InfoSec Dot - Issue #65. 🔓 Ivanti Vulnerability Still Exposed 🚨 | DeepSeek Uncovers AI Security Gaps 🤖 | Australia Bans Kaspersky 🔥

In partnership with

Hello, Cybersecurity Enthusiasts!

This week’s cybersecurity landscape reveals escalating threats across multiple sectors. Thousands of Ivanti Connect Secure instances remain vulnerable to a critical flaw, putting enterprises at risk of exploitation. Meanwhile, DeepSeek has exposed a major cybersecurity blind spot, raising concerns about AI-driven attack surfaces.

In regulatory shifts, Australia has officially banned Kaspersky products for government use, citing national security risks. Additionally, the collapse of Skybox Security signals financial instability in the cybersecurity sector, prompting discussions on vendor resilience.

Stay ahead with these vital updates to fortify your security posture.

Meal Prep Slowing You Down? Not Anymore.

Huel Black Edition is your go-to for fast, complete nutrition.

With 40g of protein (more than 5 eggs) and 27 essential vitamins, it supports your immune system, heart, hair, bones, and digestion, it’s a breakfast that keeps you going. Best of all, it’s only $2.50 per serving and takes just 30 seconds to make – no cooking, no hassle.

Use code HUELBE15 for 15% off your first order, plus a FREE t-shirt and shaker.

Upgrade Your Nutrition Today

🗓️ What’s New

SEAL OS: A New Era of Secure Computing

SEAL OS is making waves in cybersecurity with its hardened architecture designed for high-assurance environments. Built to mitigate modern threats, it emphasizes security-first principles, minimizing attack surfaces and enhancing resilience against exploits. Experts say this could redefine secure computing for enterprises. Read More (3 Mins)

Ivanti Critical Flaw Exposes Thousands of Systems

Nearly 3,000 Ivanti Connect Secure instances remain vulnerable to a critical security flaw, leaving organizations at risk of exploitation. Despite patches being available, many systems remain unprotected, prompting urgent calls for remediation. Security experts warn that active exploitation is likely. Read More (3 Mins)

DeepSeek Exposes Major Cybersecurity Blind Spot

DeepSeek’s latest exposure highlights critical gaps in cybersecurity defenses, raising concerns about AI-driven threats and data security risks. Experts emphasize the need for proactive security measures to mitigate potential exploitation and prevent large-scale breaches. Read More (4 Mins)

$14B in Crypto Stolen: The Rising Tide of Digital Heists

Cybercriminals siphoned off a staggering $14 billion in cryptocurrency, exploiting vulnerabilities in DeFi platforms, exchange hacks, and phishing scams. As blockchain security remains a top concern, experts stress the need for stronger fraud detection and regulatory measures to curb financial losses. Read More (5 Mins)

Australia Bans Kaspersky Over Security Concerns

The Australian government has officially banned the use of Kaspersky products in government entities, citing national security risks and potential foreign interference. This move follows similar restrictions by other Western nations amid rising cybersecurity tensions. Read More (3 Mins)

Hackers Exploit krpano Framework Flaw for Cyberattacks

A critical vulnerability in the krpano framework has been actively exploited by threat actors to launch cyberattacks. Security researchers warn that this flaw could be leveraged for remote code execution, emphasizing the need for immediate patching and mitigation strategies. Read More (5 Mins)

Skybox Security Shuts Down, Workforce Laid Off

Skybox Security, a well-known cybersecurity risk management firm, has ceased operations and laid off its entire workforce. The shutdown marks a significant shift in the industry, raising concerns about financial stability and market challenges for cybersecurity vendors. Read More (2 Mins)

🔗 Quick Links

• U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

• Critical deserialization bugs in Adobe, Oracle software actively exploited, warns CISA

• How Hackers Manipulate Agentic AI With Prompt Engineering

• Darcula PhaaS can now auto-generate phishing kits for any brand

• Hundreds of GitHub repos served up malware for years

• Hackers publish sensitive patient data allegedly stolen from Australian IVF provider Genea

If you like this issue, I'd really appreciate it if you could forward it to your friends and colleagues! Your support helps us grow and continue providing great content.

If you have specific feedback or anything interesting you’d like to share, please let me know by replying to this email.

Regards,

Dot