Peter Corish 
This week, we will go through two recently discovered exploits. DoubleClickjacking is a browser-based vulnerability that affects major websites and a flaw in Microsoft’s LDAP that could lead to DoS attacks. A new Clickjacking threat identified A new exploit named “DoubleClickjacking” enables attackers to bypass existing clickjacking protections on major websites. Security researcher Paulos Yibelo … Read more
We’re excited to announce the latest ThinScale 8.4 release, packed with powerful features designed to improve security, enhance network control, and simplify IT administration. Let’s explore what’s new: What’s New? Geolocation-Based Access Policies Take control of where and how users access your environment. Our brand-new Geolocation Access Policies allow you to enforce location-based checks, including: … Read more
In 2025, organizations face the challenge of bolstering endpoint security against increasingly sophisticated cyber threats while managing constrained budgets. Achieving robust endpoint protection and reducing IT costs require strategic investments and innovative approaches. Below are key strategies to enhance endpoint security and effectively reduce IT expenses in the upcoming year. 1. Adopt Unified Endpoint Security … Read more
This week, we explore a recent discovery revealing how malicious actors can exploit QR codes to bypass isolated browsers. Additionally, we delve into a cyber espionage campaign aimed at IT service providers in Southern Europe. New threat can introduce malicious actions to an environment Security researchers at Mandiant have uncovered a method by which attackers … Read more
In today’s TL;DR, we look at a recent SpyLoan malware discovery by McAfee on multiple applications on the Google Play Store and the increasing trend of Ransomware groups hiring skilled Pen testers to improve their malicious software. 8 Million Android customers affected by SpyLoan Malware A recent investigation by McAfee has identified 15 malicious Android … Read more
This week’s update highlights two significant developments: Palo Alto Networks has identified a Zero-Day vulnerability in its own solution, while the US Department of Homeland Security has introduced a framework for the integration of AI. Critical Zero-Day discovered for Palo Alto Networks Palo Alto Networks has identified a critical zero-day vulnerability in its PAN-OS firewall … Read more
In this week’s update, we will be looking at privacy and security concerns revolving around Microsoft’s upcoming Recall AI, as well as a new activity from known spyware, LightSpy, targeting Apple iOS devices. Security and privacy worries over Microsoft’s Recall AI Microsoft has delayed the release of its AI tool, Recall, once more, prioritizing security … Read more
In this week’s update, we look at trending news stories including: Delta’s $500 million lawsuit against CrowdStrike and the recent phishing campaign by APT29. CrowdStrike face Delta Air lines in court over July’s outage Delta Air Lines has filed a $500 million lawsuit against CrowdStrike following the severe IT outage that occurred in July 2024. … Read more
Financial institutions today face mounting pressure to secure their operations, meet regulatory compliance, and manage costs effectively. For CISOs and security teams, the challenge is twofold; Two strategies—endpoint lockdown and device conversion—are a good option when balancing security, efficiency, and cost savings. The Rising Cybersecurity Challenges in Finance The financial sector is a lucrative target … Read more
Welcome to ThinScale’s new cybersecurity TL;DR series, where we break down the latest news and trends in the cyber world. In this week’s update, we look at trending news stories, including the successful infiltration of the Cicada3301 ransomware group and details on the recent ClickFix infostealing campaign. Cicada3301 Ransomware Affiliate Program The Cicada3301 ransomware group … Read more
ThinScale is the all-in-one solution for endpoint security and management at scale. Our products simplify IT challenges and protect remote, on-site, and hybrid workforces.
