Governance & Risk Management, Zero Trust New NSA Recommendations Call for Ongoing Access Reviews and Overhauls in Implementation Chris Riotta (@chrisriotta) • February 2, 2026 NSA Headquarters located at Fort Meade, Maryland. (Image: NSA) The National Security Agency (NSA) has…
Los Angeles Law Firm Wisner Baum Faces Lawsuit Following Data Breach In a significant development in the realm of cybersecurity, the Los Angeles-based plaintiffs’ firm Wisner Baum has reportedly been sued in connection with a recent data breach that has…
Critical Vulnerability Discovered in Expo.io’s OAuth Implementation A significant security flaw has been uncovered in the Open Authorization (OAuth) framework utilized by Expo.io, a popular application development platform. This vulnerability, identified as CVE-2023-28131, has been assigned a severe risk rating…
New Android Trojan Disguises Itself as Antivirus Threatening User Security Security experts from Cisco Talos have identified a new variant of an Android Trojan, disguised as a fraudulent antivirus application named “Naver Defender.” This malware, known as KevDroid, is a…
Exploitation of Notepad++ Vulnerabilities Raises Concerns Recent disclosures have highlighted significant vulnerabilities associated with Notepad++, the widely used text editor. Beaumont has elucidated that if an attacker can intercept and manipulate traffic directed to the Notepad++ download, they can redirect…
Cybersecurity Alert: Protecting Against Holiday Shopping Scams As the holiday shopping season approaches, encompassing the bustling days of Black Friday and Cyber Monday, an increased risk of cyber criminal activity emerges, prompting urgent attention from both consumers and retailers alike.…
Scattered Lapsus Shiny Hunters: A New Threat in Cyber Extortion A notorious cyber extortion group known as Scattered Lapsus Shiny Hunters (SLSH) has been making headlines for its aggressive tactics in seeking ransoms from compromised organizations. This group employs a…
Recently, Notepad++, a widely-used text editor known for its lightweight and open-source nature, experienced a serious security breach involving its update system. This tool is favored by various users, including IT administrators, developers, and security researchers, due to its reliability…
Cybersecurity professionals are all too familiar with the myriad acronyms that saturate the industry landscape. Among the latest terms gaining traction is CTEM, an abbreviation for Continuous Threat Exposure Management. This article delves into the complexities and the unforeseen challenges…
In a significant security disclosure, researchers at Embedi have identified a critical vulnerability in Cisco’s IOS and IOS XE Software, which poses a pronounced threat to network devices. This flaw could enable an unauthenticated remote attacker to execute arbitrary code,…
