We get past MFA on most engagements, and we almost never break it. Here is how, and what actually stops us.Atarus Security TeamJun 260 min read
Researchers caught a low-skilled attacker using AI agents to breach 14 companies. The uncomfortable part is that the AI mostly weaponized bugs you already have a patch for.
Five days, ten exploited bugs, almost none of them touched a core app. A week attackers spent walking in through everything else.
Microsoft patched three more Nightmare Eclipse zero-days on Tuesday, six in six weeks now. The story isn't the bugs, it's how fast a public PoC turns into a real attack.
Comments