The Human Connection Blog

Continuing on from the roles in the previous blog... Defensive Cyber D&D Class: The Fighter Saves: Strength and Constitution D&D Class Description: A master of all arms and armor. Reliab...

Introduction Welcome, weary traveler.  The realm before you is vast and often misunderstood, filled with winding roads, hidden passageways, and ever-present threats moving through the shadows.  ...

ClickFix has become one of the most popular and successful social engineering techniques in the last decade. With multiple deployment options and a high success rate, cybercriminals are profiting con...

Welcome back to our series, “Behind the Scenes of Immersive One”! The following is a conversation with AmyMillard​, Product Manager for Immersive One, and RebeccaSchimmoeller​, Lead Product Marketing...

In February 2026, Zscaler ThreatLabz uncovered a sophisticated cyber espionage campaign orchestrated by APT37, assessed to be a North Korean state-sponsored threat actor. Dubbed "Ruby Jumper", this c...

In February 2026, the Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-49113 to its Known Exploited Vulnerabilities (KEV) catalogue following exploitation in the wild. This crit...

In February 2026, security researchers across different organizations exposed a long-running malware distribution campaign targeting users of the popular 7-Zip archiving utility. Operating for an ext...

Welcome back to our series, “Behind the Scenes of Immersive One”! The following is a conversation with BenMcCarthy​, Lead Cybersecurity Engineer for Immersive One, and RebeccaSchimmoeller​,  Lead Pro...

In January 2026, threat researchers at Rapid7 detailed a sophisticated supply chain attack targeting the Notepad++ update mechanism. Between July and October 2025, attackers compromised the project’s...

On January 16, 2026, advisories were released covering a critical vulnerability in MCPJam Inspector, the local-first development platform for MCP servers. The Latest version, 1.4.2 and earlier, is vu...

On January 7, 2026, Cyera Research Labs released an advisory for "Ni8mare," a critical unauthenticated remote code execution vulnerability (CVE-2026-21858) in n8n with a CVSS score of 10.0. The flaw ...

On December 3, 2025, the cybersecurity world received news of a critical vulnerability in the React 19 ecosystem. This critical flaw, tracked as CVE-2025-55182 with a CVSS score of 10.0, affects Reac...