In a disturbing revelation for the cybersecurity community, Microsoft faced a significant data breach approximately four and a half years ago, specifically in 2013. Despite the attack involving a highly sophisticated hacking group, the incident remained undisclosed until now. This breach highlights the ongoing struggles corporations face in maintaining data…
Governance & Risk Management , Operational Technology (OT) Presented by Claroty 60 mins Healthcare organizations are increasingly grappling with a cybersecurity crisis that poses severe threats to operational resilience, financial stability, and patient safety. This crisis has transitioned from a theoretical concern to a pressing reality, revealing vulnerabilities within the…
South Korean e-commerce leader Coupang has reported that all customer data involved in a recent breach has been erased by the individual responsible. According to an official statement from Coupang, a former employee accessed and downloaded personal information belonging to approximately 3,000 of its 33 million users. The company confirmed…
A recent phishing campaign has surfaced, utilizing a Russian-language Microsoft Word document as a vehicle for deploying malware designed to extract sensitive data from compromised Windows systems. This attack has been linked to a threat actor known as Konni, which exhibits connections to the North Korean cyber espionage group identified…
In a significant development in cybersecurity, a new variant of the notorious Mirai botnet—dubbed “Mukashi”—is actively exploiting a newly discovered critical vulnerability affecting network-attached storage (NAS) devices. This attack aims to remotely compromise and commandeer vulnerable machines, reflecting an escalation in tactics employed by cybercriminals. Mukashi employs brute-force techniques, systematically…
A serious vulnerability has been uncovered in Oracle’s enterprise identity management system, posing risks of severe exploitation by remote, unauthenticated attackers. This flaw, identified as CVE-2017-10151, has been given the highest possible CVSS score of 10, indicating it is both critical and easily exploitable without the need for any user…
Governance & Risk Management Presented by ISMG 60 The cybercrime landscape is projected to escalate into a $10.5 trillion industry by 2025, with an annual growth rate of about 15%. Once primarily a concern for large enterprises, mid-sized businesses are increasingly being targeted. Reportedly, nearly half of all cyberattacks are…
Coupang data breach: Culprit identified, all customers’ leaked data deleted In a significant security incident, Coupang, a leading South Korean e-commerce platform, has encountered a severe data breach that has compromised the personal information of over 33 million customers. On December 25, 2025, the company announced that it had successfully…
Recent advisories from the maintainers of ownCloud have revealed three critical vulnerabilities within their open-source file-sharing software that could lead to unauthorized access, data modification, and exposure of sensitive information. These vulnerabilities pose significant risks to users and require immediate attention. The first flaw, identified as CVE-2023-49103, boasts a CVSS…
