Editorial articles, analysis, and long-form security commentary from the 7secure team.
vulnerability management
CISA incorporated eight actively exploited vulnerabilities into the KEV catalog, including three Cisco SD-WAN Manager flaws requiring urgent patching by federal agencies.
4/26/2026
threat intel
CISA mandated U.S. government agencies patch Catalyst SD-WAN Manager systems within four days due to active exploitation of CVE-2026-20133. Cisco's advisory currently states they are unaware of public exploitation, cr...
4/26/2026
vulnerabilities
A critical vulnerability, CVE-2026-5752 (CVSS 9.3), in Cohere's Terrarium sandbox allows remote attackers to achieve root code execution via Pyodide prototype traversal, leading to container escape. This finding under...
4/26/2026
threat intel
Stolen credentials remain the primary initial access vector across modern breaches, often leading directly to ransomware deployment and persistence. The integration of AI is compressing the window for incident respons...
4/26/2026
threat intel
A former ransomware negotiator has pleaded guilty to actively assisting the BlackCat/ALPHV ransomware group in attacks conducted between April and November 2023. This case highlights severe insider risk when trusted i...
4/26/2026
threat intel
Vercel identified an expanded set of compromised customer accounts following an investigation into a security incident tied to Context.ai, highlighting risks associated with third-party OAuth access. The ongoing probe...
4/26/2026
government
France Titres (ANTS), the agency managing secure administrative documents, confirmed a data breach impacting 11.7 million accounts after a threat actor began offering the stolen citizen data for sale. The agency has e...
4/26/2026
threat intel
Unit 42 research reports that TGR-STA-1030 remains an active threat, particularly in Central and South America.
4/26/2026
industry news
Fast16 malware from 2005 predates Stuxnet by five years, targeting engineering software to sabotage calculations and reshape cyberwar history.
4/26/2026
industry news
CISA adds 4 exploited CVEs including CVSS 9.9 SimpleHelp flaw, mandating FCEB mitigation by May 8, 2026 to reduce ransomware and botnet risk.
4/26/2026
threat intel
Unit 42 analyzes npm supply chain evolution post-Shai Hulud. Discover wormable malware, CI/CD persistence, multi-stage attacks and more.
4/26/2026
threat intel
What are the next steps for security leaders in this new age of frontier AI? We answer the top 10 questions customers are asking.
4/26/2026
threat intel
Unit 42 reveals how multi-agent AI systems can autonomously attack cloud environments. Learn critical insights and vital lessons for proactive security.
4/26/2026
industry news
96% struggle to validate exploitability in 2026 CTEM programs, with 42% SOC time wasted, slowing real threat response.
4/26/2026
industry news
Monday cybersecurity recap on evolving threats, trusted tool abuse, stealthy in-memory attacks, and shifting access patterns.
4/26/2026
industry news
Context.ai breach enabled Google Workspace takeover at Vercel, exposing limited customer credentials and prompting $2M data sale claim.
4/26/2026
threat intel
Unit 42 Frontier AI Defense neutralizes AI-powered attacks before they operationalize at scale. We combine AI models with world-class expertise.
4/26/2026
threat intel
Unit 42 finds frontier AI models enhance vulnerability discovery, acting as full-spectrum security researchers. They enable autonomous zero-day discovery and faster N-day patching.
4/26/2026
industry news
Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems and are attempting to sell stolen data.
4/26/2026
