Login Subscribe

7secure Coverage

Articles

Search and filter the broader reporting stream across incidents, AI security, policy, and operational coverage.

Malware & Ransomware

Amaranth‑Dragon Exploits New CVE‑2025‑8088 to Penetrate SE Asian Networks

Amaranth‑Dragon Exploits New CVE‑2025‑8088 to Penetrate SE Asian Networks

Check Point’s threat intel team has identified the state‑sponsored group Amaranth‑Dragon actively weaponizing the freshly disclosed CVE‑2025‑8088 flaw in widely deployed server software. The actors first exploit the remote code execution bug to gain initial access, then cascade the intrusion with credential‑dumping utilities such

Vulnerabilities & Exploits

Active Scans Target New BeyondTrust RCE Vulnerability – Prepare for Privileged Access Threats

Active Scans Target New BeyondTrust RCE Vulnerability – Prepare for Privileged Access Threats

GreyNoise researchers have identified a surge in scanning activity aimed at the recently disclosed BeyondTrust remote code execution flaw (CVE‑2026‑1731). Threat actors are probing default ports and common deployment configurations of the privileged‑access management solution, gathering data that would enable a targeted exploit of the vulnerability. If

Critical RCE Exploits and AI‑Driven Fraud Threaten Enterprise Resilience 🚨. Elevate Detection and Trust Now 🔐

Good morning, February 16, 2026 – here are the top threats shaping your security agenda. Today's headlines * BeyondTrust RCE reconnaissance signals emerging privileged‑access risk * Amaranth‑Dragon leverages new CVE for Southeast Asian espionage * QR code phishing surges across mobile and web channels * Romanian pipeline attack underscores OT vulnerability

Vulnerabilities & Exploits

Six Zero‑Day Patches Hit Windows – Patch Tuesday Demands Immediate Action

Six Zero‑Day Patches Hit Windows – Patch Tuesday Demands Immediate Action

Microsoft’s February Patch Tuesday delivered more than 50 updates, including six critical zero‑day fixes. The new patches address CVE‑2026‑21510, CVE‑2026‑21513, and CVE‑2026‑21514, which affect the Windows Shell, MSHTML rendering engine, and Microsoft Word. Security researchers have confirmed active exploitation of these flaws

Threat Intelligence

VMware's vDefend Lateral Security Automates Micro‑Segmentation for Zero‑Trust Private Clouds

VMware's vDefend Lateral Security Automates Micro‑Segmentation for Zero‑Trust Private Clouds

VMware introduced vDefend Lateral Security, a solution that embeds continuous micro‑segmentation and automated threat containment directly into private‑cloud workloads. The platform continuously maps workload communication patterns, enforces least‑privilege policies in real time, and isolates compromised assets without human intervention, extending its controls across multi‑cloud environments. For

SOC & Automation

Falcon Fusion SOAR Supercharges SOC Automation and Cuts Response Times

Falcon Fusion SOAR Supercharges SOC Automation and Cuts Response Times

CrowdStrike introduced Falcon Fusion SOAR, a native security orchestration, automation, and response platform that plugs directly into the Falcon ecosystem. The solution lets analysts build drag‑and‑drop playbooks, auto‑populate case data, and trigger actions across endpoint, cloud, and third‑party tools without writing code. By handling repetitive triage

Threat Intelligence

CrowdStrike Tops Gartner Peer Insights for Cloud‑Native Authentication

CrowdStrike Tops Gartner Peer Insights for Cloud‑Native Authentication

CrowdStrike has been named a Customers’ Choice in the 2026 Gartner Peer Insights for User Authentication. The accolade reflects strong user reviews and highlights the platform’s cloud‑native approach to identity verification, MFA, and credential protection across enterprise environments. For defenders, this recognition signals a vetted, market‑leading solution

Malware & Ransomware

Outlook Add‑In Hijacks Fuel AI‑Generated Malware in Blended Threat Campaigns

Outlook Add‑In Hijacks Fuel AI‑Generated Malware in Blended Threat Campaigns

A wave of Outlook add‑in hijacks has been observed, with threat actors compromising legitimate Office Store extensions to inject malicious code that executes when users open email. The compromised add‑ins are being used to deliver credential‑stealing payloads, ransomware droppers, and to recruit infected machines into an existing