Recent discussions in the AI community highlight concerns about the “AI Wall,” a term describing the diminishing returns observed when scaling AI models by increasing their size. This trend challenges the previously held scaling law, which posited that larger models would consistently yield better results. In this post, I summarize recent statements from prominent researchers and AI figures about their views on the AI Wall and present evidence suggesting that we have indeed hit an AI Wall.
Source
( 20
min )
Max Smeets explores how ransomware groups leverage public reporting and why we must disrupt the trust dynamic between threat actors and victims.
( 23
min )
Kymberlee Price reveals the technical chaos facing SMBs as they struggle with solutions aimed at bigger fish in the face of expanding crimeware.
( 23
min )
The new Outlook falls short of meeting the functionality and quality expectations of many businesses, yet Microsoft is pressing organizations to make the switch. To block an unwanted migration to the new client, administrators can configure several Group Policy settings, including one that allows users to revert to the previous version of Outlook.
Source
( 17
min )
Learn about the different types of insecure design vulnerabilities and how to identify them.
( 7
min )
In 2023, Bishop Fox reengineered Cosmos to give security teams the speed, scale, and flexibility needed to tackle growing attack surface challenges.
( 7
min )
What does New York's new AI Cybersecurity Guidance mean for financial institutions and other regulated companies?
( 6
min )
TL;DR: The Misconfiguration Manager DETECT section has been updated with relevant guidance to help defensive operators identify the most…
( 11
min )
In an Active Directory domain, it is crucial to sync the system time across all computers as accurately as possible. Since the 2016 version, Windows Server can greatly minimize discrepancies in system clocks. This feature, referred to as Accurate Time, can be configured with Group Policy settings, provided that specific conditions are fulfilled.
Source
( 18
min )
Learn the testing methodologies and security best practices for Azure Cloud Configuration Review.
( 12
min )
Discover Bishop Fox's survey on the current state of SonicWall appliances on the public internet.
( 15
min )
Windows 11 24H2 and Server 2025 improve the SMB protocol with a strong focus on security. One key feature is the ability to change ports to TCP 445, which offers enhanced security and flexibility. However, this capability is restricted to the QUIC transport on the server side.
Source
( 17
min )
This Shopify privilege escalation vulnerability could have resulted in the creation of unrestricted admin accounts.
( 8
min )
What makes securing crypto and blockchain organizations so different than other industries? Let's look at the data.
( 6
min )
Just in time for the holidays, sharper tools for faster defense
( 9
min )
Microsoft has rolled out significant updates to Windows Subsystem for Linux (WSL), enhancing its usability and security. This update introduces the official Red Hat Enterprise Linux (RHEL) distribution, simplifies installation with tar-based distros, and revamps the Getting Started experience with helpful documentation and tool integration. Enterprise users benefit from improved compliance and security through Intune and Microsoft Entra integration. Additionally, WSL version 2.4.4 unlocks these features, providing a smoother Linux experience within Windows.
Source
( 17
min )
It's time for another hacking tool roundup! We’ve polled our team of experts to bring you the most powerful and innovative penetration testing tools.
( 9
min )
Ruby Central hired Trail of Bits to complete a security assessment and a competitive analysis of RubyGems.org, the official package management system for Ruby applications. With over 184+ billion downloads to date, RubyGems.org is critical infrastructure for the Ruby language ecosystem. This is a joint post with the Ruby Central team; read their announcement here! […]
( 12
min )
Credential Guard in Windows Server 2025 enhances security by isolating credentials using Virtualization-Based Security (VBS). To enable Credential Guard with PowerShell or Group Policy, ensure your systems meet the hardware and firmware requirements. After enabling Credential Guard, you can use PowerShell to verify its activation.
Source
( 17
min )
Wells Fargo announces its public bug bounty program after several years of engaging the HackerOne community.
( 4
min )
Learn how Deribit uses its HackerOne bug bounty program for its proactive security strategy.
( 5
min )
Learn about administrative access and Remote Code Execution (RCE) exploitation from a recent Web Application Pentest.
The post From Informational to Critical: Chaining & Elevating Web Vulnerabilities appeared first on NetSPI.
( 12
min )
Praetorian's open-source secrets detection tool, Nosey Parker, was released two years ago. Learn more about updates Nosey Parker and importance in today's environment.
The post Nosey Parker Turns Two: Celebrating Two Years of Open-Source Secrets Discovery appeared first on Praetorian.
( 16
min )
The latest GA release of NAKIVO Backup and Replication v11 includes agentless backup support for a new hypervisor that has garnered significant interest: Proxmox. Let’s explore this and other new features in NAKIVO Backup and Replication v11.
Source
( 17
min )
Author: Lance B. Cain
( 13
min )
Threat actors abused Visual Studio Code and Microsoft Azure infrastructure to target large business-to-business IT service providers in Southern Europe.
( 36
min )
The U.S. government has embraced HackerOne's recommendations for the new federal AI procurements guidance.
( 5
min )
By Matt Schwager and Travis Peters We are publishing another set of custom Semgrep rules, bringing our total number of public rules to 115. This blog post will briefly cover the new rules, then explore two Semgrep features in depth: regex mode (especially how it compares against generic mode), and HCL language support for technologies […]
( 15
min )
Microsoft’s new AI Shell integrates AI into command-line workflows, featuring the Azure OpenAI Agent and Copilot in Azure Agent for tasks like PowerShell scripting and cloud automation. You can install AI Shell (aish.exe) as a standalone app or PowerShell module to streamline coding, error resolution, and resource management on Windows, macOS, or Linux.
Source
( 16
min )
Bishop Fox ASM team gives customers a 24-hour head start against critical PAN-OS vulnerability
( 7
min )
No content preview
( 4
min )
Active Directory is a core element of most lab environments, and it’s often essential to populate it with realistic data, especially for user accounts. These accounts should feature values for key attributes to reflect a functional directory. Fake user data is available in CSV format, but you'll need to clean it before importing into the directory.
Source
( 18
min )
This is a blog post by Erik Szinai, who worked with us as an intern during the last couple of months. We hope our readers will find his contribution to the Burp Suite ecosystem useful!
( 8
min )
No content preview
( 5
min )
Windows Server 2025 introduces significant improvements for Active Directory, including increased scalability thanks to the Jet database's 32K pages. New Server 2025 forests can immediately leverage this feature, whereas existing domains must be raised to the new functional level before you can enable the 32K database.
Source
( 17
min )
AWS has launched a feature that allows a single security group to be associated with multiple VPCs and shared across AWS accounts within the same organization. These updates facilitate the centralized management of security group rules, ensuring consistent traffic control across various VPCs and accounts.
Source
( 17
min )
Hai, HackerOne's AI copilot has 3 new capabilities: Hai analytics, contextual conversations, and an enhanced user experience.
( 5
min )
Binarly’s Alex Matrosov and Fabio Pagani present PKfail, a firmware supply-chain security issue affecting major device vendors and hundreds of device models.
( 23
min )
A warning is circulating on social media regarding Microsoft utilizing customer data from its Microsoft 365 applications—such as Word, Excel, and Outlook—for training its AI models. Microsoft has addressed these concerns on X and Bluesky, which seems to have reassured most journalists who reported on the incident across various news platforms. Nonetheless, I highly advise disabling all "connected experiences that analyze your content" in your Office apps or for your entire organization via Group Policy.
Source
( 18
min )
The post CloudGoat Official Walkthrough Series: ‘sqs_flag_shop’ appeared first on Rhino Security Labs.
( 5
min )
Introduction On a recent Red Team for a particularly hardened client, we were looking to escalate our privileges in order to move off the endpoint and pivot into the server...
The post Extracting Account Connectivity Credentials (ACCs) from Symantec Management Agent (aka Altiris) appeared first on MDSec.
( 21
min )
Or, “Yet another ransomware blog post?” “Yet another ransomware blog post?” I hear you asking. Well, yes! Besides, Ransomware attacks have been on the rise again costing affected organizations and industries more than ever. Let’s dive into some numbers to set the stage: According to IBM and Ponemon institute, in 2024, the average cost of a … Continue reading Building Cyber Resilience Against Ransomware Attacks →
( 16
min )
Security leaders at REI, AS Watson, and Mercado Libre explain why retail and e-commerce organizations trust security researchers.
( 6
min )
Learn about the new NIS2 Directive requirements and how to achieve compliance through pentesting, VDP, and bug bounty.
( 7
min )
Dr. Cristina Cifuentes, known as the Mother of Decompilation, reflects on three decades of innovation in reverse engineering in her LABScon 2024 keynote.
( 23
min )
Read the top 5 learnings attendees gained by joining one of our Security@ 2024 World Tour events.
( 5
min )
A loose collective of mostly low-skilled actors, CyberVolk absorbs and adapts a wide array of destructive malware for use against political targets.
( 31
min )
When all items are selected with -s A and option -d from this new version on, items are decoded and dumped to stdout en separated by end-of-line character(s). base64dump_V0_0_27.zip (http)MD5: 6C3AE99A7FA0C525FF17B938A632AE53SHA256: CDD84F574E25C93675BC0C14D954B59799B1FFEECC253A906B72A6DD669BDF4C
( 11
min )
Gain insights into injection vulnerabilities, the different classifications, and potential security bypass techniques.
( 12
min )
This post explores Windows Side-by-Side (WinSxS) and DLL hijacking, deep-diving some tooling I've written and some of the fun along the way.
( 10
min )
The term “special relationship,” coined by Winston Churchill, describes the close, longstanding alliance between the United States and the United Kingdom. It has been applied to cooperation during war, to trade and commerce, and even to intelligence sharing. That special relationship has clearly influenced the two nations’ recent policy papers on national cybersecurity. The U.K. […]
The post Protecting Critical Infrastructure: A Tale of Two National Cybersecurity Strategies appeared first on Synack.
( 7
min )
Scoping Adventures is a series of blogs about some of the more interesting penetration tests that the Synack Customer Success teams have worked on over the last few months. Each blog outlines how we engage with the client to achieve the best results from a pentest. Pentesters love colors—red, blue, purple, black, white and grey […]
The post Scoping Adventures: How to Get the Most Out of Your Synack Pentesting appeared first on Synack.
( 11
min )
The Synack Platform & Five Pillars of Strategic Pentesting Why You Need to Think Strategically It’s no great revelation that tactics, techniques, and procedures utilized by nefarious hackers hacking activities are evolving on a daily basis. In 2022, 18,828 common vulnerabilities and exposures (CVEs) were published. At the same time, organization attack surfaces are expanding. […]
The post Applying Strategic Thinking in Your Pentesting Program appeared first on Synack.
( 7
min )
One week ago, the Biden administration unveiled its long-awaited U.S. National Cybersecurity Strategy, with an eye toward centralizing government cyber resources and holding IT vendors more accountable for their digital defenses. Now that the ink is dry on the 35-page document, top officials like Acting National Cyber Director Kemba Walden are busy putting it into […]
The post The U.S. has a new cybersecurity strategy. What’s next for CISOs? appeared first on Synack.
( 7
min )
