Security Advisories

Vendor advisories, CISA bulletins, and government cybersecurity guidance translated for working defenders.

3 articles

All AI Intelligence Cloud Threat Brief Advisory Guide SMB Strategy Whitepaper Forensics

December 22, 2023

PCI DSS 4.0: What Changed and What to Do

PCI DSS 4.0 became mandatory in early 2024 with a long tail of "future-dated" requirements landing March 31, 2025. If you are still operating to 3.2.1, the gap is wider than it looks.

Threat BriefAdvisory

February 12, 2019

Supply Chain Attacks on npm and PyPI: What Changed in 2025

Typosquatting, dependency confusion, and the compensating controls we now recommend by default.

AdvisoryForensics

September 7, 2017

CISA Reports BRICKSTORM Used For Long-Term Access

Tactics used to maintain long-term implants in U.S. systems. And detection guidance you can apply this week.