ShinyHunters has reportedly breached Kering’s systems, compromising customer data from luxury brands including Gucci, Balenciaga, and Alexander McQueen, thereby increasing the risk of scams and spear-phishing attacks. In a recent cyber incident, sensitive customer information from prominent fashion labels such…
Recent security flaws have been uncovered in Xerox VersaLink C7025 Multifunction printers (MFPs), raising concerns about potential data breaches. These vulnerabilities could permit attackers to intercept authentication credentials through pass-back attacks linked to Lightweight Directory Access Protocol (LDAP) and SMB/FTP…
Lee Chan-jin, governor of the Financial Supervisory Service, emphasizes cybersecurity vigilance to credit card and non-bank lenders in Seoul. (FSS) Korea’s leading financial authority has issued a stern warning to credit card and non-bank lenders, emphasizing that any cybersecurity lapse…
Veeam Addresses Critical Vulnerability in Backup & Replication Software Veeam has announced crucial security updates to its Backup & Replication software in response to a severe vulnerability that could facilitate remote code execution. The flaw, identified as CVE-2025-23120, is rated…
A sophisticated threat actor known as Mustang Panda has been implicated in a wave of spear-phishing attacks directed at key sectors including government, education, and research from May to October 2022. According to a recent report by cybersecurity firm Trend…
Events, Governance & Risk Management, Nullcon Live Bug Bounty Event Reveals New Testing Advantages Aseem Jakhar • September 15, 2025 Patricia Leppert, Team Manager of Customer Trust and Security, TeamViewer; Raphaël Arrouas, Independent Ethical Hacker As cyber threats escalate in…
A new cyber campaign named RevivalStone has been attributed to the China-linked threat actor known as Winnti, targeting Japanese firms in the manufacturing, materials, and energy sectors as recently as March 2024. This initiative, as outlined by Japanese cybersecurity firm…
In a significant disclosure, Google has confirmed that hackers successfully established a counterfeit account within its Law Enforcement Request System (LERS), a vital channel utilized by authorities globally to submit official data requests. This breach, first reported by BleepingComputer, highlights…
Recent reports from the SANS Internet Storm Center indicate that two recently patched security vulnerabilities in the Cisco Smart Licensing Utility are being actively targeted by malicious actors. The vulnerabilities have been classified as critical, underscoring the urgency for businesses…
Daixin Team Compromises AirAsia’s Data in Ransomware Incident In a significant cybersecurity breach, the Daixin Team, a cybercrime group, has published sensitive data linked to AirAsia, a prominent Malaysian low-cost airline. This development follows a ransomware attack that occurred on…
