Researchers have recently uncovered a sophisticated phishing attack that effectively circumvents a multifactor authentication (MFA) mechanism based on the FIDO (Fast Identity Online) standard, which is increasingly being adopted across various platforms and enterprises. If verified, this development poses significant…
Artificial Intelligence & Machine Learning, Finance & Banking, Governance & Risk Management Also: CISA Alerts on Train Hacking Risks; Ongoing AI Comprehension Challenges Anna Delaney (annamadeline) • July 18, 2025 This week, a panel of four editors from Information Security…
Data Breaches at the Ministry of Defence Raise Significant Security Concerns Recent revelations have unveiled hundreds of data breaches at the UK’s Ministry of Defence (MoD), intensifying scrutiny over its capability to safeguard sensitive information against cyber threats. In 2023-24…
Exposed Adoption Data Raises Privacy Concerns for Gladney Center In late June, security researcher Jeremiah Fowler uncovered a publicly accessible database containing sensitive information related to the adoption process. The database, linked to the Texas-based nonprofit Gladney Center for Adoption,…
Anti-Phishing, DMARC, Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime State-Sponsored Groups Target Semiconductor Sector with Spear-Phishing Attacks Prajeet Nair (@prajeetspeaks) • July 17, 2025 Chinese state-aligned hackers have escalated their espionage tactics against Taiwan’s semiconductor ecosystem through concentrated spear-phishing…
Recent developments in cybersecurity have once again put the spotlight on data privacy laws in Australia, particularly following a significant cyber attack targeting Qantas Airways. Legal representatives from Maurice Blackburn have filed a formal complaint with the Office of the…
The Chinese APT group known as Salt Typhoon reportedly penetrated the network of a U.S. state’s Army National Guard for nearly nine months, from March 2024 to December 2024. This breach was highlighted in a June memo from the Department…
Security Breach Exposes Personal Data of Millions from McDonald’s Job Applications Recent findings by cybersecurity researchers have unveiled a significant security breach affecting millions of job applicants to McDonald’s, exposed through a vulnerable account at Paradox.ai, a firm known for…
Army: Names of those who assisted British forces leaked A significant data breach involving the Ministry of Defence (MoD) has resulted in the exposure of personal details of Afghan nationals who had assisted British forces during their operations in Afghanistan.…
Researchers from Cisco’s Talos security team have identified a sophisticated malware-as-a-service (MaaS) operation that exploited public GitHub accounts to distribute various types of malicious software to targeted entities. This innovative distribution method capitalized on GitHub’s widespread acceptance in enterprise environments,…
