Aon’s Stroz Friedberg Incident Response Services has uncovered a method used by a threat actor to bypass SentinelOne Endpoint Detection and Response (EDR) protections, ultimately deploying a variant of the notorious Babuk ransomware. SentinelOne EDR, a widely-used endpoint protection solution, is designed to detect and block threats with robust anti-tamper mechanisms that prevent unauthorized disabling...Read More
A new era of AI is emerging and it’s more autonomous than ever before. Agentic AI is set to transform the way people interact with technology, marking a paradigm shift in artificial intelligence. Unlike generative AI (GenAI), agentic AI is proactive, and can solve complex problems and make decisions autonomously without human oversight. While these...Read More
In a concerning revelation for enterprise security, researchers from Aon’s Stroz Friedberg Incident Response team have uncovered a new Endpoint Detection and Response (EDR) bypass technique dubbed the “Bring Your Own Installer” (BYOI) attack. The method leverages a vulnerability in the SentinelOne upgrade process to disable its tamper protection, paving the way for ransomware deployment....Read More
James Grant & Annabel Amos BBC News, Northamptonshire BBC Paul Abbott, a former Knights of Old director, now helps businesses prevent ransomware attacks after the firm’s 2023 collapse The director of a 160-year-old haulage firm put out of business by a cyber-attack has urged companies to be on their guard. Paul Abbott was on the...Read More
Cyber threat intelligence firm PRODAFT detailed the Nebulous Mantis (a.k.a. Cuba, STORM-0978, Tropical Scorpius, UNC2596), a Russian-speaking cyber espionage group that has actively deployed the RomCom remote access trojan (RAT) and Hancitor loader in targeted campaigns since mid-2019. Operating with geopolitical motives, the group primarily focuses on critical infrastructure, government agencies, political leaders, and NATO-related defense...Read More
NetApp®, the intelligent data infrastructure company, announced new data security capabilities that help customers strengthen their cyber resiliency. Security teams can now leverage NetApp, the most secure storage on the planet, to take a proactive approach to data security at the storage layer and strengthen their overall security posture.
Advancements in technology drive...Read More
Gunra Ransomware, has surfaced as a formidable threat in April 2025, targeting Windows systems across industries such as real estate, pharmaceuticals, and manufacturing. As reported by CYFIRMA, this ransomware employs a sophisticated double-extortion strategy, encrypting victims’ data while exfiltrating sensitive information to coerce payments. With documented attacks in Japan, Egypt, Panama, Italy, and Argentina, Gunra’s...Read More
NEW ORLEANS (WVUE) – The Archdiocese of New Orleans is raising concerns about compromised personal information following a ransomware attack that may have exposed data on clergy sex abuse survivors and people connected to local Catholic schools. The issue came to light during a May 1 federal court status hearing in the archdiocese’s ongoing bankruptcy...Read More
