Security researchers at Huntress Labs have identified a vulnerability in SolarWinds’s Web Help Desk that threat actors are exploiting to allow them to execute code remotely.
The vulnerability was listed on the Cybersecurity and Infrastructure Security Agency’s known exploited vulnerabilities last week, and SolarWinds issued a warning, classifying it as a “critical severity” for users
On February 5, 2026, a Massachusetts federal judge issued an order staying information-sharing between the IRS and ICE, as well as a preliminary injunction prohibiting Kristi Noem, Secretary of the Department of Homeland Security, ICE, acting-Director Todd Lyons, and any DHS and ICE agent from “inspecting, viewing, using, copying, distributing, relying on, or otherwise acting
Security professionals rely on the implementation of multifactor authentication (MFA) to defend against phishing attacks and intrusions. Unfortunately, we can’t completely rely on MFA to protect us as threat actors (more specifically, ShinyHunters) are now targeting companies in technology, financial services, real estate, energy, healthcare, logistics, and retail with synchronized vishing-phishing attacks.
The newest attacks
In a strongly worded order, Judge Julie A. Robinson of the U.S. District Court for the District of Kansas publicly admonished and sanctioned four lawyers representing a plaintiff company in a patent infringement case for using ChatGPT to find caselaw to support a response to a motion to exclude an expert witness, and a response
It’s that time of the year when W2s and 1099s pile up in preparation for that dreaded tax return filing deadline. Now that everyone is using AI tools to assist with complicated tasks, as they seem to make any task, even the most dreaded, more efficient, it is tempting to use one to assist with
We continue to alert our readers to the uptick and successful use of vishing attacks against companies. Threat actors continue to be creative in developing strategies to use vishing to gain access into systems.
According to Cyberscoop, (a publication that I read religiously), Mandiant has confirmed that “multiple cybercrime groups,” including ShinyHunters, are “combining
On January 23, 2026, a bipartisan group of 35 state Attorneys General issued a letter to xAI stating their concern “about artificial-intelligence produced deepfake nonconsensual intimate images (NCII) of real people, including, children, wherever it is made or found,” including xAI’s chatbot, Grok. This is in addition to the letter sent on January 13, 2026
Years ago, the Federal Trade Commission (FTC) designated the last week of January asIdentity Theft Awareness Week. For 2026, this week is devoted to education and awareness about identity theft, which is an ever-present problem.
According to the FTC, “identity theft is one of the most-reported problems to the FTC every year.” The FTC
The Symantec and Carbon Black Threat Hunter Team recently released its Ransomware 2026 report that contains helpful intelligence into the state of ransomware attacks and insight into how they are evolving, despite law enforcement’s success in taking down some of the largest ransomware gangs in 2025.
The very first statement is a sobering reality: “Ransomware
A recent report published by Cyera entitled “State of AI Data Security: How to Close the Readiness Gap as AI Outpaces Enterprise Safeguards,” based on a survey of 921 IT and cybersecurity professionals, finds that although 83% of enterprises “already use AI in daily operations…only 13% report strong visibility into how it is