Veteran owned information security service provider. RedLegg crafts custom solutions designed to find & eliminate vulnerabilities unique to your business.
Joined March 2009
- Tweets 4,561
- Following 1,860
- Followers 2,220
- Likes 1,692
539 Photos and videos
Effective MDR isn’t about monitoring.
It’s about decisions.
Without context, signals stay unclear.
Without validation, decisions break down.
Download the cheatsheet⬇️:
#Cybersecurity #MDR #SecurityOperations #ThreatDetection #IncidentResponse
7
Security Bulletin: Oracle PeopleSoft Enterprise PeopleTools - RCE (CVE-2026-35273)
A critical flaw in PeopleTools is being actively exploited by threat actors targeting organizations, especially in the education sector.
hubs.li/Q04l95WK0
64
Critical Ivanti Sentry Alert (CVE-2026-10520, CVE-2026-10523):
Two critical flaws enable unauthenticated attackers to bypass authentication and execute commands with root privileges. While exploitation hasn’t been observed in the wild, a public pro...
hubs.li/Q04l8FN30
53
Security Bulletin: Remote Code Execution Vulnerability in Veeam Backup & Replication - Veeam Backup & Replication vulnerability (CVE-2026-44963) allows remote code execution on domain-joined backup servers. CVSS 9.4. Patch immediately.
hubs.li/Q04l5PgS0
1
103
Security Bulletin: Second-Order OS Command Injection via JSON Input - FortiSandbox vulnerability (CVE-2026-25089) allows OS command injection through malicious JSON input. CVSS 9.1. Patch immediately.
hubs.li/Q04l5jzJ0
38
Strong passwords.
MFA enabled.
Policies in place.
Looks secure on paper.
Attackers test behavior, not configs.😂
Security is defined under pressure.
#CyberSecurity #IdentitySecurity #MFA #AccessControl #RiskManagement #HumanRisk
1
15
Security Bulletin: Check Point VPN Authentication Bypass Vulnerability - Check Point VPN vulnerability (CVE-2026-50751) allows authentication bypass in IKEv1 VPN deployments. Actively exploited and listed in CISA KEV. Patch immediately.
hubs.li/Q04kDhgp0
146
Are your security operations built to act on early signals?
Most environments generate constant activity.
Which signals matter?
Signals without context slow teams down.
See how detection and response are handled in practice:
hubs.li/Q04h17y10
#Cybersecurity #MDR
4
Security Bulletin: CVE-2026-28318 is a high-severity unauthenticated denial of service vulnerability in SolarWinds Serv-U that has been added to the CISA Known Exploited Vulnerabilities Catalog.
#ThreatIntel #ServU #SolarWinds
hubs.li/Q04knjGz0
1
56
Security Bulletin: Cisco Catalyst SD-WAN Manager (CVE-2026-20245) is seeing active exploitation. Attackers with netadmin access can escalate privileges to root and push malicious configs to edge devices.
#ThreatIntel #SDWAN #Cisco
hubs.li/Q04khX950
64
Security automation delivers the most value when it aligns with operational reality.
The organizations seeing the greatest impact aren't just building workflows. They're continuously refining them as their environments evolve.
Read...
hubs.li/Q04khbWD0
11
Security Bulletin: Cisco Unified CM (CVE-2026-20230, CVSS 8.6) allows SSRF attacks that may lead to root compromise. PoC available — patch now.
#ThreatIntel #RedLeggCTI
hubs.li/Q04k9clD0
76
Would you spot a fake domain that looks identical?
Attackers need credibility, not access.
Small changes make fake domains look real.
Download the infographic to understand how homographic attacks work👇
#Cybersecurity #Phishing #MDR #ThreatDetection #InfoSec
20
Security Bulletin: Windows Netlogon (CVE-2026-41089, CVSS 9.8) allows unauthenticated remote code execution on Windows Server systems. Exploited in the wild — patch now.
#ThreatIntel #RedLeggCTI
hubs.li/Q04jDx4Q0
118
How prepared is your team for a real incident?
Plans don’t fail on paper.
They fail in real time.
Without practice, response breaks down.
Test your response before it matters⬇️:
hubs.li/Q04hB_Qc0
#Cybersecurity #IncidentResponse #TabletopExercises
12
Security Bulletin: PAN-OS GlobalProtect Authentication Bypass Vulnerability - PAN-OS GlobalProtect vulnerability (CVE-2026-0257) allows authentication bypass in affected GlobalProtect deployments. Exploit attempts observed. Patch immediately.
hubs.li/Q04jrXzS0
93
Are low-severity findings really low risk?
Not when they connect.
Individually manageable.
Together, a path.
See how penetration testing uncovers real attack paths:
hubs.li/Q04h0Y9X0
#Cybersecurity #PenTesting #RiskManagement #ThreatExposure #InfoSec
47
CVE-2026-48027 - Critical Supply Chain Alert: Nx Console (VS Code) version 18.95.0 was compromised and is actively exploited (CISA KEV). Malicious code was distributed via official marketplaces in a short attack window.
#ThreatIntel #NXConsole
hubs.li/Q04jdSHw0
74
Security Bulletin: DAEMON Tools Lite (CVE-2026-8398, CVSS 9.8) was impacted by a malicious supply-chain compromise. Exploited in the wild — act now. #ThreatIntel #RedLeggCTI
hubs.li/Q04jfy8D0
107
Fake domain.
Real domain.
They look the same.
That’s the point.😬
Modern phishing doesn’t rely on obvious mistakes.
It blends in.
One moment of recognition over verification is all it takes.
#Phishing #SocialEngineering #CyberSecurity #HumanRisk
1
26