3+ hour, 50+ min ago  (790+ words) Cloud SEK's threat intelligence team is tracking Forti Bleed, an active, large-scale credential-compromise campaign targeting internet-facing Fortinet Forti Gate firewalls and SSL VPN gateways worldwide. Despite the name, Forti Bleed is not a software vulnerability and is not linked to…...

2+ day, 8+ hour ago  (474+ words) Known/Claimed Attacks by Pancho Villa 2. "Chilango Leaks" " Mexico City Government (CDMX) " April 2024 Mexican Mafia released 20 GB of what they called "Chilango Leaks," which included approximately 2. 1 million private emails from over 2, 000 CDMX public servant accounts across agencies ranging from the Secretar'a…...

2+ day, 14+ hour ago  (447+ words) S'o Paulo " Cloud SEK, an AI-native predictive cyber intelligence platform, has announced a strategic partnership with In Cloud, a Brazilian managed security services provider, to expand access to predictive threat intelligence and digital risk protection across Brazil. Cloud SEK helps…...

4+ day, 11+ hour ago  (981+ words) Alert correlation links related security alerts into a single attack path, the route an attacker takes from entry to target. Correlation beats cutting alert volume because it surfaces the few real attacks hidden inside thousands of disconnected alerts. The cost…...

2+ week, 2+ day ago  (799+ words) This guide explains what AI threat intelligence is, how it works, what it detects, and how security teams can implement it effectively. AI threat intelligence is a cybersecurity approach that uses artificial intelligence, machine learning, and automated analysis to identify,…...

2+ week, 3+ day ago  (844+ words) Background: MCP and the Expanding AI Attack Surface Google Threat Intelligence Group (GTIG) confirmed in early 2026 that adversaries, including nation-state actors from China, Iran, and North Korea, have operationalized LLMs and MCP infrastructure as force multipliers for reconnaissance, initial access,…...

1+ mon, 5+ day ago  (976+ words) The decoy was well constructed. The ##lib/## directory contains a functional implementation of SHA-256, HMAC, PBKDF2, AES-CBC, and Base64, a near verbatim copy of the legitimate ##crypto-js## source. ##index. js## exports all of these correctly. Between 14: 39 and 21: 21 UTC on 11 May 2026, the actor…...

1+ mon, 1+ week ago  (758+ words) AI attack surface monitoring tracks every AI system in an organization to find security risks before attackers can use them. It looks at AI models, AI APIs, AI agents, MCP servers, and the data they connect to " areas that older…...

1+ mon, 4+ week ago  (982+ words) Threat intelligence automation is a cybersecurity capability where systems process threat data streams using artificial intelligence and machine learning to generate immediate security decisions. Data from Open Source Intelligence, internal logs, and external intelligence feeds flows through automated pipelines that…...

2+ mon, 1+ hour ago  (965+ words) A threat intelligence feed is a continuous stream of structured cyber threat data used to identify and prevent malicious activity. Within Cyber Threat Intelligence (CTI), such feeds support proactive detection by continuously exposing emerging risks and attack patterns. Detection of…...