Blog

Patch Tuesday Analysis
Blog

November 2025 Patch Tuesday Analysis

By Tyler Reguly on Tue, 11/11/2025
Today’s Patch Tuesday Alert addresses Microsoft’s November 2025 Security Updates. We are actively working on coverage for these vulnerabilities and expect to ship that coverage as soon as it is completed.In-The-Wild & Disclosed CVEsCVE-2025-62215This privilege escalation vulnerability in the Windows Kernel has been rated by Microsoft as Important. Successful exploitation of this vulnerability will...
Threat Research & Intelligence
Vulnerability Management
Blog

BEC Global Insights Report: October 2025

By John Farina on Mon, 11/10/2025
The monthly Global BEC Insights Report from Fortra presents a comprehensive analysis of the latest tactics, techniques, and procedures (TTP) employed by BEC threat actors. This report draws on extensive intelligence gathered from hundreds of active defense engagements conducted throughout the month. Key insights include geolocation data, attack volume, and the variety of scams, such as payroll diversion and advance fee fraud. The report also highlights the use of gift cards in scams, the requested amounts in wire transfer fraud, and the banks and webmail providers frequently targeted by attackers. These findings provide a critical understanding of the evolving BEC threat landscape.
AI Is Shaping Cyber Threats: How Organizations Can Stay Ahead
Blog

Threat Intelligence vs. Threat Data: What’s the Difference?

By Josh Davies on Fri, 11/07/2025
Organizations are still overwhelmed by what they’re told, and sold as, ‘Threat Intelligence.’ In reality it falls short, as its really just threat/IOC data.The term has been thrown around so often that its true meaning and value have been diluted. It’s time to set the record straight and restore the trust and respect that ‘Threat Intelligence’ deserves.Threat Data: What It Really IsThreat data is...
Threat Research & Intelligence
computer_water_waves
Blog

The Rising Tide of Cyber-Attacks Against the UK Water Sector

By Graham Cluley on Thu, 11/06/2025
Critical infrastructure is once again in the spotlight, as it is revealed that several UK water suppliers have reported cybersecurity incidents over the last two years.The disclosure that attackers are probing the systems relied on to manage the delivery of safe drinking water to millions of households comes in newly-released information from the Drinking Water Inspectorate (DWI), following a...
Patch Tuesday Analysis
Blog

Fortra Patch Priority Index for October 2025

By Lane Thames on Thu, 11/06/2025
Fortra's October 2025 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft and Google.Up first on the list are patches for Chromium, Internet Explorer, and Microsoft Edge (Chromium-based) that resolve 15 issues, including use-after-free, heap buffer overflow, inappropriate implementation, and remote code execution vulnerabilities.Next on the list are patches for...
school classroom
Blog

What 20 Years Has Taught Him About What Security Needs - And Where It’s Going

By Dan Raywood on Mon, 11/03/2025
A good company is greater than the sum of its parts. But at Fortra, those parts are pretty good, too. Recently, we had a chance to sit down with Tyler Reguly, Associate Director, Security R&D at Fortra. A career cybersecurity veteran, Tyler graduated from Fanshawe College, where he developed and taught five courses on hacking and malware. He has contributed to various standards, including CVSSv3...
scales with AI on one and a padlock on the other
Blog

Your AI Model Might Not Be Worth Using - Without the Right Data Security in Place

By Josh Davies on Wed, 10/29/2025
In the age of AI, data security does more than protect your information. It can determine how your business is run. Now, more than ever, companies rely on their data to make choices about product placement, new markets, consumer trends, investments, and more. Nowhere does the adage “put good in, get good out” apply more. Yet we still see companies that undervalue data security as the fundamental...
jig saw pieces
Blog

Does Your Cybersecurity Framework Need Rebuilding?

By Rohit Dhamankar on Mon, 10/27/2025
Rebuilding a cybersecurity framework is remarkably similar to renovating a home. It’s time consuming, expensive, and, frankly, something that most people try to put off. However, just like a burst pipe or house fire would force you to renovate your home, there are certain indicators and situations that should prompt an immediate framework rebuild, regardless of budget constraints. This might...
The Fortra Platform: A Unified Security Approach
Blog

Creating a Winning Alliance: Bridging Security and Compliance

By Anthony Israel-Davis on Fri, 10/24/2025
Does there have to be tension between security and compliance? They’re certainly not the same, as I note in my previous blog, Security vs. Compliance: What’s the Difference? It’s never been fun to have to show your work, and nobody wants to be a nag, so how can the groups come together to create something stronger than the individual parts? Here are a few ways to create that winning alliance....
coins in palms of hands
Blog

New Report: 33% of Breached Face Financial Trouble Due to Fines, Not Breach Itself

By Donnie MacColl on Thu, 10/23/2025
If the breach doesn’t get you, the fines will. According to the latest Cyber Readiness Report by SMB-focused insurer Hiscox, after being breached, one in three organizations were hit with fines large enough to impact their financial health.This could result from doing business in multiple markets - California, the EU, and Canada, for example - and accruing respective fines of thousands or even...
lumma stealer logo
Blog

Cyber-criminals Turn on Each Other: The Story of Lumma Stealer's Collapse

By Graham Cluley on Wed, 10/22/2025
Normally when we write about a malware operation being disrupted, it's because it has been shut down by law enforcement. But in the case of Lumma Stealer, a notorious malware-as-a-service (MaaS) operation used to steal passwords and sensitive data, it appears to have been sabotaged by other cybercriminals.Lumma Stealer, also known as Water Kurita and Storm-2477, first came to prominence in 2022...
Blog

Fortra Tracks Fivefold Increase in Brokerage Attacks YoY

By Alexis Ober on Tue, 10/21/2025
Throughout 2024, Fortra identified a steady increase in attacks targeting brokerage accounts. Year-over-year, attacks targeting these accounts experienced a growth of more than fivefold in the second quarter of 2025 compared to the same quarter of 2024.
Threat Research & Intelligence
woman with a phone and three email envelopes
Blog

Don’t Send Email? Your Domain Needs to Greenlight DMARC Anyway (and Fast)

By John Wilson on Mon, 10/20/2025
There’s a common misconception: If organizations don’t use their domain to send email, they think DMARC is unnecessary. That couldn’t be farther from the truth. Imagine you don’t drive your car. You want to let everybody know that you don’t drive it, so if they see it around town, they know it’s not you - and something’s amiss. Fortra recently surveyed the top 10 million domains on the internet...
Cybersecurity Regulatory Landscape in Turkey: A Primer for Business
Blog

Cybersecurity Regulatory Landscape in Turkey: A Primer for Business

By Kirsten Doyle on Thu, 10/16/2025
In the last few years, Turkey has found itself increasingly in the crosshairs of bad actors. In Q3 2023, phishing rose sharply with a 20% jump from the previous quarter and a 47% spike year-on-year. The country is also a key target for cyberattacks on industrial control systems. Cyber threats travel fast, while laws usually do not, but in Turkey, that gap is narrowing. What started as a bunch of...
skulls on screens
Blog

NCSC Warns Companies to Prepare for a Day When Your Screens Go Dark

By Graham Cluley on Wed, 10/15/2025
The UK's National Cyber Security Centre (NCSC) has warned that the country faces an average of four "nationally significant" cyberattacks each week - a sharp 129% increase from the previous year.Of a total of 429 incidents handled by the NCSC, a record 204 were classified as nationally "significant," and 18 ranked even more seriously as "highly significant" (meaning that they had the potential to...