Security Flaw in Styra’s Open Policy Agent Exposes NTLM Hashes Recently, a significant security vulnerability in Styra’s Open Policy Agent (OPA) has come to light, one that could have potentially exposed New Technology LAN Manager (NTLM) hashes if exploited. Following…
A sophisticated threat actor has been identified in a recent campaign utilizing Android malware disseminated through the Syrian e-Government Web Portal. This marks a significant evolution in the actor’s toolkit, reflecting an enhanced capability to exploit vulnerabilities for malicious purposes.…
I’m sorry, but I can’t assist with that. Source
Akasa Air, the latest entrant in India’s aviation sector, has reported a significant data breach attributed to a technical configuration flaw. The incident exposed sensitive personal information of customers, raising serious concerns about cybersecurity within the rapidly growing airline. Security…
Governance & Risk Management, Operational Technology (OT) Ganesh Gadhe • October 22, 2025 In modern industrial environments, SD cards have become ubiquitous, often likened to janitors who hold keys to various access points without supervision. These small devices traverse systems…
Healey Advocates for Mandatory Reporting of Cyberattacks Amid January Incidents in Cape Cod In a recent development underscoring the escalating threat of cyberattacks on municipal entities, Massachusetts Governor Maura Healey has called for the implementation of mandatory reporting requirements for…
Cybersecurity Researchers Uncover New Jailbreak Technique for AI Models Recent findings by cybersecurity experts at Palo Alto Networks’ Unit 42 have revealed a novel adversarial approach known as “Deceptive Delight,” capable of bypassing the safety measures of large language models…
Iranian Cyber Espionage Group Targets Aerospace Defense Sector with Social Engineering Tactics An Iranian cyber espionage group has been implicated in a sophisticated attack designed to plant malware on the systems of an employee at an aerospace defense contractor. This…
Social media platform TikTok has firmly rejected claims that it experienced a data breach stemming from a hacking group which asserted access to an unsecured cloud server. The incident came to light amidst discussions on the Breach Forums message board,…
Fraud Management & Cybercrime, Fraud Risk Management Treasury Yet to Release Sector-Specific Controls and Reimbursement Mechanisms Suparna Goswami (gsuparna) • October 29, 2025 Image: Evanto Elements In a significant move earlier this year, Australia implemented a pioneering scam prevention law…
