Threats & incidents
-
European agencies warn on Russian technology targeting
European intelligence warnings link Russian technology targeting to sanctions pressure, cyber espionage, defence suppliers, dual-use research, and critical infrastructure exposure.
-
France keeps Exchange alert active
France has kept its Exchange Server warning active, keeping exposed mail infrastructure, emergency mitigations, and compromise detection inside the current European risk cycle.
-
Belgium warns Netlogon flaw is exploited
Belgium says a critical Netlogon flaw is now being exploited, putting domain-controller patching, compromise detection, and Active Directory recovery at the centre of enterprise identity risk.
-
Residential proxies are breaking trusted traffic
A Dutch botnet takedown shows how residential proxy abuse is weakening old assumptions about trusted traffic, with consequences for IP reputation, geolocation, identity controls, and fraud detection.
-
The security stack now needs its own controls
Recent Fortinet and Trend Micro disclosures show how endpoint management and security platforms have become privileged infrastructure, requiring governance that goes beyond patching and product trust.
-
GlobalProtect flaw is under attack
Palo Alto Networks has updated its GlobalProtect vulnerability advisory again. The affected PAN-OS issue can allow unauthorised VPN connections in specific configurations and is now marked as attacked.
-
Italy reports sustained phishing pressure
CERT-AGID recorded 94 malicious campaigns in one reporting week alone. The data shows persistent identity, malware, and public-service impersonation pressure across a major European market.
-
Dutch police disrupt vast botnet
Dutch police have disrupted botnet infrastructure controlling millions of devices. The operation exposed how compromised consumer and edge systems can become criminal infrastructure at European scale.