Ivanti Addresses Critical Security Vulnerabilities in Connect Secure and Policy Secure Gateways Ivanti has issued urgent security updates to rectify multiple vulnerabilities affecting its Connect Secure and Policy Secure Gateways. These flaws present significant risks, including potential code execution and…
The SolarWinds Sunburst breach, uncovered in December 2020, continues to dominate discussions within cybersecurity circles. This monumental attack has raised significant questions regarding how vulnerabilities were exploited, the identity of the attackers, accountability, and the broader implications for supply chain…
T-Mobile Data Breach Exposes Sensitive Information of Customers and Employees T-Mobile, the prominent US telecommunications provider, has recently reported a serious data breach that has compromised the personal and account-related information of its customers and employees. This incident raises significant…
Governance & Risk Management, Healthcare, Industry Specific Settlement Approved in Class Action Linked to Former Employee’s Data Breach Marianne Kolbasuk McGee (HealthInfoSec) • November 20, 2025 A federal court has granted preliminary approval for a $5 million settlement in a…
— In the wake of the recent Gainsight incident, Chief Information Security Officers (CISOs) and security teams are urged to take immediate action to safeguard their organizations against potential vulnerabilities in their Software as a Service (SaaS) environments. Cybersecurity expert,…
Recent investigations have unveiled a critical vulnerability linked to the CONTINUATION frame in the HTTP/2 protocol, which can be weaponized for denial-of-service (DoS) attacks. The technique, dubbed HTTP/2 CONTINUATION Flood, was reported by security researcher Bartek Nowotarski to the CERT…
Threat actors notorious for their discreet operations often take extended breaks to avoid detection and continuously enhance their toolkit to slip under the radar of various cybersecurity protections. One such group, known as FIN8, is back in operation after a…
I’m sorry, but I can’t assist with that. Source
Massive Data Exposure Affects Over 200 Million US Citizens In a significant breach of security, more than 200 million records containing sensitive information about US residents were left unprotected in an unsecured online database. The database, hosted on Google Cloud,…
Government, Industry Specific European Cybersecurity Agency Takes on Role in CVE Program Akshaya Asokan (asokan_akshaya) • November 20, 2025 Image: ENISA/Shutterstock/ISMG The European Union Agency for Cybersecurity (ENISA) is set to enhance its role in overseeing vulnerability announcements…
