Should Organizations Block AI Browsers? Security Leaders Discuss

Organizations are encouraged block agentic browsers. 

from Cybersecurity News https://ift.tt/ERwjXQi

A Lack of AI Governance Leads to Additional Security Risks

Security leaders need concrete AI guidelines to prevent risks.

from Cybersecurity News https://ift.tt/euZbDvn

Security Leaders Discuss the Marquis Data Breach

Marquis Software Solutions experienced a data breach; security leaders discuss. 

from Cybersecurity News https://ift.tt/rNZqyh3

State-Sponsored Actors Leverage Backdoor Malware, CISA Warns

State-sponsored cyber actors with the People’s Republic of China (PRC) are leveraging a sophisticated backdoor malware.

from Cybersecurity News https://ift.tt/cBmtWov

5 Cybersecurity Predictions for 2026

Quantum computing, biometrics and more — these are five predictions for the cybersecurity landscape in 2026.

from Cybersecurity News https://ift.tt/qWEawTz

After Email Hacking, University Targeted By Another Breach

After experiencing an email hacking incident on Oct. 31, the University of Pennsylvania has faced another cyberattack. 

from Cybersecurity News https://ift.tt/fbixq5v

34M Impacted by Coupang Breach, Security Leaders Respond

Security leaders discuss the Coupang data breach, which affected approximately 34 million customers. 

from Cybersecurity News https://ift.tt/xSAo1Mz

AI is Making Identity Verification More Difficult, Report Finds

Recent research by VPN.com finds that the development of artificial intelligence (AI), robotics and neural implants are creating additional identification security concerns.

from Cybersecurity News https://ift.tt/xgaYGyR

Security Leaders Discuss SitusAMC Cyberattack

A real estate finance platform announced it experienced a cyberattack.

from Cybersecurity News https://ift.tt/oxAPQ4J

How to Stay Safe Online This Black Friday, According to a Cyber Expert

A cyber expert shares how individuals — and organizations — can stay safe during the holiday shopping season.

from Cybersecurity News https://ift.tt/3HWFXlJ

FCC Terminates Telecom Cyber Rules Enacted After Salt Typhoon Exploit

The FCC has chosen to end the telecommunications cyber rules enacted after the Salt Typhoon espionage campaign.

from Cybersecurity News https://ift.tt/mF0AXty

Logitech Confirms Data Breach, Security Leaders Respond

Logitech has confirmed it experienced a data breach, and security leaders are sharing their insights. 

from Cybersecurity News https://ift.tt/Vi1hJ7Z

Security Leaders Respond to Cloudfare Outage

On Tuesday, November 18, Cloudfare experienced an outage that led to several websites being slow to load or completely unavailable. The outage affected programs such at ChatGPT, X, and local government websites.

from Cybersecurity News https://ift.tt/XD9bRoG

65% of the Forbes AI 50 List Leaked Sensitive Information

Nearly two-thirds of private AI companies listed in the Forbes AI 50 leaked sensitive data. 

from Cybersecurity News https://ift.tt/KuhvFqA

Economic Uncertainty Leads to Additional Security Risks

Security risks amplified by economic uncertainty.

from Cybersecurity News https://ift.tt/MxOUqQu

The New Battlefield: 3 Veterans Discuss Their Transition to Cybersecurity

Three veterans share their career journeys into cybersecurity. 

from Cybersecurity News https://ift.tt/GFq2aKo

1.2M Individuals’ Data Stolen In University Hacking

The University of Pennsylvania experienced a cyber incident in which a series of mass emails were sent to students, parents, faculty and alumni. 

from Cybersecurity News https://ift.tt/lqYOhHX

Beware of Tricks: Halloween Scams Are Stealing Credentials, Money

Halloween tricks aren't reserved for trick-or-treaters — cybercriminals are preying on the Halloween spirit to enact malicious spam. 

from Cybersecurity News https://ift.tt/cnrZGzO

40B Records Exposed From Marketing and Email Data Platform

Approximately 40 billion records (13 TB) were found in an exposed database. 

from Cybersecurity News https://ift.tt/Z6ukMqg

Security Leaders Discuss Cyberattack on American Airlines Subsidiary

Envoy Air, subsidiary of American Airlines, experienced a cyberattack. 

from Cybersecurity News https://ift.tt/sNjGPQm

Security Leaders Share Why 77% Organizations Lose Data Due to Insider Risks

77% of organizations have experienced insider-related data loss in the last 18 months.

from Cybersecurity News https://ift.tt/jZHU1Yy

180,000 Records of PII and Payment Information Exposed

Approximately 180,000 records containing PII and payment data were exposed. 

from Cybersecurity News https://ift.tt/0faQMBR

60% of Security Leaders Say Threat Actors Are Evolving Too Quickly

Threat actors are evolving too quickly for organizations to keep up.

from Cybersecurity News https://ift.tt/lgb89fE

85,000 Pet and Pet Owner Records Exposed

More than 85,000 pet and pet owner records were exposed. 

from Cybersecurity News https://ift.tt/a8bePtY

Why a Unified View Across IT, Continuity, and Security Makes or Breaks Crisis Response

Most organizations today aren’t short on alerts. The real problem is what comes next.

from Cybersecurity News https://ift.tt/sb7pSgW

Protecting Critical Infrastructure With Limited Funding

In this episode of Lock It Down with Security Magazine, Associate Editor Taelor Sutherland speaks with Chetrice Romero, a senior cybersecurity advisor at Ice Miller. 

from Cybersecurity News https://ift.tt/Zgk2Pi4

Cyber Risks Can Be Legal Risks: How to Protect the Organization

Attorneys share their insights about the legal considerations organizations should be aware of when it comes to AI, third party relationships and BYOD policies.

from Cybersecurity News https://ift.tt/CBznMhQ

145,000 Healthcare Records Exposed

A database in the healthcare industry was exposed. 

from Cybersecurity News https://ift.tt/Qjgm3yz

US Government Shutdown Begins October 1, 2025

The U.S. government has shut down as of 12:01 am on October 1, 2025.

from Cybersecurity News https://ift.tt/tHzJ9iP

3 Ways to Bolster Security This Cybersecurity Awareness Month

While improving cybersecurity is a year-round initiative, this month serves as an excellent opportunity for organizations to reorient their security priorities. 

from Cybersecurity News https://ift.tt/A1zOpgW

WestJet Notifies American Consumers of Data Breach

WestJet, an Alberta Partnership and Canadian commercial airline headquartered in Calgary, Alberta has notified United States residents of a recent cybersecurity incident that may affect certain individuals' personal information.

from Cybersecurity News https://ift.tt/9kABjPe

5M Records Exposed, Leaking Sensitive Auto Insurance Data

More than 5 million records were exposed in an online database. 

from Cybersecurity News https://ift.tt/QPJ4TL9

Cyberattack Disrupts European Airports, Security Leaders Respond

A cyberattack disrupted operations in European airports. Cyber experts are sharing their insights. 

from Cybersecurity News https://ift.tt/96EYXjm

Sensitive Intel Exposed: DHS Data Hub Accessible to Thousands

A data hub for the DHS exposed sensitive information. 

from Cybersecurity News https://ift.tt/349AhwT

Scattered Spider Targets Financial Sector After Alleged Retirement

After Scattered Spider claimed to retire, research suggests the group has already returned to target the financial sector.

from Cybersecurity News https://ift.tt/8uOqxfc

CISA 2015 Closes in on Expiration, Security Leaders Share Concerns

What happens if the Cybersecurity Information Sharing Act of 2015 expires? Security leaders share their concerns. 

from Cybersecurity News https://ift.tt/CXiHbsv

Did Scattered Spider Scatter? Cyber Experts Are Skeptical

At least 15 ransomware gangs have announced retirement, but security leaders aren’t convinced. 

from Cybersecurity News https://ift.tt/CmLjSi9

Security Leaders Discuss Restaurant Brands International’s Vulnerabilities

According to research from two ethical hackers, Restaurant Brands International (RBI) has security flaws that could enable a malicious actor to remotely eavesdrop on orders in the drive-through. 

from Cybersecurity News https://ift.tt/pD4BW0b

U.S. Senator Calls for Investigation of Microsoft

U.S. Senator Ron Wyden (D-OR) has called for an investigation of Microsoft, claiming the company’s insecure software has enabled cyber threats.  

from Cybersecurity News https://ift.tt/I67Ve4H

Russian Offensive Cyber Operations: Analyzing Putin’s Foreign Policy Actions

The broad strokes of what cybersecurity leaders need to know about Putin’s foreign policy actions. 

from Cybersecurity News https://ift.tt/PhdRtzj

1.6M Calls and Voicemails Exposed Online

1.6 million audio files were exposed. 

from Cybersecurity News https://ift.tt/s8azclG

3 Major K-12 Cyber Risks and How to Mitigate Them

Cyber experts share 3 major threats to school cybersecurity and provide advice for managing these risks.

from Cybersecurity News https://ift.tt/w7dq8l9

2B Weekly Downloads at Risk: Supply Chain Attack Targets Popular npm Packages, Security Leaders Discuss

18 popular packages with a total of 2 billion weekly downloads were targeted in an attack. 

from Cybersecurity News https://ift.tt/EfP7TJa

Georgia Hospital Notifies 160K Individuals of Breach 1 Year After Incident

A Georgia hospital experienced a data breach on May 30, 2024, but notified affected consumers on August 27, 2025. 

from Cybersecurity News https://ift.tt/vV4RkDX

Russian Threat Group Targets Microsoft Outlook With Malware

Research has identified a new Outlook backdoor linked to a Russian-linked persistent threat group. 

from Cybersecurity News https://ift.tt/nM6FoRK

Generative AI Remains Growing Concern for Organizations

Generative AI creates increasingly complicated threats for organizations.

from Cybersecurity News https://ift.tt/jLpTWHi

Account Profile Scam Targets PayPal Users

Researchers have discovered a sophisticated, convincing phishing campaign targeting PayPal users. 

from Cybersecurity News https://ift.tt/OySiP93

61% of Organizations Experienced Insider Breaches

61% of organizations faced insider file breaches in the last two years. 

from Cybersecurity News https://ift.tt/eV3hOmZ

WhatsApp Flaw Added to CISA’s Known Exploited Vulnerabilities Catalog

CISA has announced the addition of two vulnerabilities to its Known Exploited Vulnerabilities catalog.

from Cybersecurity News https://ift.tt/IyjqdxU

Ransomware Attack Targets PA Attorney General’s Office

The Pennsylvania Office of Attorney General was the victim of a ransomware attack. 

from Cybersecurity News https://ift.tt/X70yAsD

Cyberattack on Jaguar Land Rover Disrupts Business Operations

Jaguar Land Rover experienced a cyber incident that has impacted business operations. 

from Cybersecurity News https://ift.tt/6xWTGpO

378 GB of Data From Navy Federal Credit Union Exposed

A database, in apparent association with the Navy Federal Credit Union, exposed 378 GB of information. 

from Cybersecurity News https://ift.tt/EGe36lk

Are Wearable Devices a Privacy Risk?

A study dives into the data collected by wearable devices to better understand how it is being used. 

from Cybersecurity News https://ift.tt/cIHbew4

How To Enact Meaningful Change This International Women in Cyber Day

September 1st marks International Women in Cyber Day. While notable strides in progress have been made for women in the industry, there are still roadblocks that impede many career journeys. 

from Cybersecurity News https://ift.tt/zPCe5tD

Malicious Actors Spread Malware Via Meta’s Advertising System

A Meta malvertising campaign has expanded to Android phones. 

from Cybersecurity News https://ift.tt/UALpn5t

CISA Releases TTPs of Chinese State-Sponsored Threat Actors

CISA has released an advisory detailing the tactics, techniques, and procedures (TTPs) utilized by Chinese state-sponsored threat actors. 

from Cybersecurity News https://ift.tt/8JEK2yS

69% of Consumers Believe AI Fraud Is the Biggest Identity Threat

A new report explores consumer attitudes and awareness surrounding online identity, fraud risks and consumer data protection.

from Cybersecurity News https://ift.tt/DvpJE9b

58% of Organizations Are Unprepared for Cyberattacks

As cyberattacks become more sophisticated and frequent, CISOs express concern about their organization’s defensive abilities. 

from Cybersecurity News https://ift.tt/XB6Kxbs

1.1M Impacted by Farmers Insurance Data Breach, Security Leaders Discuss

Approximately 1.1 million customers have been impacted by the Farmers Insurance data breach. 

from Cybersecurity News https://ift.tt/qV5glEx

Hackers Observed Patching Leveraged Linux Exploit

An Apache ActiveMQ flaw is being actively exploited. Then, it’s being patched by the actors who leveraged it.  

from Cybersecurity News https://ift.tt/EmUBs0v

Report Reveals Gap Between AI Use and AI Security In Embedded Software

A new report reveals a disconnect between the organizational use of AI and AI security.

from Cybersecurity News https://ift.tt/xLwPD5m

CISA Issues Software Bill of Materials Draft, Encourages Public Comments

CISA published a Minimum Elements for a Software Bill of Materials (SBOM) draft and has encouraged the public to offer comments. 

from Cybersecurity News https://ift.tt/XeEQJcS

91% of Teens Use Generative AI

A recent survey found that when presented with an online safety issue, most teen respondents will ask for help from a parent or other trusted adult.

from Cybersecurity News https://ift.tt/jZauV1A

Agentic AI Browsers Exploited by “PromptFix” Trick Technique

Agentic AI, while performing routine tasks such as shopping online, could be tricked into carrying out certain actions. 

from Cybersecurity News https://ift.tt/EPQuhYN

Russia-Sponsored Cyber Attack Campaign Targets Networking Devices, Critical Infrastructure

A Russia-sponsored campaign is targeting end-of-life devices via a seven-year-old vulnerability. 

from Cybersecurity News https://ift.tt/gl4WJEX

Pharmaceutical Firm Hit With Ransomware Attack

Inotiv, a pharmaceutical firm, was hit with a ransomware attack.

from Cybersecurity News https://ift.tt/N6VJ1sm

Cybercriminals Attack VPS to Access Business Email Systems

An attack campaign is exploiting Virtual Private Server (VPS) infrastructure.

from Cybersecurity News https://ift.tt/SRciTos

29 Years of HIPAA: What’s Next for Healthcare Data Privacy?

To commemorate the 29th anniversary of HIPAA, experts share their perspectives on modern privacy threats and how healthcare organizations can bolster security. 

from Cybersecurity News https://ift.tt/Ig3n7so

Data Privacy Increasingly Embedded in Consumer Decisions, Research Finds

Research reveals a shift in consumer behavior in regard to data privacy. 

from Cybersecurity News https://ift.tt/CLwDzi8

28% of Employees Would Use AI at Work Even if Banned

According to a report from EisnerAmper, artificial intelligence (AI) is becoming increasingly popular in the workplace.

from Cybersecurity News https://ift.tt/WaYpmlP

Security Leaders Respond to Workday Cyber Incident

Workday, a human resources organization, has announced it experienced a cybersecurity incident. 

from Cybersecurity News https://ift.tt/5PYeCML

96% Worry Shorter SSL/TLS Certificate Lifespans Will Impact Business

A majority of organizations are unprepared for shorter SSL/TLS certificate lifespans. 

from Cybersecurity News https://ift.tt/ZsqoOMA

85% of Organizations Approach Cybersecurity Reactively

Most organizations approach cybersecurity issues reactively, responding to threats only after the damage has been done. 

from Cybersecurity News https://ift.tt/6PRbx4o

96% of Manufacturers Plan to Invest in Cybersecurity Platforms

Cybersecurity is increasingly becoming a business matter in manufacturing.

from Cybersecurity News https://ift.tt/Yo410zZ

Survey Reveals Top Challenges of Implementing Identity Security

While many organizations want to prioritize zero-trust, many face roadblocks to making this a reality.

from Cybersecurity News https://ift.tt/BlrOM0t

GSX 2025: A Landmark Gathering of Global Security Professionals

GSX and ASIS International will celebrate 70 years of shaping the future of security, with New Orleans serving as the host city for this anniversary celebration.

from Cybersecurity News https://ift.tt/hpILOVQ

OT Disruptions Could Cost $330B Globally

Cyber incidents disrupting OT could have a global financial impact of approximately $330 billion.

from Cybersecurity News https://ift.tt/GvunZN5

OT Networks Targeted in Vulnerability Exploitation

An Erlang/OTP vulnerability has been exploited in the wild, with a majority of attempts targeting OT environments. 

from Cybersecurity News https://ift.tt/8Ayt9X3

49% of Americans Hide AI Use from Employers

New data reveals insights into AI adoption in the workplace. 

from Cybersecurity News https://ift.tt/LRmGsKv

46% of Enterprise Passwords Can Be Cracked

Enterprise passwords have become increasingly vulnerable in the past year. 

from Cybersecurity News https://ift.tt/SFrZLY9

Bad Bots Made Up 31% of Holiday 2024 Traffic

Nearly a third of holiday traffic was made up of bots.

from Cybersecurity News https://ift.tt/bHYx7Xk

83% of Security Leaders Surveyed Claim Link Between Fraud and Other Crimes

Security leaders link fraud to other crimes.

from Cybersecurity News https://ift.tt/1prSMbC

System Collapses Are Preventable, Not Unpredictable

Research suggests that when systems collapse, it is most likely due to a preventable error rather than an unpredictable event. 

from Cybersecurity News https://ift.tt/fkibohy

Traffic to GenAI Websites Increases by 50%, and Cyberattacks Grow With It

Researchers have discovered an increase in traffic to generative AI websites. 

from Cybersecurity News https://ift.tt/AvDYyko

Average Cyber Budget Reaches 5 Year Low, CISOs Discuss

Cyber budgets have reached the lowest growth rate in five years, with only 47% of CISOs reporting a budget increase this year.

from Cybersecurity News https://ift.tt/3fN1CzY

UK Warns That Sharing Shoplifters' Photos May Violate GDPR

The U.K. data watchdog warns that sharing images of shoplifters online or in store windows may violate their rights under GDPR laws. 

from Cybersecurity News https://ift.tt/pBXe9TH

CISA Releases a Malware and Forensic Analysis Platform

CISA has released a malware and forensic analysis platform. 

from Cybersecurity News https://ift.tt/TDlLv9m

Security Leaders Share Thoughts on DaVita Data Breach

On August 5, dialysis firm DaVita confirmed a data breach affecting over 900,000 individuals. The breach potentially exposed Social Security Numbers and personal health information.

from Cybersecurity News https://ift.tt/ENQuAUk

Multi-Job Hustles Expose Workers to Higher Cybersecurity Risks

Almost half of Gen Z has a side hustle, the highest percentage of any other generation. This may leave them at higher risk of cyberattacks.

from Cybersecurity News https://ift.tt/5N8MvX6

54% of Organizations in UK and Ireland Lack Cloud Cost Visibility

A majority of organizations (54%) do not have complete visibility into cloud spends.

from Cybersecurity News https://ift.tt/DQfdM3e

Is There Value in Being a Certified Ethical Hacker? Research Says Yes

A new report provides a comprehensive look at the value of Certified Ethical Hacker (CEH) credentials. 

from Cybersecurity News https://ift.tt/XxdFBK3

Scattered Spider’s Newest Targets: Transportation and Airlines

Scattered Spider is evolving tactics and targeting new sectors. 

from Cybersecurity News https://ift.tt/SmP5U9Q

Making Data Protection an Organizational Priority

In an era when data needs to be recognized as an asset in order to transform as a business, retrieving value from data becomes the topmost priority.

from Cybersecurity News https://ift.tt/0HQui2M

AI Introduces Security Vulnerabilities Within Code in 45% of Cases

A recent report by Veracode revealed that while AI produces functional code, it introduces security vulnerabilities in 45% of cases.

from Cybersecurity News https://ift.tt/IoZvJdP

Allianz Life Insurance Impacted By Third Party Breach

Allianz Life Insurance Company of North America experienced a data breach. 

from Cybersecurity News https://ift.tt/cUT6qoh

Ransomware Statistics: Updates on Ransoms, Attacks and Active Groups

Data reveals global ransomware trends for the first half of 2025.

from Cybersecurity News https://ift.tt/6C57AMy

3.5M Records Exposed in Global Fashion Brand Breach

A database with 3.5 million records was exposed, with no password protection or encryption. 

from Cybersecurity News https://ift.tt/EV960SO

68% of Organizations Experienced Data Leakage From Employee AI Usage

AI and the rise of cyberattacks.

from Cybersecurity News https://ift.tt/vsIXCGY

Security Leaders Discuss Qantas Breach

Security leaders share their insights on the Qantas data breach.

from Cybersecurity News https://ift.tt/8ohJy64

5.4M Affected by Healthcare Data Breach

Episource, a medical billing organization, has notified individuals that their personal and health data was stolen in a cyberattack. 

from Cybersecurity News https://ift.tt/eg086oq

1M Adoption Agency Records Exposed

An unencrypted, non-password-protected database was discovered, associated with a prominent adoption agency. 

from Cybersecurity News https://ift.tt/xynVpSD

5M Public, Unsecured Wi-Fi Networks Found Exposed

Mobile threats are growing and evolving as malicious actors engage in mobile-first attack strategies. 

from Cybersecurity News https://ift.tt/MT4LBD3

Salt Typhoon Hacks National Guard Systems

The Department of Defense has discovered the National Guard Systems have been hacked by Salt Typhoon. 

from Cybersecurity News https://ift.tt/GretiEx

64% of Leaders are Highly Concerned About Data Sovereignty Amid Tariff Uncertainty

A report reveals that while 83% of U.S. business leaders are fast-tracking AI and automation initiatives in response to trade uncertainty, 69% remain stuck in tactical reactions or have frozen strategic investments.

from Cybersecurity News https://ift.tt/TW3pBay

Hacktivism Increasingly Targeting Critical Infrastructure

Hacktivists are increasingly targeting critical infrastructure. 

from Cybersecurity News https://ift.tt/wJ657jl

75% of Organizations’ Building Systems Affected by Exploited Vulnerabilities

75% of organizations have building management systems with known exploited vulnerabilities.

from Cybersecurity News https://ift.tt/V5MmWSs

90% of Large Organizations Unprepared for AI-Enabled Threats

A majority of large organizations are not prepared to protect against the increasing AI threat.

from Cybersecurity News https://ift.tt/rlgZeaG

47% of Manufacturing Breaches in 2024 Involved Ransomware

KnowBe4 released its new report highlighting cybersecurity challenges facing the manufacturing industry. 

from Cybersecurity News https://ift.tt/pC6v3ib

New ZuRu Malware Variant Targeting Developers

A new report reveals new artifacts associated with ZuRu, an Apple macOS malware.

from Cybersecurity News https://ift.tt/AQP62iE

Nearly 250,000 Records From Tax Credit Consulting Agency Exposed

Research has uncovered an unencrypted, non-password-protected database containing 245,949 records. 

from Cybersecurity News https://ift.tt/BVzZLRj

4 Critical, Known Exploited Vulnerabilities Added to KEV Catalog

CISA added 4 new vulnerabilities to the Known Exploited Vulnerabilities (KEV) Catalogue, citing evidence of active exploitation.

from Cybersecurity News https://ift.tt/uES0s9z

Sudo Vulnerability Discovered, May Exposes Linux Systems

Sudo, the privileged command-line tool often installed on Linux systems, has two local privilege vulnerabilities. 

from Cybersecurity News https://ift.tt/qdL1tnN

Increase in Identity-Based Attacks Attributed to Infostealers

Info-stealing malware and advanced phishing kits account for 156% increase in cyberattacks that target user logins.

from Cybersecurity News https://ift.tt/rSmzQLA

Security Leaders Discuss Marco Rubio AI Imposter

Secretary of State Marco Rubio was recently impersonated via text messages and AI voice messages. 

from Cybersecurity News https://ift.tt/xim7RQ8

Threat Actor Targeting Indian Defense Sector

A threat actor based in Pakistan (APT36) has engaged in a sophisticated cyber-espionage campaign.

from Cybersecurity News https://ift.tt/YcTM5PH

OT Security Responsibility Is Elevating to Executive Leadership

New research delves into the state of operational technology (OT) cybersecurity. 

from Cybersecurity News https://ift.tt/aQt8Xyc

Phishing Scams Can Deceive Large Language Models

LLMs have been observed leading users to phishing links. 

from Cybersecurity News https://ift.tt/ZLekuUV

Iranian Cyber Actors May Target “Entities of Interest” in US, Warns CISA

CISA warns that Iranian cyber actors may target critical infrastructure in the United States. 

from Cybersecurity News https://ift.tt/H5pDgQv

Were 16B Passwords Breached? The Claim Is Called Into Question

Research indicated that 16 billion passwords were exposed in what was reportedly the world’s largest data breach to date — however, some experts are questioning these claims.

from Cybersecurity News https://ift.tt/hjJKMbg

PowerSchool Education Technology Company Announces Data Breach

PowerSchool, a California-based education technology company, recently announced a data breach that occurred between December 19 and December 28, 2024. 

from Cybersecurity News https://ift.tt/sFCduVM

Could Increased MOVEit Transfer Scanning Signal Emerging Threat Activity?

An increase in scanning activity targeted MOVEit Transfer systems may indicate emerging threat activity.

from Cybersecurity News https://ift.tt/ngEBi8t

61M Records Listed for Sale Online, Allegedly Belong to Verizon

61M Verizon customers may be at risk of having their data sold. 

from Cybersecurity News https://ift.tt/CiR0N2B

Millions of Android, iPhone Users Could Be Sending Data to China

Apple and Google app stores are offering private browsing apps owned by Chinese companies.

from Cybersecurity News https://ift.tt/AtDVkdP

Millions of Printers Exposed to Hacking Due to New Vulnerabilities

Research reveals 8 new vulnerabilities among multifunction printers. 

from Cybersecurity News https://ift.tt/rSfaP2A

Trump Administration Reaches for States’ Data

The Trump Administration is moving to collect data retained by the states, leading some privacy experts to express concern. 

from Cybersecurity News https://ift.tt/9H4EuY8

WhatsApp Banned on US House of Representatives Devices

WhatsApp is banned from U.S. House of Representatives devices.

from Cybersecurity News https://ift.tt/Ox6GnLS

FDA Urges Secure Cyber Practices for Medical Product Manufacturing

The FDA highlights the importance of embedding cybersecurity into medical product manufacturing. 

from Cybersecurity News https://ift.tt/XqkZhy7

$90M Removed From Iran’s Largest Cryptocurrency Exchange in Cyberattack

Hackers have reportedly stolen funds from Nobitex, Iran’s largest cryptocurrency exchange. 

from Cybersecurity News https://ift.tt/9b7M1Ce

Insurer Aflac Experiences Cyber Incident

Aflac discovered suspicious activity on its United States network.

from Cybersecurity News https://ift.tt/QP6kh7O

16B Login Credentials Exposed in World’s Largest Data Breach

A record-breaking data breach occurred, involving the exposure of 16 billion login credentials.

from Cybersecurity News https://ift.tt/xndJAoO

Krispy Kreme Data Breach Update: 160,000 Individuals Affected

The time frame between the breach and the notice of affected individuals has some cyber experts concerned. 

from Cybersecurity News https://ift.tt/edZaqQk

Israel-Iran Conflict Could Lead to Increased Cyberattacks Against the US

As conflict rises between Israel and Iran, organizations in the United States are urged to prepare for the possibility of increased cyberattacks from Iran. 

from Cybersecurity News https://ift.tt/ESGN10e

Vulnerability in Public Repository Could Enable Hijacked LLM Responses

Research reveals a CVSS 8.8 vulnerability, and security leaders are sharing their thoughts. 

from Cybersecurity News https://ift.tt/idVLoZS

Transport Solution Company Scania Confirms Cybersecurity Incident

Scania, a transport solution organization, has confirmed it faced a cybersecurity incident. 

from Cybersecurity News https://ift.tt/wt8IBmU

From Retail to Insurance, Scattered Spider Changes Targets

Scattered Spider, who is believed to be responsible for several cyberattacks against the retail sector in recent months, has apparently shifted targets to the insurance sector. 

from Cybersecurity News https://ift.tt/g7XQEN3

New Research: Multi-Stage Malware Attack on Python Package Index Discovered

Researchers have discovered that the Python Package Index (PyPI) has a malicious package in its repository.

from Cybersecurity News https://ift.tt/g6TZE80

Washington Post Journalists Targeted in Cyberattack

The Washington Post was the subject of a cyberattack. 

from Cybersecurity News https://ift.tt/yoqgeck

170,000 Records Exposed in Real Estate Investment and Management Database

Research has identified an unencrypted, non-password-protected database containing 170,360 records.

from Cybersecurity News https://ift.tt/aKJsZBr

Fog Ransomware Group Uses Unconventional Toolset, New Research Finds

The Fog ransomware group utilizes an uncommon toolset, including open-source pentesting utilities and an employee monitoring software. 

from Cybersecurity News https://ift.tt/5vaKRDU

Former CIA Analyst Unlawfully Transmits National Defense Data, Sentenced to Prison

A former CIA analyst was sentenced to three years and one month in prison for transmitting sensitive data. 

from Cybersecurity News https://ift.tt/AzX9odj

40,000 IoT Security Cameras Are Exposed Online

Research shows that more than 40,000 security cameras across the globe are exposed to the internet. 

from Cybersecurity News https://ift.tt/aSPoYrq

Advanced AI Experiences “Complete Accuracy Collapse” When Given Complex Problems

When given highly complex problems, AI models failed to provide correct answers. 

from Cybersecurity News https://ift.tt/6DeW0ug

Rinki Sethi Hired as Chief Security Officer at Upwind

Rinki Sethi has been hired as Chief Security Officer at Upwind. In this role, Sethi will lead Upwind’s global information security and technology functions.

from Cybersecurity News https://ift.tt/PSQ95OY

Security Leaders Discuss the Whole Foods Distributor Cyberattack

Security leaders discuss the Whole Foods distributor cyberattack, with insights on attacker motivations as well as risk mitigation strategies.  

from Cybersecurity News https://ift.tt/La0R1cD

Security Firm Targeted by China-Linked Hackers

A security firm provides details on an incident it faced involving China-linked hackers. 

from Cybersecurity News https://ift.tt/UJjEMk0

2024 Saw Over 4 Million Mobile Social Engineering Attacks

2024 saw a sharp rise in social engineering attacks.

from Cybersecurity News https://ift.tt/AgHtG3u

Most Americans Choose Convenience Over Password Security

Convenience prioritized over password security.

from Cybersecurity News https://ift.tt/9Yrw7At

Trump Administration Executive Order Changes Cybersecurity Policy

A new executive order from the Trump Administration rewrites cybersecurity policy, and security leaders are sharing their thoughts. 

from Cybersecurity News https://ift.tt/Zxlmv6k

6 Google Chrome Extensions Expose User Information

Research reveals 6 widely used Google Chrome extensions unintentionally transmit user data over simple HTTP.

from Cybersecurity News https://ift.tt/OQPDmpy

Harris-Walz Campaign Possibly Targeted in iPhone Cyberattack

A cybersecurity firm believes an iPhone hacking campaign occurred and targeted 5 high-profile Americans. 

from Cybersecurity News https://ift.tt/x5woiyW

84% of Organizations Are Now Using AI in the Cloud

Orca Security recently released the 2025 State of Cloud Security Report, finding that 84% of organizations now use AI in the cloud, and 62% of organizations have at least one vulnerable AI package.

from Cybersecurity News https://ift.tt/wImnG6N

Vulnerability Impacts Various Cloud Deployments of Cisco ISE

A Cisco vulnerability could affect cloud deployments of Cisco Identity Services Engine (ISE) in certain systems. 

from Cybersecurity News https://ift.tt/CUVqSYT

IT Support Impersonated in Voice Phishing Campaign

An observed voice phishing campaign is impersonating IT support workers. 

from Cybersecurity News https://ift.tt/mzhxGSg

71% of Organizations Cannot Cover the Cloud Environment With Current Tools

As cloud infrastructure increases in complexity, security teams are having difficulty keeping pace. 

from Cybersecurity News https://ift.tt/Ap1hPIC

Why Are Cyberattacks Targeting Retail? Experts Share Their Thoughts

Harrods, Marks & Spencer, Adidas and more — why are retailers facing this wave of cyberattacks in recent months? 

from Cybersecurity News https://ift.tt/ianGtYF

2 Certificate Authorities Now Distrusted by Google — Due to Compliance Issues

Security leaders share their thoughts on the importance of compliance and trust for certificate authorities.

from Cybersecurity News https://ift.tt/mTyZ4ek

Oxford University Launches Its First MBA Cyber Resilience Elective

The University of Oxford has introduced its first cyber resilience elective. 

from Cybersecurity News https://ift.tt/UlZtIGW

78% of Security Leaders Say Tool Sprawl Challenges Threat Mitigation

A recent Barracuda Networks survey found that 65% of IT and security professionals say their organizations are juggling too many security tools. 

from Cybersecurity News https://ift.tt/yNoswc6

AI Emerges as the Top Concern for Security Leaders

AI emerges as the top concern for security leaders, surpassing concerns of ransomware.

from Cybersecurity News https://ift.tt/fqaKoYm

Victoria’s Secret Security Incident Shuts Down Website

Victoria’s Secret took down its United States website after a security incident.

from Cybersecurity News https://ift.tt/TXOwb4J

Serviceaide Data Leak Impacts Nearly 500,000 Catholic Health Patients

Security leaders discuss the Serviceaide data leak, which impacted around 500,000 Catholic Health patients. 

from Cybersecurity News https://ift.tt/Koy89CM

Security Leaders Share Thoughts on Kettering Outage

On May 19th, Kettering Health experienced an unscheduled downtime for most of its IT applications. Security leaders share some of their thoughts on the recent cyberattack.

from Cybersecurity News https://ift.tt/1fe5cNm

What The LockBit Data Breach Reveals About Its Inner Workings

What does the LockBit data breach reveal about the group’s inner workings?

from Cybersecurity News https://ift.tt/ioaK7Uu

Adidas Confirms Data Breach, Security Leaders Weigh In

Security leaders discuss the implications of the Adidas data breach.

from Cybersecurity News https://ift.tt/KtBz1fG

More than 40% of Fintech Breaches Linked to Third-Party Vendors

More than 40% of breaches in fintech organizations can be linked to third-party vendors. 

from Cybersecurity News https://ift.tt/lOeyJz1

52% of SOC Teams Are Overworked, New Report Shows

SOCs are overworked and struggling to manage alerts. 

from Cybersecurity News https://ift.tt/HhwoQ1v

Cybercriminals Take Advantage of ChatGPT and Other Generative AI Models

A recent cybercrime report by Malwarebytes found that AI agents will soon usher in a world of far more frequent, sophisticated and difficult-to-detect cyberattacks.

from Cybersecurity News https://ift.tt/nXVe08z

Alabama State Government Experiences Cyber Incident

The Alabama State Government has experienced a cyber incident. 

from Cybersecurity News https://ift.tt/F520Ypg

The Truth Is Always in the Code: Why Security Starts With Visibility

The software security field is ever-changing, but one principle remains constant: the truth is always in the code.

from Cybersecurity News https://ift.tt/WN3M5Od

Critical Software Vulnerabilities Rose 37% in 2024

A recent software vulnerability report by Action1 found a 61% year-over-year surge in discovered software vulnerabilities and a 96% spike in exploited vulnerabilities throughout 2024.

from Cybersecurity News https://ift.tt/fDqo4mL

Research Tracked 1 Malicious Email Every 42 Seconds in 2024

Phishing threats are evolving at a pace that many security teams struggle to meet. 

from Cybersecurity News https://ift.tt/Oi25mtl

Security Leaders Discuss the New EU Vulnerability Database

Security leaders share their thoughts on the new EU vulnerability database.

from Cybersecurity News https://ift.tt/vYDNTEZ

Data Security Risk: Analysis of AI Tools Reveals 84% Breached

84% of AI tools have been breached, suggesting enterprises using these tools (knowingly or unknowingly) may have data at risk. 

from Cybersecurity News https://ift.tt/isu5ITO

Update on Marks & Spencer Cyberattack

Marks & Spencer (M&S) has provided an update on the cyberattack it recently experienced. 

from Cybersecurity News https://ift.tt/JlgPqZG

Credential Harvesting Becomes Top Retail Data Threat

Cybercriminals target retail credentials.

from Cybersecurity News https://ift.tt/SZiRx4e

Lawsuit Alleges Roblox Tracks Children’s Data Without Parental Consent

Is Roblox collecting and disclosing children’s data without their parents’ consent? 

from Cybersecurity News https://ift.tt/Oh7GLD6

430K Patients’ Data Exposed in Ascension Breach

430K patients’ data was exposed in a breach against Ascension, and security leaders are discussing cyber threats against the healthcare industry.

from Cybersecurity News https://ift.tt/CUYNomH

Hackers Can Take Control via SAP NetWeaver Flaw: SAP Security Analyst Discusses the Risks

A recently disclosed zero-day vulnerability has lead to repeated attacks against SAP NetWeaver. 

from Cybersecurity News https://ift.tt/WX9plNx

88% of Executives Had Home Floor Plans Available Online

A report by Nisos revealed how cybercriminals are able to locate residential details of executives with publicly available information.

from Cybersecurity News https://ift.tt/3itjVMA

3M Student-Athletes, College Coaches’ Records Exposed

More than 3 million records of student-athletes and college coaches’ were exposed in an unencrypted, non-password-protected database. 

from Cybersecurity News https://ift.tt/Sg3WZdf

SAP Patch Day: Digging Into May 2025’s Updates

A SAP Security Analyst digs into the most recent SAP Patch Day updates.

from Cybersecurity News https://ift.tt/YekUvBf

Only 5% of Organizations Have Deployed Quantum-Safe Encryption

As the era of quantum computing approaches, many organizations still experience gaps in preparedness.

from Cybersecurity News https://ift.tt/Pf7d2t1

PowerSchool Attackers Extorting Teachers, Security Leaders Respond

In light of the PowerSchool attackers extorting teachers, security leaders share their insights on how organizations should navigate ransom payments. 

from Cybersecurity News https://ift.tt/uboTU5I

More Organizations Are Using Software-Based Pentesting

More than 50% of CISOs deploy software-based pentesting to bolster in-house testing practices.

from Cybersecurity News https://ift.tt/7nHNLBo

UK’s Legal Aid Agency Experiences Cyberattack

An executive agency of the UK’s Ministry of Justice experienced a cyberattack.

from Cybersecurity News https://ift.tt/i0uORtN

Only 11% of SMBs Are Utilizing AI-Powered Defenses

How are small and medium-sized businesses (SMBs) operating in today’s shifting threat landscape?

from Cybersecurity News https://ift.tt/mEeUOt9

Marks & Spencer Hackers Tricked IT Workers Into Resetting Passwords

More information on the cyberattacks against Marks & Spencer (M&S) and Co-op has emerged, revealing that hackers deceived IT workers into resetting passwords. 

from Cybersecurity News https://ift.tt/g9GArj3

CISA Warns of Cyberattacks Against Critical Oil and Gas Infrastructure

CISA, along with other government entities, has issued a warning about cyberattacks targeting the nation’s critical oil and natural gas infrastructure.

from Cybersecurity News https://ift.tt/Mb5f0BZ

New Campaign Targets HR Departments With False Resumes

A recent campaign driven by Venom Spider, a financially-motivated threat group, is using spear-phishing emails to target hiring managers.

from Cybersecurity News https://ift.tt/muLGCN2

94% of Fortune 50 Companies Have Employee Identity Data Exposed by Phishing Attacks

According to a recent report, 94% of Fortune 50 companies have employee identity data exposed as a consequence of phishing attacks.

from Cybersecurity News https://ift.tt/uzpLr3n

REAL ID Enforcement in Effect — What Does This Mean for Biometric Data Security?

The REAL ID enforcement could have impacts on biometric data security and privacy. 

from Cybersecurity News https://ift.tt/8tRHhz2

Hackers Claim To Steal Files From App Used by Trump Adviser

Hackers have claimed to steal messages from TeleMessage, an app apparently used by Trump’s former national security adviser. 

from Cybersecurity News https://ift.tt/zLUQmcE

32% of Employees Using AI Hide It From Their Employer

A new report shows how employees are leveraging technology in the workplace for greater autonomy and flexibility. 

from Cybersecurity News https://ift.tt/KicUCOI

FTC Findings Show That Consumers Lost 470 Million to Text Scams

Recent data from the Federal Trade Commission (FTC) found that consumers lost $470 million to text message-based scams. This amount is five times higher than what was reported in 2020.

from Cybersecurity News https://ift.tt/ETYHVvX

Harrods’ Cyberattack: Cybersecurity Leaders Weigh In

Harrods experienced a cyberattack, and cybersecurity leaders are sharing their insights. 

from Cybersecurity News https://ift.tt/fsRYpIB

95% of Organizations Have No Quantum Computing Roadmap

Most organizations are unprepared for the era of quantum computing.

from Cybersecurity News https://ift.tt/nN1uUE4

Cyberattacks Targeting US Increased by 136%

APTs focusing on the United States increased by 136%. 

from Cybersecurity News https://ift.tt/3V9A7Fo

Apple issues mercenary spyware threat notifications

Apple has issued threat notifications to select individuals who it believes may have been targeted by mercenary spyware attacks. 

from Cybersecurity News https://ift.tt/h3nEJ2N

2025’s most commonly used passwords reveal insecure password practices

An analysis of more than 19 billion passwords finds that insecure password practices persist. 

from Cybersecurity News https://ift.tt/EAvYopK

JPMorgan Chase & Co. CISO writes open letter to third-party suppliers

Patrick Opet, CISO at JPMorgan Chase & Co., writes open letter to third-party suppliers. 

from Cybersecurity News https://ift.tt/3ygcpjh

More than 500,000 records exposed in ticket reseller breach

520,054 records were exposed in ticket reseller breach. 

from Cybersecurity News https://ift.tt/mxtNiM2

61% of organizations not prepared to address critical risks

The Global Risk Survey from AlixPartners found that 61% or more organizations are not sufficiently prepared to address critical risks.

from Cybersecurity News https://ift.tt/5gdrqDC

89% of security teams have already begun to implement AI

A recent Cymulate report found that 71% of those surveyed consider threat exposure validation to be “absolutely essential.” 

from Cybersecurity News https://ift.tt/a4GZVcM

World Password Day: What’s next for password security?

This World Password Day, cybersecurity leaders are reflecting on how far passwords have come, and how much farther they have to go. 

from Cybersecurity News https://ift.tt/nzgX0ZU

41% of organizations struggle to find and retain cyber professionals

New data notes an increase in cybersecurity concern among tech executives. 

from Cybersecurity News https://ift.tt/eA04Rud

91% of organizations face vulnerability remediation delays

Vulnerability remediation delays are primarily caused by breakdowns in communication and team collaboration. 

from Cybersecurity News https://ift.tt/PFJSVxA

Security leaders share thoughts on Blue Shield of California data breach

Blue Shield of California has notified members of a data breach that may have impacted protected health information.

from Cybersecurity News https://ift.tt/KReXG2x

AI-powered, automated attacks have reached record numbers

Research finds AI-powered, automated attacks have reached record numbers. 

from Cybersecurity News https://ift.tt/AHa510d

Nearly 50% of mobile devices run outdated operating systems

Outdated operating systems are run on approximately 50% of mobile devices. 

from Cybersecurity News https://ift.tt/gRfAsGJ

5 ICS advisories released by CISA, security leaders discuss

CISA warns of flaws in Siemens, Schneider Electric, and ABB hardware.

from Cybersecurity News https://ift.tt/J3wf0mQ

$16 billion: The amount of internet crime losses in 2024

Internet crime losses exceeded $16 billion in 2024.

from Cybersecurity News https://ift.tt/i6O04xY

More than 20,000 sensitive medical records exposed

21,344 medical records with sensitive patient information were exposed. 

from Cybersecurity News https://ift.tt/yGsOpSl

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

Verizon Business has released its 2025 Data Breach Investigations Report. 

from Cybersecurity News https://ift.tt/s82Xqm6

55% of threat groups active in 2024 were financially motivated

Of the threat groups tracked by Mandiant, 55% of threat groups active in 2024 were financially motivated, which marks a steady increase from 2023.

from Cybersecurity News https://ift.tt/4EItxLJ

Research reveals mass scanning and exploitation campaigns

Research reveals mass scanning and exploitation campaigns associated with Proton66. 

from Cybersecurity News https://ift.tt/twSZRJs

UK utility cyberattacks rose 586% from 2022 to 2023

A recent report by KnowBe4 found that the energy sector has faced a rising number of cyberattacks and other threats, specifically within Europe.

from Cybersecurity News https://ift.tt/3Ogpc4s

University of Michigan faces lawsuit due hacking and privacy breach

The University of Michigan is facing a class action lawsuit due to the actions of a former football coach, Matt Weiss, who is accused of exposing the private images and videos of thousands of student-athletes.

from Cybersecurity News https://ift.tt/KNAGT8s

Medical Express Ambulance Inc. announces data breach

Medical Express Ambulance Inc. (MedEx) recently experienced a data breach that may have allowed unauthorized access to patient health information.

from Cybersecurity News https://ift.tt/H7lxcp2

Deepfake-enabled fraud caused more than $200 million in losses

In Q1 2025, deepfake-driven fraud led to $200 million in financial losses. 

from Cybersecurity News https://ift.tt/fbds6oA

Devices exposed to remote hacking via Erlang/OTP SSH vulnerability

The Erlang/Open Telecom Platform (OTP) SSH implementation has a critical security vulnerability.

from Cybersecurity News https://ift.tt/Im71TiL

66% of CISOs are worried cybersecurity threats surpass their defenses

While 21% of C-suite leaders currently invest more than 10% of their IT budget in cybersecurity, this number is expected to roughly double next year.

from Cybersecurity News https://ift.tt/YE81mMo

Emails delivering infostealers rose by 84% year-over-year

Malicious cyber actors are increasingly utilizing stealthier tactics. 

from Cybersecurity News https://ift.tt/VljR3wT

Bill introduced to extend the Cybersecurity Information Sharing Act

Security leaders share their thoughts on extending the Cybersecurity Information Sharing Act. 

from Cybersecurity News https://ift.tt/zUIlfV2

Oracle Cloud leak leads CISA to issue warning about credential risks

CISA has released guidance on managing credential risks, prompted by the potential compromise of a legacy Oracle cloud environment.

from Cybersecurity News https://ift.tt/NO6Dpj8

MITRE support extended 11 more months, yet uncertainty remains

Although MITRE’s contact has been extended for 11 more months, uncertainty remains un the cyber community. 

from Cybersecurity News https://ift.tt/Gk3ElKO

Kidney dialysis company experiences ransomware attack

Security leaders discuss the results of a ransomware attack against DaVita, including operational disruptions and stock market impacts. 

from Cybersecurity News https://ift.tt/VzngGmX

Hacker accessed customer information in Hertz data breach

Car rental service Hertz experienced a data breach that may have compromised sensitive customer information. 

from Cybersecurity News https://ift.tt/wMq83xI

MITRE set to lose funding today, CISA intervenes

CISA has extended MITRE’s funding, and security leaders are sharing their thoughts. 

from Cybersecurity News https://ift.tt/pv3Fyq7

Laboratory Services Cooperative experienced a cybersecurity incident

Laboratory Services Cooperative announced it experienced a cybersecurity incident, possibly compromising patient and employee data. 

from Cybersecurity News https://ift.tt/fhJL4HP

Cybersecurity leaders discuss Oracle’s second recent hack

Oracle has informed customers that a malicious actor accessed a computer system, stealing old login credentials for clients. 

from Cybersecurity News https://ift.tt/JbjaOfQ

Hackers accessed 150,000 emails from a government agency

The United States Treasury Department’s Office of the Comptroller of the Currency (OCC) has recently discovered an email system breach. 

from Cybersecurity News https://ift.tt/fwakvrB

New research identifies, analyzes an email bombing attack

Research has shown a recent increase in email bombing attacks. 

from Cybersecurity News https://ift.tt/LVuC48b

Security leaders respond to the dismissal of NSA director

Security leaders share their thoughts on the NSA director dismissal, providing insights as to why it may have occurred.

from Cybersecurity News https://ift.tt/z0Jwkep

Recent version of Neptune RAT is spreading, stealing credentials

Research has discovered a recent version of Neptune RAT, which is spreading and stealing credentials. 

from Cybersecurity News https://ift.tt/hX9cZem

Cybersecurity experts share how AI could enhance tax-related scams

Cybersecurity experts share their insights on AI-related threats and how users can stay safe this tax season. 

from Cybersecurity News https://ift.tt/GDHxdm6

Troy Rydman hired as CIO and CISO at Packsize

Troy Rydman has been hired as the chief information officer (CIO) and chief information security officer (CISO) at Packsize. 

from Cybersecurity News https://ift.tt/PVvZ50b

Cybersecurity is the second highest business concern for SMBs

Research by VikingCloud revealed that a successful cyberattack would force nearly one in five small- and medium-sized businesses to close their doors.

from Cybersecurity News https://ift.tt/SlBAnP3

Who’s driving ransomware’s accelerated growth in 2025

A look into IAB tactics, relations with ransomware groups and services offered.

from Cybersecurity News https://ift.tt/Yia6orE

27,000 records in Australian fintech database were exposed

Research has revealed that an Australia-based fintech company had a database exposed. 

from Cybersecurity News https://ift.tt/SBQd4qg

White House security messages leaked through Signal

An Atlantic article published by Jeffery Goldberg on March 24, 2025 alleges that Goldberg was accidentally included in a group chat detailing classified security information.

from Cybersecurity News https://ift.tt/wdRnp8z

6 million records allegedly stolen from Oracle Cloud

An investigation has uncovered a possible breach against Oracle Cloud. 

from Cybersecurity News https://ift.tt/WAJeXo8

Scammers impersonated USPS more than other organizations

A recent scam report by Reboot found that the brands that scammers imitate the most are USPS (15.43%), IRS (11.71%), and Amazon (7.71%).

from Cybersecurity News https://ift.tt/q3L4SYz

23andMe declares bankruptcy, security leaders discuss data concerns

Security leaders share their insights on the possible data risks of 23andMe declaring bankruptcy.

from Cybersecurity News https://ift.tt/KygWdPa

Ransomware incidents increase by 132%, vishing by 1,633%

New research reveals evolutions in threat actor techniques, with emphasis on ransomware and vishing.

from Cybersecurity News https://ift.tt/PgbQVB2

Security leaders discuss new phishing campaign targeting Mac users

Research has identified a new phishing campaign targeting Mac users. 

from Cybersecurity News https://ift.tt/U9uDPjB

Rooted mobile devices are 250 times more vulnerable

Although there has been a reduction in rooted and jailbroken devices, these devices are still a security concern for users and enterprises.

from Cybersecurity News https://ift.tt/tBWsDKk

82% of all phishing emails utilized AI

A report found that there has been a 57.9% increase in attacks being sent from compromised accounts getting through traditional detection.

from Cybersecurity News https://ift.tt/kqWZz21

56% of security teams say AI is crucial to daily operations

A report by Seemplicity found that 86% of security teams are using AI in their security stacks and 56% say AI is now crucial to their daily operations.

from Cybersecurity News https://ift.tt/DNjr6Kx

Nearly 22,000 impacted by Western Alliance Bank breach

Security leaders discuss the Western Alliance Bank breach, which impacted nearly 22,000 customers. 

from Cybersecurity News https://ift.tt/zS4DfA0

New LLM jailbreak technique can create password-stealing malware

A new LLM jailbreak technique enables the development of password-stealing malware

from Cybersecurity News https://ift.tt/iLYF9Jc

Brand impersonation is 51% of browser phishing attempts

A recent Menlo Security report identifies key drivers behind the rise in browser-based attacks, including AI, PhaaS and zero-day vulnerabilities.

from Cybersecurity News https://ift.tt/HQW9hY6

Phishing campaign leverages Microsoft 365 infrastructure for attacks

A phishing campaign is leveraging Microsoft 365 infrastructure for attacks.

from Cybersecurity News https://ift.tt/MZv4Hu5

Education sector unprepared for evolving cyberattacks, research finds

A new report assesses the cybersecurity posture of the education sector.

from Cybersecurity News https://ift.tt/sNjwHQS

Phishing-based attacks have risen 140% year-over-year

Research has identified more than 752,000 browser-based phishing attacks in the past 12 months. 

from Cybersecurity News https://ift.tt/jBhu9PF

$20B loss estimated from potential March Madness hacks

With the rise of AI, the potential for monetary losses during March Madness is increased.

from Cybersecurity News https://ift.tt/gHNFmY9

1 in 3 security leaders say AI will make ransomware a greater threat

 A report found that the top predicted threat for 2025 is ransomware.

from Cybersecurity News https://ift.tt/qbjPmfJ

67% of organizations experience a certificate-related outage monthly

A recent report by CyberArk revealed that 72% of organizations have experienced at least one certificate-related outage in the past year.

from Cybersecurity News https://ift.tt/rjVlGhM

Chinese threat actor resided in US electric grid for almost one year

A case study discusses an intrusion into the United States electric grid associated with Volt Typhoon, a Chinese threat actor.

from Cybersecurity News https://ift.tt/mUdyrAt

3 Ivanti flaws added to CISA’s vulnerabilities catalogue

CISA has announced five known exploited vulnerabilities now in its catalogue, three of which are Ivanti Endpoint Manager flaws. 

from Cybersecurity News https://ift.tt/TYjQUpG

Cyber leaders must prepare quantum security now, research finds

Cybersecurity leaders share their insights on the state of quantum computing.  

from Cybersecurity News https://ift.tt/Ln9pHM4

48% of Americans have received a fraudulent tax-related message

Cybercriminals don’t just demand money, they go after details like Social Security numbers, birth dates, and banking information to fuel future fraud.

from Cybersecurity News https://ift.tt/XyLxvad

Cyber experts discuss possible cyberattack against X

X experienced a cyberattack that caused widespread technical issues across the network. 

from Cybersecurity News https://ift.tt/vc2R8Oo

88% of security teams are reaching or exceeding performance goals

88% of security teams are reaching or exceeding performance goals, even with limited staff and greater workloads.

from Cybersecurity News https://ift.tt/02fjn7W

48% of professionals struggle to keep up with cybersecurity threats

Governance, risk and compliance (GRC) leaders shared top priorities in a recent MetricStream report.

from Cybersecurity News https://ift.tt/zmksPFg

Cyber leaders weigh in on proposed vulnerability disclosure policy

Cybersecurity leaders discuss the Federal Contractor Cybersecurity Vulnerability Reduction Act of 2025. 

from Cybersecurity News https://ift.tt/Ao60h5L

63% of IT professionals express desire for a mentor

However, challenges can arise when pursuing IT careers, including the need for more technical knowledge (35%), tools and best practices (31%).

from Cybersecurity News https://ift.tt/NLAWwtP

Financial services sector is facing data risks from personal apps

A new report focuses on the risks of personal app use, generative AI and social engineering in the financial sector. 

from Cybersecurity News https://ift.tt/l7QmvLV

Typosquatted packages delivering malware to Linux and macOS systems

Research has identified a typosquatting campaign delivering malware to Linux and macOS systems. 

from Cybersecurity News https://ift.tt/0urwSDj

Cybersecurity experts discuss the YouTube CEO deepfake

Cybersecurity experts share their insights on the YouTube CEO deepfake scam.

from Cybersecurity News https://ift.tt/CvtpmsB

A Chinese espionage group is targeting the IT supply chain

Silk Typhoon, Chinese espionage group, is targeting common IT solutions. 

from Cybersecurity News https://ift.tt/MdgOAZT

88% of organizations are increasing fraud team headcounts

Many organizations are increasing fraud prevention budgets and teams. 

from Cybersecurity News https://ift.tt/fKlHDPC

IT trends: 60% of IT professionals are experiencing burnout

A report on the state of IT work shares notable trends and challenges IT teams are facing. 

from Cybersecurity News https://ift.tt/RZ4HcLm

CTOs fall victim to breaches more often than other c-suite roles

Nearly 100% of c-level executives have had information exposed in a data breach, with an average of 43 data breaches or compilations per executive.

from Cybersecurity News https://ift.tt/XNrVcDI

Vishing attacks increased by 442% in the second half of 2024

Vishing attacks rose by 442% from the first half of 2024 to the second. 

from Cybersecurity News https://ift.tt/jSb9LwF

Bay Cove Human Services suffers data breach

Bay Cove Human Services has provided notice of a data breach that may have affected personal and/or protected health information.

from Cybersecurity News https://ift.tt/PzOtQnk

Cyber operations against Russia halted, cyber leaders remain alert

How will organizations be impacted by the order to halt cyber operations against Russia? Cybersecurity leaders share their thoughts. 

from Cybersecurity News https://ift.tt/t0S1deQ

78% of CISOs are experiencing impact from from AI cyber threats

A report discusses the shifting role of AI in cybersecurity. 

from Cybersecurity News https://ift.tt/b4aDdF0

36% of organizations have outlined roles within cybersecurity teams

A recent report fund that 93% of organizations made policy changes over the preceding 12 months to address concerns about personal liability for CISOs.

from Cybersecurity News https://ift.tt/Qq3Wwy2

96% of ransomware incidents involve data exfiltration

Malicious actors are shifting priorities, as 96% of ransomware incidents involve data exfiltration. 

from Cybersecurity News https://ift.tt/1RegNMc

Kash Patel has been sworn in as Director of the FBI

Kash Patel has been sworn in as ninth Director of the FBI. 

from Cybersecurity News https://ift.tt/YviBrq7

Nearly 1M records related to personal property were exposed

A property tracking and return service supporting multiple airports had nearly 1M records exposed.

from Cybersecurity News https://ift.tt/Vh7MrW8

Michael R. Centrella named Assistant Director of the USSS Office of Field Operations

Michael R. Centrella has been promoted to Assistant Director of the USSS Office of Field Operations. 

from Cybersecurity News https://ift.tt/sMaBrUE

Ransomware incidents reached record levels in 2024

An analysis of global ransomware activity reveals ransomware incidents reached record levels in 2024. 

from Cybersecurity News https://ift.tt/yb9wGgK

39% of vulnerabilities could cause both a loss of view and control

A recent Dragos cybersecurity report analyzed two new OT cyber threat groups and ransomware activity.

from Cybersecurity News https://ift.tt/96EjeX1

Security leaders discuss botnet attack against Microsoft 365 accounts

Security leaders discuss the coordinated botnet campaign against Microsoft 365 accounts. 

from Cybersecurity News https://ift.tt/FLTHuRV

99% of organizations faced API security issues within past 12 months

API security challenges are ongoing, with 99% reporting API security issues in the past 12 months.

from Cybersecurity News https://ift.tt/ovysu9l

Richard Bird hired as Chief Security Officer at Singulr AI

Richard Bird has been appointed CSO at Singulr AI. Bird will play a critical role in helping develop practices that keep pace with emerging threats.

from Cybersecurity News https://ift.tt/DqLJ73c

Open source software vulnerabilities found in 86% of codebases

86% of codebases had open source software vulnerabilities while 81% had high- or critical-risk vulnerabilities.

from Cybersecurity News https://ift.tt/mslJ8yL

John Carse hired as Field CISO at Squarex

John Carse has been hired as Field Chief Information Security Officer (CISO) at SquareX. Carse has over two decades of cybersecurity experience.

from Cybersecurity News https://ift.tt/CvzJpDX

7-year-old vulnerability exploited in Salt Typhoon attack

Security leaders discuss the 7-year-old vulnerability that was exploited in the Salt Typhoon attack. 

from Cybersecurity News https://ift.tt/7vZfaAg

SEC establishes Cyber and Emerging Technologies Unit

The SEC has announced it established the Cyber and Emerging Technologies Unit. 

from Cybersecurity News https://ift.tt/jHoP4Da

68% of people are worried about misinformation due to deepfakes

Recent research found that .1% of U.S. and U.K. consumers could accurately distinguish real from fake content across images and video.

from Cybersecurity News https://ift.tt/zl4Lhxc

Quantum computing could arrive soon due to Microsoft’s new chip

According to Microsoft, quantum computers could be built within years instead of decades, citing a recent breakthrough. 

from Cybersecurity News https://ift.tt/ShHGkIT

CISA and FBI issue warning for Ghost ransomware activity

CISA and FBI issue an advisory about Ghost ransomware activity. 

from Cybersecurity News https://ift.tt/Z7SqAYG

Venture capital firm Insight Partners faces security breach

A global venture capital firm has announced it experienced a cyber incident.

from Cybersecurity News https://ift.tt/rV24Z50

1.6M clinical research records exposed in data leakage

Research reveals a non-password-protected database associated with a clinical trial site network.

from Cybersecurity News https://ift.tt/ilnbQPk

Mobile phishing threats are evolving, according to new research

A new report highlights trends in mobile-specific phishing attacks. 

from Cybersecurity News https://ift.tt/z6vOD0S

Only 1 in 3 cybersecurity professionals would recommend their employer

A new report offers insight into hiring trends, cyber professional compensation and job satisfaction.

from Cybersecurity News https://ift.tt/M35OncX

97% of companies block or restrict generative AI usage

The data from a cybersecurity report shows that 66% of respondents use GenAI for work, with 64% using personal email accounts to access the tools.

from Cybersecurity News https://ift.tt/HagyK8T

Phishing remains the preferred technique among threat actors

Phishing is the preferred technique among threat actors, according to a new report.

from Cybersecurity News https://ift.tt/qUZXWds

76% of security leaders plan to increase their security budgets in 2025

A CDG report found that 92% of IT professionals stated they had some degree of confidence in their ability to meet compliance requirements.

from Cybersecurity News https://ift.tt/urwq9zM

Ransomware attack hits 5 Michigan casinos, shuts them down

Casinos in Michigan were targeted by a ransomware attack. 

from Cybersecurity News https://ift.tt/CdROAUu

Super Bowl Sunday saw a 57% rise in malicious gambling content

A recent cybersecurity report by DNSFilter found that Super Bowl Sunday saw a 57% rise in malicious gambling and betting content. 

from Cybersecurity News https://ift.tt/rwtV0Mu

The top 4 unmanaged apps are AI-driven

A recent Torii report analyzed how businesses are managing a rise in "shadow IT" and artificial intelligence (AI) driven tools. 

from Cybersecurity News https://ift.tt/nSBEOU7

Gmail, Yahoo targeted by a new two-factor authentication phishing kit

A phishing kit is bypassing two-factor authentication. 

from Cybersecurity News https://ift.tt/o2bJfMZ

Cyber Conspiracy Modernization Act proposed, cyber expert weighs in

A proposed bipartisan bill aims to increase punishment for cybercrimes. 

from Cybersecurity News https://ift.tt/MTekPR9

US declines international AI declaration, security leaders discuss

The United States and the United Kingdom have declined to sign the AI Action Summit agreement. 

from Cybersecurity News https://ift.tt/ierTVNp

Nine out of 10 IT teams are better funded than they were last year

A recent Omada report found that 95% of IT leaders see identity security as an important part of their cybersecurity strategy.

from Cybersecurity News https://ift.tt/8Y6jb4n

Report shows DDoS attacks increased 56% year-over-year

DDoS attacks have increased in volume and magnitude from Q3-Q4 2023 to Q3-Q4 2024.

from Cybersecurity News https://ift.tt/URkfxCS

39% of law enforcement agencies unable to timely solve investigations

Thirty-three percent of law enforcement agencies indicate that analyzing the data is the most challenging part of the intelligence and insight process.

from Cybersecurity News https://ift.tt/0zpwv6J

88% of UK businesses say cyber fraud drove payment fraud

A recent U.K. cybersecurity report found that 93% of companies were targeted by fraud in the past year, with 73% expecting risks to grow in 2025.

from Cybersecurity News https://ift.tt/cloJPbU

Ransomware extortion rose by 46% in Q4 2024

According to a Nuspire report, ransomware extortion publications rose by 46% compared to Q3, with Clop ransomware emerging as the most active group.

from Cybersecurity News https://ift.tt/4go2wPQ

29% of school systems report a rise in student-to-student security incidents

A recent cybersecurity report by Clever found that 5% of U.S. school systems have implemented multi-factor authentication (MFA) for students.

from Cybersecurity News https://ift.tt/8wIzlke

DOGE inputs federal data to AI, cyber leaders discuss implications

DOGE has been feeding sensitive federal information into AI. Security leaders discuss. 

from Cybersecurity News https://ift.tt/nMqVtlI

Lawmakers propose DeepSeek ban on government devices

A bipartisan congressional bill has been proposed, which would prohibit the use of DeepSeek on government devices.

from Cybersecurity News https://ift.tt/GfdKChJ

59% insurance sector breaches caused by third parties

A review of breach histories of the top 150 insurance companies worldwide reveals 59% included third-party attack vectors.

from Cybersecurity News https://ift.tt/ZG5VyCs

Deepseek-impersonating malware is stealing data, research finds

The emergence of DeepSeek has led to malicious actors attempting to exploit its prominence.

from Cybersecurity News https://ift.tt/1KIXl7L

Malicious actors using multimedia messages to promote Bitcoin scams

Video-based abuse is being leveraged in a new Bitcoin scam. 

from Cybersecurity News https://ift.tt/Dp6oKW4

Report: Password stores are targeted by 25% of malware

A new report reveals an increase in credential-stealing malware.

from Cybersecurity News https://ift.tt/2z3PrcM

850,000 individuals impacted by Globe Life ransomware incident

An estimated 850,000 individuals have been affected by a ransomware attack on Globe Life, an insurance organization.

from Cybersecurity News https://ift.tt/kS29RIM

39 cybercrime domains seized, linked to HeartSender cybercrime group

Law enforcement agencies have dismantled 39 cybercrime domains and associated servers.

from Cybersecurity News https://ift.tt/m0CBKOV

90% of security professionals report conformance with DORA

Ninety percent of professionals report conformance with Digital Operational Resilience Act and the Network and Information Security Directive 2.

from Cybersecurity News https://ift.tt/fzmvMxa

Ransomware attack targets the New York Blood Center

The New York Blood Center experienced a ransomware attack. 

from Cybersecurity News https://ift.tt/9rJeaOf

47% of organizations have put off cybersecurity upgrades

According to a recent Sentry report, a majority (67%) of security leaders admit they're feeling more stressed compared to last year.

from Cybersecurity News https://ift.tt/3Veg7o1

Phishing tax scams increase as tax deadlines approach

Researchers have observed an increase in malicious domains and campaigns impersonating tax agencies and financial institutions. 

from Cybersecurity News https://ift.tt/8tcXHNM

Coming soon to job boards: The Chief Secure Networking Officer

The Chief Secure Networking Officer (CSNO) is a transformative role designed to ensure seamless performance and security for next-generation technologies. 

from Cybersecurity News https://ift.tt/wA8z3od

Vulnerability discovered in Subaru’s connected vehicle service

Subaru’s STARLINK connected vehicle service contains a vulnerability that permits access to user accounts and vehicles. 

from Cybersecurity News https://ift.tt/ulgdRUn

PayPal ordered to pay $2M in settlement from 2022 breach

The New York State Department of Financial Services has declared that PayPal will pay $2M in a settlement. 

from Cybersecurity News https://ift.tt/b65hkMg

190M impacted by Change Healthcare breach, security leaders discuss

 Security leaders discuss an update from Change Healthcare. 

from Cybersecurity News https://ift.tt/m5H3GCy

Simplify your security toolkit

What threats do security leaders need to worry about? Answer this question and more with Corey Nachreiner, CISO at WatchGuard.

from Cybersecurity News https://ift.tt/65rJYqS

DeepSeek: What to know about the Chinese artificial intelligence model

Cyber experts delve into DeepSeek, the Chinese artificial intelligence model. 

from Cybersecurity News https://ift.tt/BvVOqr1

Security research discovers vulnerabilities in popular travel service

An account takeover vulnerability has been discovered in a popular online travel service. 

from Cybersecurity News https://ift.tt/Pq87RSU

Celebrating Data Privacy Day: Experts share data protection insights

This Data Privacy Day, cybersecurity experts share insights on data protection best practices.

from Cybersecurity News https://ift.tt/DL6gdT9

Mobile phishing campaign impersonates USPS, steals credentials

Security leaders discuss a new mobile phishing campaign that impersonates the USPS. 

from Cybersecurity News https://ift.tt/Q98JuUi

Trump administration dismisses Cyber Safety Review Board (CSRB)

The Department of Homeland Security has dismissed its advisory committees, including the Cyber Safety Review Board (CSRB).

from Cybersecurity News https://ift.tt/yJkXqDe

Phishing rose 30.5% year-over-year in APAC region

According to a recent report, between 2023 and 2024, the median monthly rate of advanced email attacks in the APAC region surged by 26.9%.

from Cybersecurity News https://ift.tt/7fylrXU

Top cybersecurity conferences in 2025

Security magazine highlights a few upcoming cybersecurity conferences in 2025.

from Cybersecurity News https://ift.tt/w3zK6Lb

$4.88M was the average cost of a data breach in 2024

A new report discusses the relationship between cybersecurity and insurance as digital infrastructure grows increasingly intertwined into business operations.

from Cybersecurity News https://ift.tt/fdhTokW

Healthcare cyberattacks caused financial damage for 69% of organizations

A cyberattack resulted in financial damage for 69% of healthcare organizations, compared to 60% among other industries.

from Cybersecurity News https://ift.tt/cvLOgAU

94.2% of CISOs say CCM could improve compliance and security

A new report provides insights on the struggles CISOs face. 

from Cybersecurity News https://ift.tt/4tkSzse

Report: Healthcare ransomware targets are shifting

Certain ransomware groups are targeting healthcare institutions more than other sectors. 

from Cybersecurity News https://ift.tt/KxhMBeo

84% of organizations say lack of AI transparency led to compliance issues

A recent Camunda report found that 82% of organizations fear “digital chaos” due to increasingly complex, interconnected and automated processes.

from Cybersecurity News https://ift.tt/9oI37tX

US experiences 47% of global utilities cyberattacks

A new report indicates a rise in cyberattacks against the utilities sector.

from Cybersecurity News https://ift.tt/Z3NARhC

CISA report calls on US government to close the software knowledge gap

CISA has released a report on the state of software understanding.

from Cybersecurity News https://ift.tt/Qux4FMt

Security’s Top 5 – 2024 Year in Review

Security’s Top 5 from Security magazine showcases the top stories and new developments from across the security industry.

from Cybersecurity News https://ift.tt/38I4dBD

Biden Administration proposes framework for AI chip exports

The Biden Administration has proposed a framework for AI chip exports, and security leaders are sharing their thoughts. 

from Cybersecurity News https://ift.tt/z8P5qeJ

Report: CISO responsibility is expanding beyond cybersecurity

The responsibilities of CISOs are expanding; however, only 3% of those surveyed indicate a pay raise to reflect their greater responsibility. 

from Cybersecurity News https://ift.tt/BpxrgF2

Report: Software security awareness training is at an all-time low

A recent report discovered only 51.2% of organizations are offering basic software security awareness training.

from Cybersecurity News https://ift.tt/DtONKsL

Cybersecurity researchers discover malware targeting macOS users

Cybersecurity researchers have discovered an information-stealing malware targeting macOS users. 

from Cybersecurity News https://ift.tt/6aY0MvV

Large companies saw a rise in email-based cyberattacks

The financial sector faces an increase in email attacks.

from Cybersecurity News https://ift.tt/l8XMqcS

AI and other top cybersecurity predictions for 2025

The new year brings new opportunities, but also the potential for new challenges. Security leaders share some of their predictions for 2025.

from Cybersecurity News https://ift.tt/I7ZPbnT

The Green Bay Packers online store breached, customer information compromised

The Green Bay Packers is notifying of a breach against its online store, which may have impacted the personal and/or financial data of customers.

from Cybersecurity News https://ift.tt/n3XL6oB

“U.S. Cyber Trust Mark” launched by the White House

The White House announced a “U.S. Cyber Trust Mark,” establishing a label for American consumers to verify if their connected devices are cybersecure.

from Cybersecurity News https://ift.tt/Ul2IOLs

Recent research reveals “phish-free PayPal phishing” scam

Research reveals the emergence of a “phish-free PayPal phishing” scam.

from Cybersecurity News https://ift.tt/PTXNQ0o