PROCIRCULAR BLOG

Educating your business on the importance of cybersecurity

Mythos & Glasswing are complicated and new. Jim is going to help us understand...

Posted by Aaron R. Warner on Apr 19, 2026 11:41:39 AM

Two weeks ago, Anthropic announced that its newest AI model was too dangerous to release to the public. The Claude Mythos Preview reportedly found critical software vulnerabilities, including some that had gone undetected for over twenty years. In response, Anthropic launched Project Glasswing, a $100 million coalition that includes Apple, Microsoft, Google, AWS, JPMorgan Chase, CrowdStrike, the Linux Foundation, and about fifty other major industry players. Their goal is to find and fix the most serious issues before attackers do. That was the main story.

Read More

Topics: Penetration Testing, AI & Emerging Technology

The 10-Petabyte Heist: The Recent China Supercomputing Breach Means

Posted by Aaron R. Warner on Apr 9, 2026 4:55:05 PM

If you've been in cybersecurity long enough, you develop a reflex: dramatic claims usually aren't true. So when a tweet started circulating in early April 2026 alleging 10 petabytes of data had been stolen from China's National Supercomputing Center in Tianjin—including defense documents and missile research—my reaction was the same as most practitioners: prove it. This brings us to the crucial question: did it really happen?

Read More

Topics: Data Protection & Privacy, Penetration Testing, Monitoring & Detection, Compliance & Governance

ClickFix: The Latest Twist in Social Engineering Scams

Posted by ProCircular Team on May 1, 2025 2:57:30 PM

ProCircular has been monitoring a troubling uptick in ClickFix attacks—a sneaky form of social engineering that tricks users into running harmful scripts on their systems. This type of attack is particularly clever, masquerading as legitimate interactions to catch users off guard.

Read More

Topics: Data Protection & Privacy, Penetration Testing, Security Awareness, Monitoring & Detection

StealthCraft: Unveiling the Path to Total Domain Domination

Posted by Alexis Diediker on Apr 2, 2025 12:05:55 PM

With EDR (Extended Detection and Response) becoming more necessary and common, it begs the question of what tactics and techniques are evading these protections. ProCircular recently conducted a penetration test involving evasion methods that did just that by successfully bypassing EDR protections by leveraging lay-of-the-land tools and incident response techniques. Our objective was to achieve full domain compromise within the targeted network, demonstrating the vulnerabilities and potential weaknesses that need to be addressed for robust cybersecurity. A walkthrough of the attack can be examined below.

Read More

Topics: Penetration Testing, Incident Response

KAPE: The Weaponization of DFIR Tools

Posted by Alexis Diediker on Apr 1, 2025 9:43:16 AM

As businesses evolve to achieve higher security maturity, threat actors and penetration testers must also rise to the challenge. Modern third-party security applications such as Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), Windows Defender products, and application allowlists have made offensive tools obsolete. Gone are the days when all a penetration tester needed was a remote shell or desktop connection to extract user data and credentials from local machines and domain controllers. Instead of fighting against signature-based and obfuscation methods, attackers are turning to digital forensics incident response (DFIR) tools, like KAPE, to get the dirty work done for them. After all, you never have to sneak into the party if the bouncer thinks you’re already on the list.

Read More

Topics: Penetration Testing, Incident Response

  • There are no suggestions because the search field is empty.

ProCircular is a Full-Service Information Security Firm

We are passionate about helping businesses navigate the complex world of information security, and our blog is another great source of inforamtion. We can assist you no matter where you are in your security maturity journey:

  • Breached or hit with ransomware?
  • Don't know where to start? 
  • Looking to confirm your security with a third party?

Secure your future with ProCircular.

Recent Posts

Subscribe to Email Updates