BearDefend

News

Threat notes, advisories, and quick analysis. Newest first.

News 2026-02-11

Weekly Threat Roundup — 2026-02-11

A quick scan of what mattered this week: phishing trends, credential stuffing, and patch reminders.

roundup threats phishing
News 2026-02-07

Advisory: Dependency Confusion Still Shows Up in CI

Why dependency confusion remains a real issue and how to eliminate the common root causes.

supply-chain ci-cd advisory
News 2026-02-05

How We Triage CVEs (Without Panic Patching)

A sane triage workflow that prioritizes exploitable risk instead of raw CVSS scores.

cve vulnerability-management process
News 2026-02-03

Incident Note: SSO Misconfiguration Patterns

Common SSO and SAML misconfigurations we keep seeing — and how to validate your setup.

sso saml identity
News 2026-02-01

Ransomware Response: The First 24 Hours

A practical checklist for the first day of a ransomware incident: containment, evidence, comms, and recovery.

ransomware incident-response playbook
News 2026-01-28

Browser Security Changes to Watch This Quarter

Cookie tightening, mixed content enforcement, and what web apps should test now.

web browsers privacy
News 2026-01-25

Cloud Exposures: The 5 Most Common Causes

Misconfigured storage, permissive IAM, and forgotten assets are still the top drivers of cloud exposure.

cloud iam posture
News 2026-01-21

MFA Fatigue: How Push-Spam Attacks Work

A short explainer on push MFA fatigue attacks and how to reduce the risk with simple changes.

mfa auth phishing
News 2026-01-17

Supply Chain Attacks: A Quick Primer

Where supply chain attacks happen (source, build, dependencies) and what defenses are most effective.

supply-chain devsecops basics
News 2026-01-12

Alert Fatigue: How to Tune for Signal

If everything is urgent, nothing is. Here's a fast path to higher signal alerts.

detection soc logging
Previous Page 1 of 2 Next