In a recent wave of cyberattacks, organizations in East Asia are increasingly falling victim to an advanced threat actor known as DragonSpark. This group is believed to be operating under the direction of a Chinese-speaking operator and employs sophisticated techniques…
Critical Infrastructure Security, Endpoint Security, Governance & Risk Management Mitsubishi Electric’s $883M Acquisition of Nozomi Enhances Cyber Defense for Critical Infrastructure Michael Novinson (MichaelNovinson) • September 9, 2025 Mitsubishi Electric has announced plans to acquire Nozomi Networks for $883 million,…
A pioneering marketplace launched this week, offering complimentary and discounted privacy and security services tailored for 23 million current and former public servants in the United States. Established by the Public Service Alliance (PSA), the initiative aims to address a…
Medusa Ransomware Campaign Targets Diverse Sectors, Rising Threats Persist The Medusa ransomware group has intensified its activities since its emergence in January 2023, reportedly claiming close to 400 victims across various sectors. Recent statistics reveal a significant 42% surge in…
Virgin Money and TD Bank Targeted in Salesforce Breach In a significant development in the world of cybersecurity, both Virgin Money and TD Bank have reportedly suffered a data breach linked to vulnerabilities within Salesforce, a widely-used customer relationship management…
Google Addresses Vulnerabilities in Android with Latest Update In a recent security update, Google has addressed a total of 62 vulnerabilities in its Android operating system, revealing that two of these flaws have been exploited in real-world scenarios. The vulnerabilities,…
A recent surge in malicious email campaigns has been traced back to a North Korean state-sponsored group known for its history of cryptocurrency heists. This latest wave of activity, identified as a significant shift in tactics, involves aggressive credential harvesting…
Identity & Access Management, Security Operations Salesloft Reports GitHub Repository Compromised by Cyber Attackers Greg Sirico • September 8, 2025 Image: Shutterstock Salesloft has confirmed that hackers gained unauthorized access to its GitHub repository, leading to a significant breach affecting…
Hackers have executed a significant supply-chain attack by embedding malicious code into a variety of open-source software packages, impacting more than 2 billion weekly updates. This incident, which has been characterized as possibly the largest of its kind to date,…
In a disturbing development for cybersecurity, a campaign attributed to unidentified threat actors has emerged, focusing primarily on organizations in Japan since January 2025. This malicious initiative exploits a vulnerability known as CVE-2024-4577, a remote code execution (RCE) flaw in…
