NCSC Shares Pen Testing Defense Tips

The UK’s National Cyber Security Centre (NCSC) published guidance on July 1 based on insights from penetration testers who work with the agency. This article has been indexed from CyberMaterial Read the original article: NCSC Shares Pen Testing Defense Tips

Organizations struggle to prioritize cyber risks

Security teams at the vast majority of organizations cannot effectively consolidate their cyber risk data, according to Filigran’s latest State of Threat Management report. This article has been indexed from CyberMaterial Read the original article: Organizations struggle to prioritize cyber…

Fake Google and Cloudflare Verification Pages Spread StealC, HijackLoader, and NetSupport Malware

Threat actors are currently exploiting sophisticated ClickFix social engineering campaigns that mimic Google and Cloudflare verification systems to distribute several high-impact malware families, including StealC, HijackLoader, NetSupport RAT, and newly identified loaders. Recent threat intelligence research indicates that these campaigns…

Microsoft Exchange SSRF Vulnerability Lets Low-Privileged Attackers Read Arbitrary Files

A newly disclosed vulnerability in Microsoft Exchange, identified as CVE-2026-45504 (CVSS score: 8.8), exposes a critical server-side request forgery (SSRF) flaw. This issue allows authenticated low-privileged users to access and read arbitrary files from vulnerable Exchange servers. The vulnerability, discovered…

Medtronic Data Breach Impacts 3.8 Million People

Medical technology giant Medtronic is notifying more than 3.8 million individuals that their personal and medical information was compromised in a recent data breach. The incident occurred in April 2026, when the infamous extortion group ShinyHunters accessed the company’s corporate…