Blockchain & Cryptocurrency, Cryptocurrency Fraud, Fraud Management & Cybercrime Also: LastPass Issues Phishing Warning, Trump Appoints New CFTC Head Rashmi Ramesh ( rashmiramesh_) • October 30, 2025 Image: Shutterstock Every week, Information Security Media Group compiles recent incidents in the…
Reputation.com has left a staggering 320GB of logs exposed online, encompassing approximately 120 million records. This significant breach includes sensitive information such as cookies, timestamps, and unique identifiers, which pose a severe risk to account security for numerous high-profile brands.…
Microsoft Uncovers Chinese Botnet Targeting Organizations with Evasive Password Spray Attacks Microsoft has reported the activity of a Chinese threat actor known as Storm-0940, which is employing a sophisticated botnet identified as Quad7. This botnet has been linked to a…
In a concerning development for cybersecurity, a series of spear-phishing attacks have emerged, utilizing weaponized Microsoft Word documents themed around Windows 11 Alpha. Researchers from the cybersecurity firm Anomali reported the campaigns involved Visual Basic macros designed to deploy malicious…
Ribbon Communications, a prominent American telecommunications company responsible for facilitating major phone and data networks globally, has disclosed a significant security breach. The firm has confirmed that nation-state hackers, believed to have affiliations with an unnamed foreign government, infiltrated its…
Medibank Suffers Major Data Breach Following Ransomware Attack In a significant cybersecurity incident, Australian health insurance provider Medibank has reported unauthorized access to the personal information of all its customers, following a recent ransomware attack. This breach highlights vulnerabilities within…
Governance & Risk Management, Healthcare, Industry Specific Agency Warns Vertikal Systems Vulnerabilities Could Help Hackers Access Data Marianne Kolbasuk McGee (HealthInfoSec) • October 29, 2025 CISA has issued warnings regarding vulnerabilities in Vertikal Systems’ hospital management software that may expose…
Businesses concerned about cybersecurity may already be familiar with Have I Been Pwned, a site dedicated to notifying users about data breaches. Recently, Proton, the company behind ProtonMail, launched its own data breach alert service named the Data Breach Observatory.…
Recent cybersecurity research has identified a significant campaign, known as EMERALDWHALE, which exploits exposed Git configurations to extract credentials, clone private repositories, and even obtain cloud service credentials embedded in source code. This operation has reportedly compromised over 10,000 private…
Microsoft has recently issued a warning regarding an actively exploited zero-day vulnerability affecting Internet Explorer. This flaw is being utilized to compromise Windows systems by means of malicious Microsoft Office documents. Identified as CVE-2021-40444 with a CVSS score of 8.8,…
