inblog logo
|
Trescudo Blog
  • Main Home

Trescudo Blog

Explore the latest in cybersecurity with the Trescudo blog. Our experts provide in-depth analysis on threat intelligence, risk management, and compliance challenges in cloud, OT, and endpoint security. Additionally, you can find various guides, briefs and reports under the Resources menu item of our main website - https://trescudo.com
See AllCompliance & RiskIndustry VerticalsProducts & SolutionsCybersecurity StrategyBreach AnalysesThreat Analysis
Fluent Bit Cloud Risks & The Espionage Surge

Fluent Bit Cloud Risks & The Espionage Surge

Critical Fluent Bit flaws expose cloud infrastructure. Plus, Russian espionage accelerates with COLDRIVER and npm supply chain attacks.
Ev
Nov 26, 2025
Threat Analysis
Oracle EBS Extortion & Nutanix Ransomware Risks

Oracle EBS Extortion & Nutanix Ransomware Risks

Oracle EBS zero-days are fueling a massive extortion campaign. Plus, ransomware groups Akira and Helldown pivot to virtualization.
Ev
Nov 22, 2025
Threat Analysis
Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

Rhysida fake Teams ads (OysterLoader/Latrodectus), new CISA KEV vulns, EY & Nikkei breaches—actionable takeaways for EU/NIS2 teams.
Ev
Nov 11, 2025
Threat Analysis
AWS Outage Aftermath

AWS Outage Aftermath

Breakdown of the AWS US-EAST-1 DNS incident—timeline, cost modelling, concentration risk, DORA reporting timelines, and a 7-day engineering plan.
Ev
Oct 27, 2025
Threat Analysis
Critical Patches & Breaches

Critical Patches & Breaches

Weekly threat analysis (Oct 7–14, 2025): Oracle EBS zero-days, Salesforce leaks, SimonMed breach, GoAnywhere CVE-2025-10035—priority actions for EU/UK teams.
Ev
Oct 15, 2025
Threat Analysis
Fluent Bit Cloud Risks & The Espionage Surge

Fluent Bit Cloud Risks & The Espionage Surge

Critical Fluent Bit flaws expose cloud infrastructure. Plus, Russian espionage accelerates with COLDRIVER and npm supply chain attacks.
Ev
Nov 26, 2025
Threat Analysis
Oracle EBS Extortion & Nutanix Ransomware Risks

Oracle EBS Extortion & Nutanix Ransomware Risks

Oracle EBS zero-days are fueling a massive extortion campaign. Plus, ransomware groups Akira and Helldown pivot to virtualization.
Ev
Nov 22, 2025
Threat Analysis
Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

Rhysida Malvertising, KEV Patch-Now, EY & Nikkei Breaches

Rhysida fake Teams ads (OysterLoader/Latrodectus), new CISA KEV vulns, EY & Nikkei breaches—actionable takeaways for EU/NIS2 teams.
Ev
Nov 11, 2025
Threat Analysis
AWS Outage Aftermath

AWS Outage Aftermath

Breakdown of the AWS US-EAST-1 DNS incident—timeline, cost modelling, concentration risk, DORA reporting timelines, and a 7-day engineering plan.
Ev
Oct 27, 2025
Threat Analysis
Critical Patches & Breaches

Critical Patches & Breaches

Weekly threat analysis (Oct 7–14, 2025): Oracle EBS zero-days, Salesforce leaks, SimonMed breach, GoAnywhere CVE-2025-10035—priority actions for EU/UK teams.
Ev
Oct 15, 2025
Threat Analysis
The Swedish Catastrophe

The Swedish Catastrophe

The Swedish Catastrophe: A single vendor breach exposed the data of 1.5 million people (15% of Sweden). Learn the urgent lessons on third-party risk and national security.
Ev
Oct 08, 2025
Threat AnalysisBreach Analyses
Luxury Meets Liability: The Harrods Vendor Breach

Luxury Meets Liability: The Harrods Vendor Breach

Past-week roundup—Cisco ASA zero-days, Harrods data leak, airport disruption updates, ENISA trends, Google Drive ransomware detection.
Ev
Oct 01, 2025
Threat Analysis
Weekly Threat Analysis (September 16-23, 2025)

Weekly Threat Analysis (September 16-23, 2025)

A critical Confluence zero-day and AI voice clone attacks (MFA Bombing) are this week's top threats. Our analysis breaks down these incidents and what they mean for your security posture
Ev
Sep 24, 2025
Threat Analysis
Weekly Threat Analysis (Sep 9–16, 2025)

Weekly Threat Analysis (Sep 9–16, 2025)

JLR production halt, critical VMware vCenter flaws, and a surge in QR-code phishing. See what your threat detection must catch—and what to fix in 48 hours.
Ev
Sep 16, 2025
Threat Analysis
Weekly Threat Analysis (September 2-9, 2025)

Weekly Threat Analysis (September 2-9, 2025)

Trescudo's analysis of the Salesloft supply chain breach & Sitecore zero-day. Learn the lessons from this week's top cyber threats for Benelux businesses under NIS2.
Ev
Sep 10, 2025
Threat Analysis
What Your Threat Detection Must Catch

What Your Threat Detection Must Catch

This week: Nevada ransomware, TransUnion 4.4M breach, Citrix NetScaler zero-day, and WhatsApp zero-click—plus a 48-hour threat detection plan.
Ev
Sep 01, 2025
Threat Analysis
Weekly Threat Analysis (Aug 19–26, 2025)

Weekly Threat Analysis (Aug 19–26, 2025)

Weekly threat analysis: Orange Belgium breach, OAuth/Salesforce campaign, Cisco FMC CVE-2025-20265, Apple zero-day—plus a 48-hour CISO playbook and hunt tips.
Ev
Aug 26, 2025
Threat Analysis
Threat Analysis: The Triple Threat Landscape

Threat Analysis: The Triple Threat Landscape

Benelux threat detection briefing: Orange Belgium breach, Russian “Static Tundra” Cisco exploits, and an Apple zero‑day—actions boards can take in 48 hours.
Ev
Aug 22, 2025
Threat Analysis
WinRAR Zero-Day Exploited by RomCom

WinRAR Zero-Day Exploited by RomCom

RomCom (Storm-0978) weaponised a WinRAR zero-day to plant backdoors. See TTPs, NIS2 exposure, and a patch-first detection plan tailored for Benelux teams.
Ev
Aug 11, 2025
Threat Analysis
Made with inblog

Trescudo Blog

RSS·Powered by Inblog