Made with inblog

See All Compliance & Risk Industry Verticals Products & Solutions Cybersecurity Strategy Breach Analyses Threat Analysis

Fluent Bit Cloud Risks & The Espionage Surge

Critical Fluent Bit flaws expose cloud infrastructure. Plus, Russian espionage accelerates with COLDRIVER and npm supply chain attacks.

Nov 26, 2025

Threat Analysis

Oracle EBS Extortion & Nutanix Ransomware Risks

Oracle EBS zero-days are fueling a massive extortion campaign. Plus, ransomware groups Akira and Helldown pivot to virtualization.

Nov 22, 2025

Threat Analysis

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

Rhysida fake Teams ads (OysterLoader/Latrodectus), new CISA KEV vulns, EY & Nikkei breaches—actionable takeaways for EU/NIS2 teams.

Nov 11, 2025

Threat Analysis

AWS Outage Aftermath

Breakdown of the AWS US-EAST-1 DNS incident—timeline, cost modelling, concentration risk, DORA reporting timelines, and a 7-day engineering plan.

Oct 27, 2025

Threat Analysis

Critical Patches & Breaches

Weekly threat analysis (Oct 7–14, 2025): Oracle EBS zero-days, Salesforce leaks, SimonMed breach, GoAnywhere CVE-2025-10035—priority actions for EU/UK teams.

Oct 15, 2025

Threat Analysis

Fluent Bit Cloud Risks & The Espionage Surge

Critical Fluent Bit flaws expose cloud infrastructure. Plus, Russian espionage accelerates with COLDRIVER and npm supply chain attacks.

Nov 26, 2025

Threat Analysis

Oracle EBS Extortion & Nutanix Ransomware Risks

Oracle EBS zero-days are fueling a massive extortion campaign. Plus, ransomware groups Akira and Helldown pivot to virtualization.

Nov 22, 2025

Threat Analysis

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

Rhysida fake Teams ads (OysterLoader/Latrodectus), new CISA KEV vulns, EY & Nikkei breaches—actionable takeaways for EU/NIS2 teams.

Nov 11, 2025

Threat Analysis

AWS Outage Aftermath

Breakdown of the AWS US-EAST-1 DNS incident—timeline, cost modelling, concentration risk, DORA reporting timelines, and a 7-day engineering plan.

Oct 27, 2025

Threat Analysis

Critical Patches & Breaches

Weekly threat analysis (Oct 7–14, 2025): Oracle EBS zero-days, Salesforce leaks, SimonMed breach, GoAnywhere CVE-2025-10035—priority actions for EU/UK teams.

Oct 15, 2025

Threat Analysis

The Swedish Catastrophe

The Swedish Catastrophe: A single vendor breach exposed the data of 1.5 million people (15% of Sweden). Learn the urgent lessons on third-party risk and national security.

Oct 08, 2025

Threat AnalysisBreach Analyses

Luxury Meets Liability: The Harrods Vendor Breach

Past-week roundup—Cisco ASA zero-days, Harrods data leak, airport disruption updates, ENISA trends, Google Drive ransomware detection.

Oct 01, 2025

Threat Analysis

Weekly Threat Analysis (September 16-23, 2025)

A critical Confluence zero-day and AI voice clone attacks (MFA Bombing) are this week's top threats. Our analysis breaks down these incidents and what they mean for your security posture

Sep 24, 2025

Threat Analysis

Weekly Threat Analysis (Sep 9–16, 2025)

JLR production halt, critical VMware vCenter flaws, and a surge in QR-code phishing. See what your threat detection must catch—and what to fix in 48 hours.

Sep 16, 2025

Threat Analysis

Weekly Threat Analysis (September 2-9, 2025)

Trescudo's analysis of the Salesloft supply chain breach & Sitecore zero-day. Learn the lessons from this week's top cyber threats for Benelux businesses under NIS2.

Sep 10, 2025

Threat Analysis

What Your Threat Detection Must Catch

This week: Nevada ransomware, TransUnion 4.4M breach, Citrix NetScaler zero-day, and WhatsApp zero-click—plus a 48-hour threat detection plan.

Sep 01, 2025

Threat Analysis

Weekly Threat Analysis (Aug 19–26, 2025)

Weekly threat analysis: Orange Belgium breach, OAuth/Salesforce campaign, Cisco FMC CVE-2025-20265, Apple zero-day—plus a 48-hour CISO playbook and hunt tips.

Aug 26, 2025

Threat Analysis

Threat Analysis: The Triple Threat Landscape

Benelux threat detection briefing: Orange Belgium breach, Russian “Static Tundra” Cisco exploits, and an Apple zero‑day—actions boards can take in 48 hours.

Aug 22, 2025

Threat Analysis

WinRAR Zero-Day Exploited by RomCom

RomCom (Storm-0978) weaponised a WinRAR zero-day to plant backdoors. See TTPs, NIS2 exposure, and a patch-first detection plan tailored for Benelux teams.

Aug 11, 2025

Threat Analysis

Trescudo Blog

Fluent Bit Cloud Risks & The Espionage Surge

Oracle EBS Extortion & Nutanix Ransomware Risks

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

AWS Outage Aftermath

Critical Patches & Breaches

Fluent Bit Cloud Risks & The Espionage Surge

Oracle EBS Extortion & Nutanix Ransomware Risks

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

AWS Outage Aftermath

Critical Patches & Breaches

The Swedish Catastrophe

Luxury Meets Liability: The Harrods Vendor Breach

Weekly Threat Analysis (September 16-23, 2025)

Weekly Threat Analysis (Sep 9–16, 2025)

Weekly Threat Analysis (September 2-9, 2025)

What Your Threat Detection Must Catch

Weekly Threat Analysis (Aug 19–26, 2025)

Threat Analysis: The Triple Threat Landscape

WinRAR Zero-Day Exploited by RomCom

Trescudo Blog

Fluent Bit Cloud Risks & The Espionage Surge

Oracle EBS Extortion & Nutanix Ransomware Risks

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

AWS Outage Aftermath

Critical Patches & Breaches

Fluent Bit Cloud Risks & The Espionage Surge

Oracle EBS Extortion & Nutanix Ransomware Risks

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

AWS Outage Aftermath

Critical Patches & Breaches

The Swedish Catastrophe

Luxury Meets Liability: The Harrods Vendor Breach

Weekly Threat Analysis (September 16-23, 2025)

Weekly Threat Analysis (Sep 9–16, 2025)

Weekly Threat Analysis (September 2-9, 2025)

What Your Threat Detection Must Catch

Weekly Threat Analysis (Aug 19–26, 2025)

Threat Analysis: The Triple Threat Landscape

WinRAR Zero-Day Exploited by RomCom