Cato
-
Vendor News
Cyberattack on the Sun: Threat Actors Manipulate Solar Panel Systems; Agentic AI Increases the Risk
Millions of homes, businesses, and hospitals depend on solar power, a clean and cost-effective source of renewable energy. Adoption has…
Read More » -
Vendor News
Cato CTRL™ Threat Research: A Deep Dive into a New JSCEAL Infostealer Campaign
Executive Summary JSCEAL is an information stealer that’s been targeting users of cryptocurrency applications. As reported by Check Point Research…
Read More » -
Vendor News
Mitigating Credential Phishing in the Age of AI and Cloud Convergence
Phishing remains one of the most effective methods for stealing credentials and breaching enterprise environments. Despite advanced email and browser protections, attackers now leverage AI, and…
Read More » -
Vendor News
Cato CTRL™ Threat Brief: “React2Shell” Vulnerability Targeting React Server Components
Executive Summary On Wednesday, December 3, a critical remote code execution (RCE) vulnerability in React Server Components (RSC), dubbed React2Shell…
Read More » -
Vendor News
The Shadow AI reality: Inside Cato’s survey results
AI tools have proved their worth in the workplace. They help us write, research, code, plan, and automate. They’re making…
Read More » -
Vendor News
Cato CTRL™ Threat Research: From Productivity Boost to Ransomware Nightmare – Weaponizing Claude Skills with MedusaLocker
Executive Summary Claude Skills is a new feature from Anthropic that has gained rapid adoption, with more than 17,000+ GitHub stars already since its launch in October 2025, allowing…
Read More » -
Vendor News
Gradual by Design: What the Cloudflare Outage Reveals About Robust SASE Architecture and Operations
On November 18, 2025, a single configuration file change at Cloudflare disrupted access to large parts of the web. Around…
Read More » -
Vendor News
Cato CTRL™ Threat Research: HashJack – Novel Indirect Prompt Injection Against AI Browser Assistants
TL;DR HashJack is a newly discovered indirect prompt injection technique that conceals malicious instructions after the # in legitimate URLs.…
Read More » -
The Dark Side of Black Friday: When Ransomware Attacks Join the Shopping Rush
When Shoppers Line Up, So Do Cybercriminals As retailers gear up for the year’s biggest sales, cybercriminals are preparing for…
Read More » -
Vendor News
Cato CTRL™ Threat Research: Two Vulnerabilities in Anthropic’s MCP SDK Enable OAuth Token Theft and Supply Chain Attacks
Executive Summary The SolarWinds supply chain attack in 2020 reminded the world how a single weakness in trusted software can…
Read More »