stop managing DNN users manually. Sync your Active Directory (On-Prem or Azure AD) with DNN to automate user provisioning, updates, and access in real time. With miniOrange AD Integration for DNN, you get: • Automated onboarding and offboarding • Real-time role and attribute sync • Secure LDAP and Windows SSO login Simplify identity management. Strengthen security. Contact Us: dnnsupport@xecurify.com.

In this episode of No Time to Drift, Reach CEO Garrett Hamilton sits down with Sebastian Goodwin (Chief Trust Officer at Autodesk), John Rasmussen (Senior Analyst at TAG Infosphere, former CISO at Syneos Health), and Ed Amoroso (CEO, TAG Infosphere) to unpack one of security’s most persistent challenges — configuration drift. They explore why drift happens quietly, how it compounds into real risk, and how AI-driven automation is helping teams detect, manage, and prevent drift faster — without losing human oversight or control.

Digital playgrounds now see AI posing as kids, hiding malicious code in downloads and breaching both business and family boundaries.