Access Management, Data Privacy, Data Security NIH Working on Fixes to Address National Security Risks and Weak Access Controls Marianne Kolbasuk McGee (HealthInfoSec) • November 17, 2025 A federal watchdog agency identified security vulnerabilities that could permit unauthorized access to…
In a recent incident, Checkout.com, a payment processing service, faced a data breach attributed to the hacking group known as ShinyHunters, which exploited vulnerabilities in a legacy third-party cloud storage system. This breach reportedly affected less than 25% of the…
Recent cybersecurity research has unveiled a critical vulnerability in command-line interface (CLI) tools from Amazon Web Services (AWS) and Google Cloud, risking the exposure of sensitive credentials within build logs. Titled LeakyCLI by the cloud security firm Orca, this vulnerability…
Recent cybersecurity investigations have revealed a sophisticated cyberespionage campaign attributed to a Chinese-speaking hacking group targeting various government and military institutions in Vietnam. The threat has been tentatively linked to the advanced persistent threat (APT) group known as Cycldek, also…
A significant data breach has occurred, involving a staggering 269 gigabytes of information allegedly taken from over 200 policing entities, fusion centers, and various law enforcement agencies across the United States. Known as “BlueLeaks,” this extensive cache has been made…
Cybercrime, Fraud Management & Cybercrime, Geo Focus: The United Kingdom Carmaker Resumes Full Production Akshaya Asokan (asokan_akshaya) • November 17, 2025 Image: Tada Images/Shutterstock Jaguar Land Rover announced on November 17 that a cyberattack in September led to an estimated…
The frequency of cyber security incidents and data breaches is escalating rapidly, impacting organizations across various sectors in Northern Ireland and beyond. This surge in incidents is prompting local enterprises to regard cyber threats as a matter of “when” rather…
Cisco has issued a warning regarding a notable increase in brute-force attacks targeting a variety of devices since March 18, 2024. These attacks specifically affect Virtual Private Network (VPN) services, web application authentication interfaces, and SSH services. Cisco Talos reports…
Security experts have raised alarms regarding a series of targeted attacks aimed at unpatched Fortinet VPN devices, impacting industrial enterprises across Europe. These assaults are believed to have facilitated the deployment of a new ransomware variant known as “Cring” within…
In a significant cybersecurity case, multiple defendants have been implicated in a fraudulent scheme that exploited U.S. employment practices to benefit foreign IT workers, including those in North Korea. The individuals involved facilitated identity fraud, allowing these workers to secure…
