VMware Urges Immediate Action Over Critical EAP Vulnerabilities VMware has issued an urgent advisory urging users to remove the deprecated Enhanced Authentication Plugin (EAP) due to the emergence of a severe security vulnerability. Classified as CVE-2024-22245, this flaw has been…
Recent cybersecurity research has uncovered intriguing potential connections between the notorious SolarWinds hack and a previously identified malware strain called Kazuar. Kaspersky’s latest analysis highlights overlapping features that suggest a link between the two malicious software architectures. The SolarWinds incident,…
Binance Suffers Major Bitcoin Theft in Significant Security Breach Binance, one of the largest cryptocurrency exchanges globally, has confirmed a substantial loss of nearly $41 million worth of Bitcoin following a significant security breach. This incident marks one of the…
Critical Infrastructure Security Federal Funding Reductions Compromise Grid Security Amid Increasing Nation-State Attacks, Experts Warn Chris Riotta (@chrisriotta) • December 3, 2025 Image: Jhon Eliass/Shutterstock Utility leaders and cybersecurity experts recently cautioned members of Congress that U.S. federal investments in…
Coupang logo at the company’s office in Songpa District, southern Seoul, on Dec. 1. [NEWS1] Recently, a Coupang user reported unauthorized transactions amounting to 3 million won (approximately $2,040) on his credit card that was linked to his account with…
Microsoft has announced the launch of an open-access automation framework known as PyRIT, which stands for Python Risk Identification Tool. This framework aims to proactively identify risks associated with generative artificial intelligence (AI) systems. According to Ram Shankar Siva Kumar,…
As investigations into the SolarWinds supply-chain breach progress, cybersecurity experts have unveiled a third malware variant, identified as “Sunspot.” This new threat targets the build environment, facilitating the injection of a backdoor into SolarWinds’ Orion network monitoring software. This marks…
Critical Vulnerability Discovered in React Framework: Immediate Action Required A significant security vulnerability has been identified in various versions of the React framework, prompting urgent calls for patching from researchers. This vulnerability, categorized as CVE-2025-55182, has been described by experts…
The U.S. Department of Justice has brought charges against a Chinese hacker and an accomplice for their alleged involvement in the notorious 2015 data breach at Anthem, one of the largest health insurance companies in the nation, as well as…
Endpoint Security, Governance & Risk Management, Internet of Things Security Mirion Medical Resolves Bugs in Latest BioDose/NMIS Software Update Marianne Kolbasuk McGee (HealthInfoSec) • December 3, 2025 The Cybersecurity and Infrastructure Security Agency has flagged several vulnerabilities in the BioDose/NMIS…
