Login Subscribe

7secure Coverage

Articles

Search and filter the broader reporting stream across incidents, AI security, policy, and operational coverage.

Vulnerabilities & Exploits

CISA Flags Open‑Source Tool Abuse Fueling Modern Intrusions

The Cybersecurity and Infrastructure Security Agency (CISA) released an advisory showing that adversaries are increasingly turning to publicly available open‑source utilities—such as Nmap, PowerShell scripts, and credential‑dumping tools—to map networks, exploit known vulnerabilities, and embed back‑doors. By leveraging these freely accessible resources, threat actors can

Threat Intelligence

Conpet Oil Pipeline Outage Shows Energy Sector’s Growing Cyber Vulnerability

Conpet Oil Pipeline Outage Shows Energy Sector’s Growing Cyber Vulnerability

On February 9, Check Point’s Threat Intelligence Report revealed that threat actors breached the IT environment of Conpet, Romania’s national oil pipeline operator. The attackers gained access to corporate services, manipulated DNS records and took the company’s public website offline. While the incident did not directly affect

Vulnerabilities & Exploits

Amaranth‑Dragon weaponizes CVE‑2025‑8088 against SE Asia critical infrastructure

Amaranth‑Dragon weaponizes CVE‑2025‑8088 against SE Asia critical infrastructure

Checkpoint’s threat‑intelligence team has linked the state‑aligned group Amaranth‑Dragon to active exploitation of the newly disclosed CVE‑2025‑8088. The actors deployed a custom exploit chain that leverages the vulnerability to gain initial foothold on targeted networks, then installed bespoke persistence modules and anti‑forensic tools

Vulnerabilities & Exploits

Shadow Campaigns Expose Global Espionage Exploiting SAP and Exchange Flaws

Shadow Campaigns Expose Global Espionage Exploiting SAP and Exchange Flaws

Unit42’s “Shadow Campaigns” report uncovers a coordinated espionage effort that has compromised organizations worldwide by chaining together a variety of known vulnerabilities. Attackers leveraged privilege‑escalation flaws in SAP systems and remote code execution bugs in Microsoft Exchange to gain footholds, move laterally, and exfiltrate sensitive data. The campaign’

Global Espionage Campaigns & Record DDoS Attacks 🌐🚀. AI‑driven Threat Detection & Ransomware Evolution 🤖🛡️.

Global Espionage Campaigns & Record DDoS Attacks 🌐🚀. AI‑driven Threat Detection & Ransomware Evolution 🤖🛡️.

Hello, here is your daily cybersecurity and AI threat intelligence roundup for February 10, 2026. Today's headlines * Shadow campaigns exploited over 15 high‑profile software vulnerabilities. * Amaranth‑Dragon leverages new CVE‑2025‑8088 for espionage in Southeast Asia. * Critical infrastructure hit: Romania’s Conpet pipeline suffered a disruptive

Malware & Ransomware

PDFs Weaponized to Drop Remote Access Trojan via Malicious JavaScript

PDFs Weaponized to Drop Remote Access Trojan via Malicious JavaScript

Security researchers observed a new phishing campaign that distributes seemingly benign PDF documents. When opened, the PDFs execute embedded JavaScript that silently contacts a malicious server, downloads a payload, and installs a remote‑access trojan (RAT) on the victim’s machine. The infection chain leverages legitimate PDF reader features, bypasses

Threat Intelligence

vDefend Extends Zero‑Trust Automation to VMware Private Clouds

vDefend Extends Zero‑Trust Automation to VMware Private Clouds

VMware’s security team unveiled vDefend, a solution that embeds zero‑trust principles directly into private cloud workloads. By automating policy creation, continuous compliance checks, and real‑time threat detection, vDefend enforces least‑privilege access across VMs, containers, and Kubernetes clusters without manual rule‑writing. The blog details the architecture,