Fortra

Most security content is easy to file away and forget. #TheArtofSecurity is Fortra's podcast hosted by Josh Davies and Tyler Reguly, and six episodes in, it's covering ground that most security content avoids: who watches the vendors trusted to protect you, whether patching everything is actually the right call, what cyber hygiene means before you add complexity, and how supply chain compromise turns trusted code into the attack path. Subscribe on YouTube, Spotify, or Apple Podcasts: https://lnkd.in/dGriX5xY

👀http://spr.ly/6048B8XGAC Josh Taylor examines a critical shift in cyber strategy. The long shadow of NSA-era thinking is giving way to something more adaptive and less visible. AI is quietly shaping a new doctrine. This is not just about tools. It is about how cyber power is defined, deployed, and scaled. Security leaders need to understand the implications now as the balance between offense and defense evolves. Read the full analysis. #FoundryExpert #Cybersecurity Fortra

The victim sees a clean Adobe Document Cloud page. Professional, reassuring. What they don't see: a hidden iframe has already downloaded a remote access trojan while they were reading it. FIRE researchers published a full breakdown of #RatPressto, a standardized phishing kit operating across compromised WordPress sites. The operation targets financial organizations and uses ScreenConnect, a legitimate enterprise remote access tool, as its payload, specifically because it blends into normal traffic and lowers detection rates. Attribution evidence links the campaign to a Brazilian-origin actor with self-hosted infrastructure in São Paulo and a deployment pattern that suggests administrative-level access to victim WordPress environments. Read the full FIRE analysis: https://lnkd.in/d7DxJrxR

Attackers don't need to build infrastructure when yours will do it for them. Israel Cerda, Security Operations Lead at Fortra, breaks down how threat actors are embedding malicious content in GitHub commit messages to run vishing campaigns through GitHub's own email notification system. Because the emails come from a trusted platform, traditional spam filters don't catch them. Read it in Cyber Defense Magazine's May 2026 edition: https://lnkd.in/dFa6eX5q

Heartbleed. PrintNightmare. Log4Shell. Thousands of other CVEs with CVSS scores just as critical never get a name, a logo, or a news cycle. So what does branding a vulnerability actually do to how we respond to it? Josh Davies and Tyler Reguly dig into this on #TheArtofSecurity podcast. The conversation covers CVE identifiers, responsible disclosure, media cycles, and what happens to SOC teams when the "next big thing" turns out to be noise. SOC analysts and threat researchers especially: this one's for you. 🎧 Listen now: https://lnkd.in/dzp94HaS

Fortra is expanding its distribution partnership with Climb Channel Solutions UK into the UK and Ireland. Climb has been distributing Fortra's cybersecurity platform in North America since 2024. The UK&I expansion gives channel partners and MSPs across the region a direct path to Fortra's data security capabilities as their customers work through AI adoption, compliance requirements, and the question of what's actually sitting in their environment. Climb was also named Fortra's North America Commercial Partner of the Year at the Americas Partner Summit last month. 🔗 Read the full announcement: https://lnkd.in/d7txnzYi

The 2026 Fortra APAC Partner Summit in Da Nang is a wrap. Partners came from across the region, the discussions were sharp, and the 2025 Partner Award winners earned every bit of recognition. Big thanks to everyone who joined us in Vietnam 🇻🇳

FIRE researchers documented a phishing technique that puts the lure on your calendar before you ever see the email. The attack uses .ics files to auto-create a tentative Outlook meeting. No click required from the victim. The calendar entry then runs on its own logic — reminders, notifications, a meeting description containing the scam message and an HTML lure. From there, Cloudflare redirects lead to fake GoDaddy or DocuSign pages, and the EvilTokens phishing kit handles device code phishing to steal M365 session tokens directly. Two things make this harder to catch: 1. .ics files are broadly trusted by security tools 2. Moving the source email to junk doesn't touch the calendar entry. A hard delete is the only way to remove it. HackRead Media covered the research this week. Full report in comments. https://lnkd.in/eK-AsrWB