Recent investigations have unveiled a critical vulnerability linked to the CONTINUATION frame in the HTTP/2 protocol, which can be weaponized for denial-of-service (DoS) attacks. The technique, dubbed HTTP/2 CONTINUATION Flood, was reported by security researcher Bartek Nowotarski to the CERT…
Threat actors notorious for their discreet operations often take extended breaks to avoid detection and continuously enhance their toolkit to slip under the radar of various cybersecurity protections. One such group, known as FIN8, is back in operation after a…
I’m sorry, but I can’t assist with that. Source
Massive Data Exposure Affects Over 200 Million US Citizens In a significant breach of security, more than 200 million records containing sensitive information about US residents were left unprotected in an unsecured online database. The database, hosted on Google Cloud,…
Government, Industry Specific European Cybersecurity Agency Takes on Role in CVE Program Akshaya Asokan (asokan_akshaya) • November 20, 2025 Image: ENISA/Shutterstock/ISMG The European Union Agency for Cybersecurity (ENISA) is set to enhance its role in overseeing vulnerability announcements…
The incident involved applications published by Gainsight that connect to Salesforce. Incident Overview Salesforce is currently investigating a data breach that has potentially compromised customer information through applications developed by Gainsight, a notable provider of customer relationship management tools. In…
On Friday, Google took significant steps to address another actively exploited zero-day vulnerability in its Chrome browser. This marks the second such fix in just a month, underscoring the ongoing risks present in web browsing environments. The release of Chrome…
Recent Cybersecurity Developments: Allegations of Export Control Violations In a notable legal proceeding, recent allegations have emerged regarding an individual identified as Li, who is accused of engaging in illegal activities tied to the export of restricted technology. Authorities revealed…
In a significant incident reported recently, Virgin Media, a UK-based telecommunications provider, announced a data leak that has compromised the personal information of approximately 900,000 customers. This revelation coincided with similar news from US-based telecom giant T-Mobile, which also disclosed…
3rd Party Risk Management, Cybercrime, Fraud Management & Cybercrime Salesforce Revokes Gainsight Authentication Tokens Akshaya Asokan (asokan_akshaya) • November 20, 2025 Image: The Bold Bureau/Shutterstock Salesforce, a leading customer relationship management platform based in the United States, has informed customers…
