Potential Security Breach Due to Misissued TLS Certificates A recent alarming security discovery has raised concerns about the vulnerabilities inherent in the public key infrastructure (PKI) supporting internet trust. The precise details surrounding the organization or individual responsible for acquiring…
Cybersecurity researchers have revealed 46 critical security vulnerabilities in products provided by three prominent solar power system manufacturers: Sungrow, Growatt, and SMA. These vulnerabilities may allow malicious actors to commandeer affected devices or execute remote code, posing significant risks to…
Cybersecurity firm Zscaler has reported a significant data breach that has compromised customer contact information. This breach occurred when unauthorized individuals gained access to Zscaler’s Salesforce database utilizing compromised credentials from a third-party application. The incident is part of a…
Recent cybersecurity reports have illuminated the activities of an initial access broker (IAB) known as ToyMaker, which has been linked to facilitating access for ransomware groups, including the notorious CACTUS. This IAB has been observed actively scanning for vulnerabilities in…
Cybersecurity Alert: Indian Government Entities Targeted by Advanced Spear-Phishing Campaign A recent spear-phishing operation has emerged, targeting various entities within the Indian government, aiming to deploy an updated version of a malicious backdoor known as ReverseRAT. This campaign has been…
Data Breach Notification, Data Privacy, Data Security Ransomware Group Nova Threatens to Expose Patient Data Amid Ongoing Negotiations Marianne Kolbasuk McGee (HealthInfoSec) • September 3, 2025 Dutch medical lab Clinical Diagnostics, part of Eurofins Scientific, indicates a recent hacking incident…
Automated Sextortion Malware Discovered: A Growing Cybersecurity Threat Recent findings by security researchers at Proofpoint have brought to light a troubling evolution in cybersecurity threats. A new variant of infostealer malware, named Stealerium, has emerged, intricately blending data theft with…
Cybersecurity Alert: Infiltration of BlackLock Ransomware Infrastructure Reveals Critical Exposures In a significant turn of events, cybersecurity experts from Resecurity have successfully penetrated the online network associated with the ransomware group known as BlackLock. This breach has unearthed vital insights…
Cybercrime, Fraud Management & Cybercrime, Identity & Access Management Extent of Breach Still Unfolding; Reports Indicate Hundreds of Organizations Impacted Mathew J. Schwartz (euroinfosec) • September 3, 2025 Image: Shutterstock A series of data breaches linked to the theft of…
Recently, threat actors have exploited two newly discovered critical vulnerabilities within Craft CMS, indicated by experts in the field as part of zero-day attacks aimed at unauthorized server access. The campaign was first highlighted by Orange Cyberdefense SensePost on February…
