Login Subscribe

7secure Coverage

Articles

Search and filter the broader reporting stream across incidents, AI security, policy, and operational coverage.

Vulnerabilities & Exploits

Amaranth‑Dragon weaponizes CVE‑2025‑8088 against SE Asia enterprises

Checkpoint researchers have confirmed that the state‑aligned threat group Amaranth‑Dragon has added the newly disclosed CVE‑2025‑8088 remote code execution flaw to its espionage arsenal. The group now deploys a multi‑stage payload that first exploits the vulnerability to gain initial code execution on vulnerable servers, then

Vulnerabilities & Exploits

Shadow Campaigns Exploit Zero‑Days to Hijack Global Critical Infrastructure

Shadow Campaigns Exploit Zero‑Days to Hijack Global Critical Infrastructure

Unit 42 tracked the Shadow Campaigns group leveraging a blend of publicly known flaws and undisclosed zero‑day exploits to breach critical infrastructure across multiple continents. The attackers began with credential‑theft, moved laterally using privilege‑escalation techniques, and deployed remote code execution payloads to secure footholds and establish long‑

Global espionage campaigns and AI‑driven threats shape February's cyber landscape 🌐; Cloud misuse and social platform safeguards add new twists 🔐

Global espionage campaigns and AI‑driven threats shape February's cyber landscape 🌐; Cloud misuse and social platform safeguards add new twists 🔐

Good day, February 10 2026 – here’s your concise briefing on the most critical cyber and AI threat developments of the day. Today's headlines * Shadow Campaigns exploit over a dozen vulnerabilities across SAP, Microsoft, and D‑Link products. * Amaranth‑Dragon leverages the newly disclosed CVE‑2025‑8088 for

SOC & Automation

VMware vDefend Brings AI‑Powered Zero‑Trust Lateral Controls to Private Clouds

VMware vDefend Brings AI‑Powered Zero‑Trust Lateral Controls to Private Clouds

VMware has introduced vDefend, a zero‑trust module embedded in its private‑cloud stack that enforces granular, policy‑driven controls on east‑west traffic. The solution uses AI/ML analytics to continuously profile workloads, spot deviations from normal behavior, and trigger automated containment actions without human intervention. By integrating directly

Malware & Ransomware

CrowdStrike Wins Gartner Customers’ Choice for EASM – A Defender’s Edge

CrowdStrike Wins Gartner Customers’ Choice for EASM – A Defender’s Edge

CrowdStrike was named the sole winner of Gartner’s 2025 Customers’ Choice award in the External Attack Surface Management (EASM) category. The honor reflects a broad vote from security professionals who evaluated platforms on real‑world performance, ease of use, and the ability to surface unknown assets and exposures across

Malware & Ransomware

CrowdStrike Linux Sensor Adds Real‑Time Web‑Shell Detection for Containers

CrowdStrike Linux Sensor Adds Real‑Time Web‑Shell Detection for Containers

CrowdStrike’s newest Linux sensor release introduces a dedicated web‑shell detection engine that monitors file system changes and command‑line activity across containerized workloads. By correlating anomalous file creation, modification timestamps, and unusual execution patterns, the sensor can flag and block malicious scripts that attackers drop to maintain persistence

Malware & Ransomware

Digital Parasite Tactics Extend Ransomware Dwell Time and Amplify Damage

Digital Parasite Tactics Extend Ransomware Dwell Time and Amplify Damage

A new “Digital Parasite” model is emerging in ransomware campaigns. Threat actors first infiltrate a network using covert espionage techniques—credential theft, living‑off‑the‑land binaries, and stealthy lateral movement—to establish a persistent foothold. Instead of launching immediate encryption, they remain hidden for weeks or months, harvesting data,

Threat Intelligence

Record 31.4 Tbps DDoS Flood Shatters 2025 Benchmarks, Demands Robust Defense

Record 31.4 Tbps DDoS Flood Shatters 2025 Benchmarks, Demands Robust Defense

In Q4 2025 Cloudflare observed a single volumetric DDoS assault that peaked at 31.4 terabits per second, overwhelming the victim’s upstream links and saturating multiple ISP peering points. The attack leveraged a botnet of compromised IoT devices and exploited amplification vectors across DNS and Memcached services, sustaining the