Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Unlike closed-source code or proprietary applications, open source software (OSS) exposes its source code, allowing anyone to view, modify, or contribute to it. This transparency delivers both opportunities and unique threats; developer communities can uncover flaws faster, but attackers can also examine code for weaknesses and even easily leverage known reported open source vulnerabilities.

Organizations that support remote work and third-party access face increased security risks to critical systems. While Virtual Private Networks (VPNs) have been the traditional answer for securing remote access, they cannot keep up with modern security and compliance needs, which can be better managed through a Remote Privileged Access Management (RPAM) solution.

In today’s enterprise environments, endpoints are more than just laptops and desktops. They are the critical bridge where people, applications, and data intersect. While much attention is given to malware prevention and threat detection, one security layer is often underestimated: device control.

This post will describe a long-running spam campaign from a Brazilian group known for using the Lampion stealer. We’ll detail the latest updates on the infection chain and its components, share previously undescribed indicators, and cover key takeaways, including.

AI is rewriting the rules of privileged access, but the rise of AI agents is creating a governance crisis. Threats like credential stuffing and privilege escalation are now accelerated by autonomous systems moving faster than humans can react. 82% of companies deploy autonomous AI agents, but 23% of IT teams admit those bots have already been tricked into revealing credentials—and fewer than half have guardrails in place. In modern infrastructure, machine identities now outnumber humans 80:1.

Software powers nearly every part of our digital lives, operating systems, browsers, apps, and countless tools we rely on every day. With that convenience, however, comes responsibility. One of the most effective and often overlooked defenses against cyber threats is simple: keeping your software updated.