Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

A serious new vulnerability (CVE-2025-53770, also known as “ToolShell”) is actively being exploited by cybercriminals to hack into on-premises Microsoft SharePoint Servers. The vulnerability, along with CVE-2025-53771 was discovered around July 18, 2025. Bitsight Research classifies CVE-2025-53770 as 10 out of 10 on our Dynamic Vulnerability Exploit (DVE) scale and CVE-2025-53771 as a 5.82 out of 10 indicating severe and moderate urgency respectively.

Acreed, a new malware-as-a-service (MaaS) platform, appears to have taken the top spot in the infostealer ecosystem. We suspect this is due to the takedown of Lumma Stealer (LummaC2) in May 2025. In just its first week, Acreed was observed uploading over 4,000 stolen credential logs to a dark web Russian Market.

Sharing photos is an important part of our lives to share our memories with friends, family, and colleagues. It allows you to stay connected, relive special moments, and strengthen relationships by letting others experience your life visually. However, when sharing photos online, especially on social media, you have to be careful, as photos can disclose information you don’t want others to know, such as your location, where you work, where your kids go to school, or your daily routines.

The cybersecurity industry has long been caught in the pendulum swing between platform consolidation and best-of-breed solutions. According to a recent Team8 CISO Village survey, it seems that pendulum may be swinging from recent years where consolidated platforms led the market back to best-of-breed. The survey reveals that 60% of CISOs now favor best-of-breed technologies over consolidated platforms.

The regulatory landscape is constantly evolving to address new technologies and risks. As a result, organizations must navigate an increasing number of frameworks to protect their systems and data. ‍ Manually managing complex compliance workflows, such as control effectiveness monitoring, can lead to inconsistent documentation, human error, and costly audit failures.

CrowdStrike Falcon Complete Next-Gen MDR has been ranked in the 2025 Frost Radar: Global Managed Detection and Response, securing the top placement among 19 vendors and leading in both Innovation and Growth. This recognition validates CrowdStrike’s leadership in delivering round-the-clock managed detection and response (MDR) protection through the combination of elite expertise and AI-accelerated investigation and response powered by the AI-native CrowdStrike Falcon platform.

Container escape represents one of the most significant security threats in modern cloud computing environments. This allows attackers to break free from container isolation mechanisms, potentially leading to complete compromise of host systems and broader cloud infrastructure.

In today’s digital landscape, where cyber threats grow more sophisticated and frequent, organizations must prioritize robust strategies to protect their critical assets—data, systems, and networks. Asset risk mitigation is a cornerstone of cybersecurity, involving the identification, assessment, and management of risks to these valuable resources. Two primary approaches dominate this field: proactive and reactive risk mitigation.