Latest Videos

November 17, 2025 Cyber Threat Intelligence Briefing

Nov 17, 2025 By Kroll In Kroll

This week’s briefing covers: Dive deeper.

View Video

Kroll

Read more about November 17, 2025 Cyber Threat Intelligence Briefing

November 10, 2025 Cyber Threat Intelligence Briefing

Nov 10, 2025 By Kroll In Kroll

Microsoft’s DART team identified a new backdoor named SESAMEOP in July 2025 that uses the OpenAI Assistants API as its command and control (C2) channel. Proofpoint has detailed a campaign targeting freight and trucking companies using remote monitoring and management (RMM) tools to steal cargo. Security researchers at Catchify identified a critical unauthenticated remote code execution vulnerability in the UniFi Access backup/export workflow, tracked as CVE-2025-52665, with a CVSS score of 10.0 (critical).

View Video

Kroll

Read more about November 10, 2025 Cyber Threat Intelligence Briefing

November 03, 2025 Cyber Threat Intelligence Briefing

Nov 5, 2025 By Kroll In Kroll

A critical remote code execution vulnerability in the Windows Server Update Services (WSUS) server role tracked as CVE 2025 59287 (CVSS: 9.8) addressed in the October patch cycle is under active exploitation. Researchers at RandoriSec produced a report on the current state of Microsoft Teams Access Token theft, a tactic that has been used by many threat actor groups to move laterally within environments and assist in internal phishing attacks.

View Video

Kroll

Read more about November 03, 2025 Cyber Threat Intelligence Briefing

October 27, 2025 Cyber Threat Intelligence Briefing

Oct 27, 2025 By Kroll In Kroll

This campaign uses an updated lure combination of a Cloudflareturnstile and fake Windows update before socially engineering the victim into pasting malicious commands into the run dialogue box. Sekoia has released a detailed technical analysis of the POLAREDGE botnet which it initially reported on earlier this year. The botnet is spread by exploiting vulnerabilities, most notably CVE-2023-20118 in cisco routers; however, other samples from the same family have been seen exploiting routers from other vendors such as Asus, QNAP and Synology.

View Video

Kroll

Read more about October 27, 2025 Cyber Threat Intelligence Briefing

October 20, 2025 Cyber Threat Intelligence Briefing

Oct 20, 2025 By Kroll In Kroll

This week’s briefing covers.

View Video

Kroll

Read more about October 20, 2025 Cyber Threat Intelligence Briefing

October 13, 2025 Cyber Threat Intelligence Briefing

Oct 13, 2025 By Kroll In Kroll

This week’s briefing covers.

View Video

Kroll

Read more about October 13, 2025 Cyber Threat Intelligence Briefing

October 6, 2025 Cyber Threat Intelligence Briefing

Oct 6, 2025 By Kroll In Kroll

This week’s briefing covers: Dive deeper.

View Video

Kroll

Read more about October 6, 2025 Cyber Threat Intelligence Briefing

Let's Talk Cyber Resilience E3: Max Henderson

Oct 3, 2025 By Kroll In Kroll

In this series, we chat with cybersecurity and data resilience leaders from Kroll and our partners. Our third guest is Max Henderson, Global Head of Digital Forensics and Incident Response, based in Tampa. Future episodes will cover topics such as the Cyber Threat Landscape, AI Risk Governance, and Breach Notification.

View Video