April 17, 2026 | ITBriefcase.net Why it matters: Microsoft April 2026 Patch Tuesday addressed second-largest vulnerability count in history with 167 flaws including 2 zero-days (CVE-2026-32201 SharePoint actively exploited, CVE-2026-33825 Windows Defender "BlueHammer"...
The latest in Security
Three of the world’s foremost protection leaders unite to redefine leadership for executives navigating complexity and risk NEW YORK, April 15, 2026 – A groundbreaking new book, Protectors Edge: Leadership through Strategy and Action, brings together three of the...
April 10, 2026 | ITBriefcase.net Why it matters: Russia's APT28 (GRU military unit 26165) executed FrostArmada campaign since May 2025, compromising 18,000+ MikroTik and TP-Link SOHO routers across 120 countries to hijack DNS traffic, enabling adversary-in-the-middle...
April 3, 2026 | ITBriefcase.net Why it matters: Google patched CVE-2026-5281 on March 31, 2026—the fourth actively exploited Chrome zero-day of 2026—a use-after-free vulnerability in Dawn WebGPU component enabling remote code execution via crafted HTML pages, with...
March 27, 2026 | ITBriefcase.net Why it matters: Cisco Secure Firewall Management Center CVE-2026-20131 (CVSS 10.0) was exploited as a zero-day by Interlock ransomware since January 26, 2026—36 days before public disclosure on March 4—enabling unauthenticated remote...
March 20, 2026 | ITBriefcase.net Why it matters: This week Google released emergency Chrome updates addressing two actively exploited zero-days—CVE-2026-3909 (Skia graphics library out-of-bounds write) and CVE-2026-3910 (V8 JavaScript engine inappropriate...
In this episode of Inside the Briefcase, host Rocky Giglio speaks with Eric Fourrier, CEO of GitGuardian, about the founding story of the company, the evolution of secrets management in software development, and the impact of AI on security. Eric shares insights on...
Many recent breach postmortems share a common detail. Attackers did not have to hack directly into the system, but simply reused access that already existed. The easiest path to data and systems can now be a forgotten OAuth integration, an overly broad app consent...
February 27, 2026 | ITBriefcase.net Why it matters:Â This week witnessed an unprecedented security crisis with Microsoft February 2026 Patch Tuesday addressing 58 vulnerabilities, including six actively exploited zero-days affecting Windows Shell (CVE-2026-21510, CVSS...
December 5, 2025 | ITBriefcase.net Why it matters: This week CISA added critical Android Framework zero-day vulnerabilities CVE-2025-48572 and CVE-2025-48633 to its Known Exploited Vulnerabilities catalog on December 2 with evidence of limited targeted exploitation...


