All topics
This week brings some new insights into the origins and length of the Cl0p extortion attacks tied to the Oracle E-Business Suite vulnerability, big surges in scanning for Cisco ASA, Palo Alto, and Fortinet devices, and a huge upgrade to Apple bug bounty payouts.
The Clop extortion campaign on Oracle customers last week stemmed from months of intrusion activity tracking back to July 10.
Researchers say that all three campaigns are being driven at least in part by one threat actor.
What you see on these screens up here is a fantasy; a computer-enhanced hallucination. WarGames may be 42 years old (!) but its prescience about our current technocracy and race to take humans out of the loop is as clear as ever. Dennis Fisher, Lindsey O-Donnell-Welch, Zoe Lindsey, and Pete Baker sit down in front […]
A critical GoAnywhere flaw (CVE-2025-10035) is being targeted in attacks by a threat group known for deploying Medusa ransomware.
October 7, 2025 | 2 min read
Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft and extortion attacks.
October 6, 2025 | 2 min read
