In this cautionary tale of averting a large-scale supply chain attack, a follow-up to Kudelski Security researchers @tmlxs and @nathanhamiel’s Black Hat USA presentation, we detail our RCE on CodeRabbit’s production servers and write access to 1m repos.

🚨 Akira ransomware is exploiting a likely zero day in SonicWall Gen 7 SSL-VPNs, bypassing MFA and hitting fully patched devices. Kudelski Security’s IR team has confirmed multiple intrusions. Read the full advisory 👉 #CyberSecurity #KudelskiSecurity

🚨 CVE-2025-53770 is under active exploitation. If you're running Microsoft SharePoint on-prem, your environment could be exposed. Get the technical breakdown and mitigation steps:.🔗 #CyberSecurity #CVE202553770 #SharePoint #Infosec #ZeroDay

🚨 Big SAP Security Warning 🚨. Hackers are hitting a new SAP NetWeaver flaw (CVE-2025-31324) to sneak in webshells and Cobalt Strike tools. It’s serious and could lead to ransomware attacks. Learn what to watch for: #CyberSecurity #SAP #ZeroDay

ICYMI: Scattered Spider uses social engineering to bypass MFA, breach clouds, and launch ransomware. Learn how to defend against this human-layer attack. 🔗 #CyberSecurity #Ransomware #ZeroTrust #MFA #KudelskiSecurity

Hackers are hitting ASP . Net apps, exploiting exposed MachineKeys for RCE and stealthy webshells like Godzilla. They’re pivoting fast to tools like Cobalt Strike and chasing privilege escalation. Scan, patch, stay ahead. #CyberSecurity #KudelskiSecurity

Blockchain is transforming business, but it’s not secure by default. Smart contract bugs, governance attacks, and hidden risks can cost millions. In our latest ModernCISO blog, we show how to protect your blockchain investments. 🔗 #BlockchainSecurity

In today's fast-paced industrial environments, a single misstep can trigger a major crisis in seconds. 🔗 Read the full article here: #CyberSecurity #OTResilience #CrisisManagement #IndustrialOperations #Governance #ITOTConvergence

How does Pernod Ricard scale cyber resilience across 160+ countries?. With Kudelski Security’s MDR ONE Resolute, they cut false positives, sped up response times & gained 24/7 threat coverage. Read our case study: #CyberSecurity #MDR #XDR #PernodRicard

🔐 Is your company truly secure? Boost your cybersecurity by mastering Pentesting basics:. ✅ Pentesting explained.✅ Pentesting types.✅ Red Team vs Pentesting.✅ Red vs Blue Teams. Get the answers ➡️ #Cybersecurity #Pentesting #RedTeam #BlueTeam

Cyber threats don’t wait. That’s why Pernod Ricard trusts Kudelski Security’s MDR ONE Resolute for 24/7 protection. CTO Xavier Gaubert shares how this partnership has strengthened their security and reduced risk. Watch now: #CyberSecurity #MDR #CISO

Critical Palo Alto PAN-OS bug severity upgraded and actively exploited. Stay informed and read more on our blog: #CyberSecurity #PaloAlto #PANOS #Vulnerability #ThreatIntel #InfoSec #CISO #NetworkSecurity #RiskManagement #ZeroTrust.

🔹 Cybersecurity Maturity: A Journey, Not a Destination 🔹. Maturity isn’t a box to check—it’s incremental progress. The best CISOs focus on getting 1% better every day. Michael Robbins of Kudelski Security shares a risk-based approach to building resilient, adaptable security.

The TikTok ban isn’t just a headline—it’s a game-changer for tech, data, and geopolitics. - Who owns your data?.- Is your security strategy ready for global scrutiny?.- Can tech survive as a political battleground?. Dive into our latest blog to uncover the lessons that CISOs

🔒 Securing OT Environments is Critical 🔒. Cyber threats targeting OT systems in energy, healthcare, & transportation are growing. Traditional security approaches no longer suffice. Discover practical steps to strengthen OT defenses and safeguard critical operations in our

🚨 Critical Alert for FortiOS & FortiProxy Users 🚨. A critical security issue is being actively exploited, allowing attackers to bypass authentication. Take steps to understand the risks and protect your organization. 👉 Read our latest blog for key insights:

Deepfakes are more than just tech buzz—they're tools for scams, harassment, & social engineering. Kudelski Security’s Nathan Hamiel reveals what CISOs need to know—and how to fight back—in his latest WEF article. 🔗 #AI #Deepfakes #Cybersecurity #CISOs.

📢🔒 New Security Advisories published today on @KudelskiSec Research blog: Adobe Commerce CVE-2024-34102 CosmicSting, Cleo File Transfer CVE-2024-50623, Windows LDAP CVE-2024-49112. #CyberSecurity #VulnerabilityManagement #InfoSec

Read Naveen's post on @KudelskiSec research 'New IT Support in Town' for an explanation of the Blackbasta registration bombing attack, with some new detection queries