SecureYeti

Cisco has disclosed a critical flaw (CVSS 10.0) in its Secure Firewall Management Center. If RADIUS is enabled, attackers could take full control without logging in. Apply updates immediately or disable RADIUS until you do. zurl.co/vWHtx #Cisco #Infosec

Traditional security programs often fall short by not engaging employees, but @jaysonstreet's class @BlueTeamCon Sept 4 takes a new approach—leveraging social engineering techniques used by adversaries to help attendees think like an attacker. Sign up: zurl.co/DDhEu

Stolen credentials are still one of cybercriminals’ most potent tools due to their simplicity, low cost, and efficacy. Despite advances like MFA and passkeys, weak password hygiene and widespread credential reuse keep this attack vector successful. zurl.co/LOQfW

Traditional security programs often fall short by not engaging employees, but @jaysonstreet's class @BlueTeamCon Sept 4 takes a new approach—leveraging social engineering techniques used by adversaries to help attendees think like an attacker. Sign up: zurl.co/DDhEu

Cybercriminals are using new Matanbuchus 3.0 malware via Microsoft Teams for targeted attacks. Recently, attackers impersonated IT support during a call, tricking an employee into launching Quick Assist and running a script that deployed the loader. zurl.co/ERLjh

Traditional security programs often fall short by not engaging employees, but @jaysonstreet's class @BlueTeamCon Sept. 4 takes a radical approach—leveraging social engineering techniques used by adversaries to help attendees think like an attacker.zurl.co/HBRmJ

Mitel has released patches for a critical vulnerability in its MiVoice MX ONE communications platform: unpatched versions 7.3 up to 7.8 SP1 allow unauthenticated, remote attackers to gain full access to user or admin accounts. Read more here: zurl.co/pST4U

Traditional security programs often fall short by not engaging employees, but @jaysonstreet's class @BlueTeamCon Sept. 4 takes a radical approach—leveraging social engineering techniques used by adversaries to help attendees think like an attacker. zurl.co/CeKzN

Cybersecurity researchers found a critical security flaw (CVE 2025 6514) in the open-source MCP remote tool used by AI-based tools like Claude Desktop, so attackers can execute commands on a user’s system and take full control. Read more: zurl.co/PZpKS

Time is running out to register for #defcontraining! Learn to unleash your inner “bad guy" with Adversary for Hire @jaysonstreet, one of the most twisted minds in the industry, to think and attack like an adversary! Register now at zurl.co/rpBWj #defcon

Traditional security programs often fall short by not engaging employees, but @jaysonstreet's class @BlueTeamCon Sept. 4 takes a radical approach—leveraging social engineering techniques used by adversaries to help attendees think like an attacker. zurl.co/CeKzN

Does your team know the simple mistakes that can lead to a data breach or a malicious attack on your systems? Our cybersecurity training can empower your employees to protect themselves and your company from real world threats. Set up a time to talk: zurl.co/MxymK

Ever wanted to unleash your inner “bad guy” in a legal and controlled setting? Learn tactics from Adversary for Hire @jaysonstreet, one of the most twisted minds in the industry, to think and attack like an adversary! Register today at zurl.co/rpBWj #defcon

A new SharePoint vulnerability dubbed ToolShell lets adversaries gain full remote code execution on SharePoint servers. Microsoft recommends updating SharePoint servers, configuring AV/EDR and rotating the system's zurl.co/yZ4Tv machine keys. zurl.co/eacHx

Teach your employees to be your biggest defender! Training from Secure Yeti's @jaysonstreet will help you make security “personal” so your employees think like a hacker and fiercely protect your company’s assets 24/7. August 2-3 at @BlackHatEvents. #BHUSA zurl.co/L44r3

Ever wanted to unleash your inner “bad guy” in a legal and controlled setting? Learn tactics from Adversary for Hire @jaysonstreet, one of the most twisted minds in the industry, to think and attack like an adversary! Register today at zurl.co/at3PK #defcon

We hadn’t heard from @jaysonstreet in a while, then he sent us this. We have no idea where he is right now, but we know where he’ll be soon! See him at Black Hat and DEF CON: tinyurl.com/3tk8b3rh #BHUSA tinyurl.com/y6zfn6w6 #defcon #defcontraining

Ever wanted to unleash your inner “bad guy” in a legal and controlled setting? Learn tactics from Adversary for Hire @jaysonstreet, one of the most twisted minds in the industry, to think and attack like an adversary! Register today at zurl.co/Vcdsv #defcon

Prices increase this Friday! raining from Secure Yeti's @jaysonstreet will help you make security “personal” so your employees think like a hacker and fiercely protect your company’s assets 24/7. August 2-3 at @BlackHatEvents. #BHUSA zurl.co/MyCBS

Teach your employees to be your biggest defenders! Training from Secure Yeti's @jaysonstreet will help you make security “personal” so your employees think like a hacker and fiercely protect your company’s assets 24/7. August 2-3 at @BlackHatEvents. #BHUSA zurl.co/L44r3