A significant cybersecurity breach has been reported involving the Federal Emergency Management Agency (FEMA), where a hacker accessed its computer networks for several months earlier this year, subsequently stealing sensitive information pertaining to FEMA and U.S. Customs and Border Protection (CBP) employees. This incident highlights the vulnerabilities of critical government…
Critical Security Flaw Discovered in Veeam Backup Software Veeam has issued essential patches to rectify a critical vulnerability in its Backup software, which poses significant risks by allowing malicious actors to execute arbitrary code on compromised systems. This vulnerability, identified as CVE-2025-23114, has been rated with a high CVSS score…
Ukraine’s Computer Emergency Response Team (CERT-UA) has raised alarms regarding a wave of phishing attacks utilizing a potent information-stealing malware named Jester Stealer. This malware is deployed through a mass email campaign designed to compromise systems of unsuspecting users. The phishing emails, which carry the subject line “chemical attack,” contain…
Critical Infrastructure Security, Governance & Risk Management, Operational Technology (OT) Global Cybersecurity Agencies Urge Comprehensive OT Inventories to Mitigate Threats Chris Riotta (@chrisriotta) • September 29, 2025 Image: Shutterstock In a proactive measure, global cybersecurity agencies are advising critical infrastructure operators to take stock of their operational technology environments. While…
Concerns Emerge Over Privacy Risks Linked to Tile Trackers Tile trackers, employed by over 88 million users globally to locate items such as keys and pets, are facing scrutiny following revelations by researchers from the Georgia Institute of Technology. According to a study, design vulnerabilities within Tile’s tracking technology may…
In a significant move, the U.S. Securities and Exchange Commission (SEC) has filed charges against four companies—Avaya, Check Point, Mimecast, and Unisys—for failing to provide accurate disclosures about a cyberattack that originated from the SolarWinds breach in 2020. This extensive cyber incident raised alarms across the technology sector and has…
CLICK HERE TO SUBMIT YOUR CONTACT INFORMATION In a significant cybersecurity incident, Sturgis Hospital in Sturgis, Michigan, confirmed that it has suffered two separate data breaches affecting patients and former patients. News of these breaches comes as the firm Wolf Haldenstein Adler Freeman & Herz LLP launches an investigation into…
Cisco Addresses Critical Vulnerabilities in Identity Services Engine Cisco has announced crucial updates to its Identity Services Engine (ISE) software to remedy two significant security vulnerabilities that could empower remote attackers to execute arbitrary commands and gain elevated privileges on targeted devices. These vulnerabilities, if exploited, pose substantial risks to…
The U.S. Department of Transportation’s Pipeline and Hazardous Materials Safety Administration (PHMSA) has issued a proposed civil penalty nearing $1 million against Colonial Pipeline due to violations of federal safety regulations. This action follows the extensive repercussions of a ransomware attack featured last year that severely disrupted the company’s operations.…
