Category: Cyber Attack

3 Use Cases for Third-Party API Security
Summary: The commentary discusses the importance of adapting security strategies for third-party APIs, highlighting the unique risks and considerations that differ from first-party APIs. It emphasizes the need for security leaders to focus on three specific use cases: managing outbound data flows, protecting against inbound traffic, and overseeing data management for third-party applications.…
Read More
PayPal penalized million over data breach involving 35K Social Security numbers
Summary: PayPal has agreed to pay a $2 million penalty following a cybersecurity incident in December 2022 that exposed thousands of Social Security numbers. The breach was attributed to a credential stuffing attack, which exploited vulnerabilities in the company’s platform due to recent changes. New York regulators emphasized the importance of qualified cybersecurity personnel and proper training to prevent such incidents in the future.…
Read More
Summary: GitLab has released critical security updates for versions 17.8.1, 17.7.3, and 17.6.4 to address multiple vulnerabilities, including a high severity cross-site scripting (XSS) flaw. The most severe vulnerability, CVE-2025-0314, allows attackers to inject malicious scripts, potentially leading to session hijacking and data theft. GitLab urges all users to update their installations immediately to mitigate these risks.…
Read More
Strengthening Our National Security in the AI Era
Summary: The commentary discusses the challenges faced by the federal government in modernizing cybersecurity efforts amidst increasing data breaches and ransomware attacks. It highlights the significance of the Biden administration’s executive order aimed at strengthening cybersecurity through the integration of AI and automation. The piece emphasizes the urgent need for improved cybersecurity practices and the potential of AI to enhance resilience in federal infrastructure and the software supply chain.…
Read More
Subaru Starlink Vulnerability Exposed Cars to Remote Hacking
Summary: A vulnerability in Subaru’s Starlink connected vehicle service allowed unauthorized access to customer accounts in the US, Canada, and Japan. Security researchers discovered that the admin panel could be accessed without proper authentication, enabling potential vehicle takeovers and access to sensitive customer information. Subaru addressed the security flaw within 24 hours of being notified by the researchers.…
Read More
Cyber Insights 2025: Social Engineering Gets AI Wings
Summary: Cyber Insights 2025 highlights the evolution of social engineering as a significant cybersecurity threat, particularly with the rise of generative AI. Experts predict that AI will enhance social engineering tactics, making them more sophisticated and widespread, thereby increasing the risk of cyberattacks. The article emphasizes the inherent human nature of social engineering and the challenges in mitigating its effects on individuals and organizations.…
Read More
Summary: Google has issued a critical security update for its Chrome web browser, addressing three vulnerabilities, two of which are classified as “High” severity. Users are strongly encouraged to update to the latest version (132.0.6834.110/111) to protect against potential exploits. The vulnerabilities involve the V8 JavaScript engine, which could allow attackers to execute arbitrary code or crash the browser.…
Read More
2025 State of SaaS Backup and Recovery Report
Summary: The modern workplace has shifted towards hybrid work, increasing reliance on cloud-based SaaS applications, which has led to heightened cyberthreats. The 2025 State of SaaS Backup and Recovery Report reveals alarming trends in data loss and recovery confidence among IT professionals. Organizations are urged to strengthen their data resilience strategies to navigate these challenges effectively.…
Read More
Conduent Confirms Cyberattack After Government Agencies Report Outages
Summary: Conduent has confirmed that it experienced operational disruptions due to a cyberattack, affecting government services in multiple US states. The incident, described as a “global network issue,” has led to service outages and payment impacts for organizations relying on Conduent’s systems. While the specifics of the attack remain unclear, it is suspected to be linked to a ransomware incident, though no group has claimed responsibility yet.…
Read More
Summary: Conor Fitzpatrick, known as “Pompompurin,” is facing re-sentencing after an appellate court overturned a previous lenient sentence for his role in operating the cybercrime platform BreachForums. He pleaded guilty to serious charges, including possession of child pornography and conspiracy to traffic in stolen data, but initially received only 17 days in prison.…
Read More
Multiple Cybersecurity Giants’ Account Credentials Leaked and Sold on Dark Web; Ministry of Industry and Information Technology Warns: Beware of Androxgh0st Botnet Risks | NiuLan – Security Niu
A recent report reveals that multiple cybersecurity firms have had their account credentials leaked and are being sold on the dark web. This poses risks not only to the companies involved but also to their customers. Additionally, the Ministry of Industry and Information Technology highlights the ongoing threat of the Androxgh0st botnet, which targets IoT devices and network infrastructure.…
Read More
Summary: Sophos X-Ops has identified two ransomware campaigns, STAC5143 and STAC5777, targeting organizations through Microsoft Office 365 and Teams. These campaigns utilize tactics such as email bombing and Teams vishing to deploy ransomware and steal sensitive data. Both campaigns are linked to known threat actors, FIN7 and Storm-1811, who exploit Microsoft services to execute their attacks.…
Read More
Summary: Cybercriminals are increasingly targeting payment systems, with a significant rise in stolen card data and check fraud. The latest fraud report highlights a surge in Magecart e-skimmer infections due to a specific vulnerability, alongside a persistent issue of check fraud in the U.S. The report forecasts ongoing trends in digital skimming, dark web activity, and check fraud for 2025.…
Read More
FBI: North Korean IT workers steal source code to extort employers
Summary: The FBI has issued a warning about North Korean IT workers who exploit their access to steal source code and extort U.S. companies. These workers often impersonate legitimate staff and utilize various tactics to conceal their identities, posing significant security risks to organizations. The FBI has recommended measures to mitigate these threats, including verifying identities and monitoring network activity.…
Read More
Hundreds of fake Reddit sites push Lumma Stealer malware
Summary: Hackers are distributing nearly 1,000 fraudulent web pages that impersonate Reddit and WeTransfer to deliver the Lumma Stealer malware. These fake sites use social engineering tactics to appear legitimate, luring victims into downloading malicious software. The campaign highlights the ongoing threat of info-stealer malware, which can compromise sensitive data and credentials.…
Read More