A significant security vulnerability in Microsoft Exchange’s Autodiscover protocol has led to the exposure of nearly 100,000 credentials for Windows domains globally. This flaw poses a critical risk, as attackers who manage to gain control over these domains could intercept…
Government, Industry Specific, Next-Generation Technologies & Secure Development Lawmakers Propose Renewing Cyberthreat Sharing Law Amid Government Shutdown Issues Chris Riotta (@chrisriotta) • November 11, 2025 Image: Shutterstock Recent legislative developments may restore a critical framework for sharing cybersecurity information as…
Data Breach at Genea Fertility Exposes Sensitive Patient Information A significant data breach at Genea Fertility, one of Australia’s leading IVF providers, has compromised the sensitive medical information of numerous patients, raising serious cybersecurity concerns. Following a cyber attack earlier…
Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a serious security vulnerability affecting Ivanti Virtual Traffic Manager (vTM) to its Known Exploited Vulnerabilities (KEV) catalog, following indications of active exploitation in the wild. The vulnerability, identified as CVE-2024-7593,…
Rapid7 Source Code Repositories Compromised Following Codecov Incident Cybersecurity firm Rapid7 has disclosed that an unauthorized entity gained access to a limited subset of its source code repositories. This revelation follows a recent security breach linked to software auditing tool…
Phishing Campaigns Targeting Booking.com Users Raise Security Concerns Recent reports highlight a sophisticated phishing campaign aimed primarily at Windows users, as detailed by cybersecurity experts. The attackers exploit compromised accounts from hotels listed on Booking.com or similar online travel services.…
Title: Twitch Faces Security Breach as Comprehensive Data Leak Exposes Internal Systems In a significant security incident, popular livestreaming platform Twitch has confirmed a data breach that exposed its source code, internal tools, and creator payout details. The breach came…
Data Privacy, Data Security, Healthcare State Authorities Highlight Security Lapses Leading to Illuminate Education’s Late 2021 Data Breach Marianne Kolbasuk McGee (HealthInfoSec) • November 10, 2025 Illuminate Education faces a $5.1 million settlement after a cyberattack in late 2021 that…
Wakefield & Associates Reports Client Data Breach In a recent development, Wakefield & Associates has publicly disclosed a breach involving sensitive client data. The incident highlights the ongoing vulnerabilities organizations face amidst a complex cybersecurity landscape. The breach, which reportedly…
Google has announced a significant development in its security measures, revealing a substantial reduction in memory-related vulnerabilities within the Android operating system. Over the last six years, the percentage of memory-safe vulnerabilities has dramatically decreased from 76% to just 24%.…
