Okta, a pivotal player in identity and access management, reported an unauthorized access event involving its source code repositories earlier this month. The incident, which was disclosed on Wednesday, raises substantial concerns about the security practices surrounding sensitive organizational code.…
Agentic AI, Artificial Intelligence & Machine Learning, Identity & Access Management Durand: Agentic Models Demand Enhanced Verification and Advanced Access Controls Michael Novinson (MichaelNovinson) • September 12, 2025 Andre Durand, founder and CEO of Ping Identity (Image: Ping Identity) The…
A recent investigation has uncovered alarming findings regarding a dataset utilized for training large language models (LLMs). This dataset reportedly contains close to 12,000 live secrets, including credentials capable of authenticating access to various services. This discovery raises significant concerns…
Recent developments have emerged regarding the Salesloft Drift breach, which has impacted over 700 organizations across the globe. New victims have come forward, adding to the severity of the incident. On August 20, Salesloft and Salesforce announced they had severed…
NetApp SnapCenter has revealed a significant security vulnerability that poses a considerable risk of privilege escalation if exploited. SnapCenter is an enterprise-grade solution employed for the management of data protection across various applications, databases, virtual machines, and file systems. It…
Cybercrime, Fraud Management & Cybercrime Vastaamo Hacker Aleksanteri Kivimäki Released While Awaiting Appeal Akshaya Asokan (asokan_akshaya) • September 12, 2025 Aleksanteri Kivimäki in a Finnish courtroom on February 28, 2023 A Helsinki court has ordered the release of one of…
In 2024, a total of 5,414 ransomware attacks occurred worldwide, representing an 11% increase compared to 2023. Following a gradual start, ransomware incidents surged in the second quarter and peaked in the fourth, accounting for 1,827 incidents—approximately 33% of the…
Fairmont Federal Credit Union Faces Data Breach Investigation by Edelson Lechtzin LLP FAIRMONT, W.Va., September 12, 2025 — Edelson Lechtzin LLP, a prominent national class-action law firm based in suburban Philadelphia, is currently investigating reported data privacy violations stemming from…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially incorporated two significant six-year-old vulnerabilities affecting the Sitecore Content Management System and Experience Platform into its Known Exploited Vulnerabilities (KEV) catalog. This addition follows credible evidence indicating that these flaws…
The Zerobot DDoS botnet has undergone significant updates, enhancing its capacity to target a broader range of internet-connected devices and expand its network. Microsoft Threat Intelligence Center (MSTIC) is closely monitoring this evolving threat, referring to it as DEV-1061, which…
