%term

Responding to ToolShell: A Microsoft SharePoint zero-day vulnerability

Jul 23, 2025 By Marina Kvitnitsky In CyberArk

A newly discovered exploit, “ToolShell,” is fueling a wave of targeted attacks against on-premises Microsoft SharePoint servers. The zero-day exploit chains two vulnerabilities—CVE-2025-53770, a remote code execution (RCE) vulnerability and CVE-2025-53771, a spoofing vulnerability that allows attackers to bypass authentication. When combined, this critical zero-day vulnerability gives attackers persistent unauthenticated remote access to on-premises SharePoint servers.

Read Post

CyberArk

Read more about Responding to ToolShell: A Microsoft SharePoint zero-day vulnerability

From Frameworks to Defence: Using Australia's ISM and Essential Eight Strategically

Jul 23, 2025 By Trustwave In Trustwave

Aligning with the Australian Government’s Information Security Manual (ISM) and the Essential Eight (E8) remains a foundational step for organizations working with or alongside government agencies. Trustwave’s Essential Eight Control Effectiveness Assessment is a great first step, but relying solely on compliance as a goal can leave security programs stagnant.

Read Post

Trustwave

Read more about From Frameworks to Defence: Using Australia's ISM and Essential Eight Strategically

Building Resilience Against Modern Cyber Threats

Jul 23, 2025 By [email protected] In JUMPSEC

That was the message from major UK retailers like Marks & Spencer and the Co-op during recent Parliamentary hearings on cyber resilience. Their stories weren’t hypothetical, they were recovering from real-world incidents involving identity compromise, supply chain breaches, and operational disruption that cost hundreds of millions of pounds. The lesson is clear. Prevention is necessary, but it is no longer enough.

Read Post

JUMPSEC

Read more about Building Resilience Against Modern Cyber Threats

Webinar Building Cyber Resilience

Jul 23, 2025 By JUMPSEC In JUMPSEC

Matt Lawrence, Director of Cyber Security Operations, shared his insights on why cyber prevention is table stakes. Why cyber resilience is the goal. What happens after an attacker gets in?How do we limit the blast radius?Can we continue to operate even during a breach? Why and how you need to build cyber resilience against modern cyber threats.

View Video

JUMPSEC

Security

Read more about Webinar Building Cyber Resilience

The Importance of Multi-Factor Authentication

Jul 23, 2025 By Keeper Security In Keeper

Passwords alone aren’t enough to keep your accounts safe. Multi-Factor Authentication (MFA) adds an extra layer of security – even if hackers have your password. Watch this short video to learn what MFA is, why it’s important and the best options to protect your data.

View Video

Keeper

Read more about The Importance of Multi-Factor Authentication

Rubrik Continuous Threat Monitoring: Explained!

Jul 23, 2025 By Rubrik In Rubrik

Your backups should be a safety net, not a Trojan horse. If malware is hitching a ride back into your environment, you're in for a rough ride.

View Video

Rubrik

Read more about Rubrik Continuous Threat Monitoring: Explained!

Setting Language Preferences

Jul 23, 2025 By Egnyte In Egnyte

As your workforce becomes increasingly global, Egnyte makes it easy for users to configure their language preferences in both the Web UI and the Desktop App!

View Video

Egnyte

Read more about Setting Language Preferences

5 proven ways to secure your hybrid network environment during team convergence

Jul 23, 2025 By AlgoSec In AlgoSec

Watch the experts edition panel discussion featuring ESG Principal Analyst John Grady and AlgoSec leaders as they explore: How security responsibility is converging across cloud and datacenter environments—and what that means for your team The top causes of cloud breaches—and how to stop them before they spread 5 proven ways to unify visibility, policy enforcement, and zero trust across hybrid multi-cloud networks How to automate security workflows without slowing down innovation Real-world insights on AI risks, agent sprawl, and tool fragmentation in a converged security world.

View Video