Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

When a single identity is linked to multiple accounts across your environment, visibility gaps can occur, opening opportunities for attackers to exploit. This risk is especially high for executives and privileged users with access to your most sensitive data. In this clip, our expert Tyler Reese explains why identity correlation is essential for proactive threat detection and ITDR. Learn how identity mapping and account cataloging enhance SOC visibility and help prevent cross-account attacks.

This week’s briefing covers: Critical Sudo Vulnerability Allows Priv Esc to Root The flaw arises from unsafe handling of the --chroot (-R) option, where sudo processes user-provided configurations (including nsswitch.conf) from within the chroot environment before validating user privileges. This allows a local attacker to construct a malicious chroot with crafted NSS configuration that forces sudo to load attacker-controlled shared libraries as root, effectively bypassing authentication.

First, we look back at Microsoft’s major shift to remove endpoint protection from the Windows kernel. When we first covered it, it was a proposed change—now it's happening, and the implications are big. Next, we revisit a segment on GPT-4o and how generative AI is fueling the next wave of social engineering attacks. It's smarter, faster, and more convincing than ever. And finally, a refresher on the arrest of a Scattered Spider leader. While that made headlines, the group's activity hasn’t slowed down, they're still very much on the radar, as we discussed just last week.

An average healthcare org uses over 1,000 SaaS apps. But do you know which create, receive, transmit, or store PHI? Which support MFA? Which are dormant but still risky? If not, you’re not ready for HIPAA updates in 2025. In case you missed it, catch our CTO Avesta Hojjati, Ph.D.