We Live Secruity
- Forgotten UEFI shims undermining Secure Boot July 14, 2026ESET researchers discovered 11 vulnerable UEFI shim bootloaders signed by Microsoft that allow attackers to bypass UEFI Secure Boot by exploiting decade-old vulnerabilities
- ESET Threat Report H1 2026 July 8, 2026A view of the H1 2026 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts.
- Cyber readiness for SMBs: Getting the basics right July 3, 2026AI is changing cybercrime, but SMB cyber readiness still largely depends on closing the familiar gaps
- This month in security with Tony Anscombe – June 2026 edition June 30, 2026Three-day patching deadlines, exposed fuel-tank systems, scams costing billions of dollars, and social media bans for children all gave Tony plenty to unpack in June 2026
- Inside the inbox: Why cybercriminals want to break into your email account June 29, 2026Your inbox is an identity system all of its own: whoever owns it may own a lot more
- SMB cyber readiness: the road to resilience starts here June 26, 2026Your business may be small, but its attack surface is anything but. Readiness is the first step to resilience.
- Gamaredon in 2025: Leveraging tunnels, workers, dead drops, and new alliances June 25, 2026ESET Research analyzes Gamaredon’s new toolset and the group’s growing reliance on legitimate online services to hide its C&C infrastructure and exfiltrate stolen data
- ESET takes part in Operation Endgame to disrupt Amadey and Stealc June 24, 2026ESET researchers assisted in the global disruption of the Amadey botnet and Stealc infostealer, providing technical analysis, infrastructure tracking, and affiliate-level insights
- Killing me gently: Inside Gentlemen’s EDR killer framework June 18, 2026ESET Research shares the results of a months-long investigation into the suite of EDR killers maintained by the RaaS gang Gentlemen
- Protecting legacy OT systems against modern cyberthreats June 17, 2026Many manufacturing plants depend on OT systems that stay in service for many years. That long run can hide significant cybersecurity risks.