Trojanized PuTTY ads compromise enterprise networks via Kerberos theft

🕵 Just published my latest investigation on mapping Lumma infrastructure. Showing how concentrated infra creates detection opportunities. Key Findings  ℹ️ 320+ malicious domains clustered on a single IP ℹ️ Heavy reliance on Aeza, Routerhosting, and Proton66 ASNs ℹ️ Certificate fingerprint pivots connecting distribution infrastructure back to C2 servers ℹ️ Clear patterns in domain naming conventions (.qpon, .top, .xyz, .ru) Full article ⬇️ https://lnkd.in/dKrJKw8X #ThreatIntel #ThreatHunting #Malware #Cybersecurity #Infostealers

Heads up: CISA has issued an urgent “patch immediately” warning after the discovery of the CVE‑2025‑33073 zero-day in Windows SMB clients. Xcape Inc.’s John Carberry says: “Attackers are tricking machines into connecting to malicious servers … the digital front door is unlocked if you haven’t patched and restricted outgoing SMB.” Secure or get breached. > https://lnkd.in/gwFe7EFT @SiliconAngle #Cybersecurity #ZeroDay #XcapeInsights

A tool that gives you a full security review of your Auth0 tenant? 👀 Yes, it exists. Say hello to #Auth0 CheckMate, a self-service CLI tool built for devs and security teams who want real answers, not assumptions. It checks for misconfigured apps, weak password policies, missing MFA, and a whole lot more. Want to see what else it catches? Read the latest blog by Shiven Ramji 👉 https://lnkd.in/gZYSf8qH #DevTools #CyberSecurity #ZeroTrust #OAuth

Identity is one of the most complex pieces of the stack. Checkmate for Auth0 is a huge win for developer efficiency, letting you test and debug identity logic locally and in isolation. This is the real meaning of shifting security left: finding and fixing critical auth issues before they ever touch production. Less guesswork, more confidence. Great tool! ♟️ #Checkmate #Auth0DevTools #DevSecOps Integrity software (Israel)

🛡️ Gladinet has released security updates for its CentreStack business solution to address a local file inclusion vulnerability (CVE-2025-11371) that threat actors have leveraged as a zero-day since late September. ⚠️ The security update that addresses CVE-2025-11371 is now available in CentreStack version 16.10.10408.56683 and administrators are strongly recommended to install it. ➡️ https://lnkd.in/d3zHN7d8 #cybersecurity #patching #centrestack

Introducing the new Easy Resolve PRO plugin 🚀 We’re excited to announce the release of our highly requested #BunkerWeb PRO feature "Easy Resolve", designed to help you effortlessly handle false positives like a true pro. See it in action here in a quick video 🎥 We currently support ModSecurity, DNSBL and Blacklist reports and more integrations are coming soon to enhance your workflows. #CyberSecurity #WAF #WAAP #OpenSource #OpenSecurity

⚠️ CVE-2025-7052: HIGH LatePoint plugin for WordPress up to version 5.1.94 is vulnerable to Cross-Site Request Forgery due to missing nonce validation. Attackers can reset passwords by tricking users into visiting malicious links. Admin accounts can also be compromised. Update recommended. Source : https://lnkd.in/edwkew7g #CVE20257052 #CVE #CyberSecurity #Vulnerability #CVEFind #CVEFindAlert

💡 Golden Tip for DUO Administrators! If you're using DUO for MFA in your organization, here's a simple trick to optimize your costs 👇 Instead of enabling all Active Directory users for DUO (which can quickly increase your subscription cost 💸), ➡️ Create a security group in AD — for example, name it “Duo Group.” ➡️ Add only the specific users who actually need DUO authentication. By integrating this group with DUO, only the selected users inside that group will be synced and licensed — resulting in significant cost savings without compromising security. 🔐 A small configuration change, but a big impact on your DUO billing! #DuoSecurity #SysAdminTips #ITAdmin #ActiveDirectory #CyberSecurity #MFA #CostOptimization

If DNS can be fooled, users can be redirected without noticing. Turn on DNSSEC and review your TLS. A quick ShieldCheck run highlights missing DNSSEC and weak DNS records, then shows how to fix them. 𝗧𝗲𝘀𝘁 𝘆𝗼𝘂𝗿 𝗱𝗼𝗺𝗮𝗶𝗻: https://lnkd.in/eDgCD-CQ #CyberSecurity #ITSupport #ITSupportKent #Kent #DNS #DNSSEC