January Highlights Data Privacy Awareness Month: A Call to Action for Employers As January ushers in Data Privacy Awareness Month, businesses are prompted to closely evaluate their protocols surrounding the collection, usage, storage, and protection of employee personal information. While discussions about data privacy predominantly center on consumer data, it…
A newly identified security vulnerability in the GNU C library has come to light, referred to as Looney Tunables. This flaw exists within the ld.so dynamic loader, and if exploited, could result in local privilege escalation, thereby providing malicious actors the ability to obtain root access. The vulnerability is cataloged…
Tech-savvy business owners should be vigilant in light of a new threat identified in the cybersecurity landscape—malware targeting Mac users, known as CookieMiner, which pilfers web browser cookies and credentials from cryptocurrency exchange accounts. This sophisticated malware, discovered by the Palo Alto Networks security research team, is specifically engineered to…
A cybersecurity breach has exposed the private files of approximately 50 significant corporations worldwide, including notable names such as Pickett, Sekisui House, IFLUSAC, Iberia Airlines, K3G Solutions, CRRC MA, GreenBills, and CiberC. This alarming information comes from a recent investigation conducted by the Israeli cybersecurity firm Hudson Rock for its…
Massive Data Breach Compromises 3.2 Million Debit Card Details in India In a significant cybersecurity incident, approximately 3.2 million debit card details have been reportedly stolen from a range of financial institutions in India. This breach has affected major banks, including the State Bank of India (SBI), HDFC Bank, Yes…
Cryptocurrency Fraud, Cybercrime, Fraud Management & Cybercrime Treasury Submissions Advocate for Comprehensive Coverage; Exemptions May Undermine Safeguards Suparna Goswami (gsuparna) • January 7, 2026 Image: Shutterstock The Australian government’s proposed Scams Prevention Framework has come under scrutiny for its decision to exclude critical entities that facilitate scams, raising concerns about…
Targeted Phishing Campaign Hits Ledger Users Following Global-e Breach A new phishing campaign is currently targeting users of Ledger, the leading hardware wallet provider, following a significant data breach at Global-e, a third-party e-commerce company associated with Ledger. The attack appears to have exploited sensitive order data that was leaked,…
Atlassian has announced critical updates to address a severe zero-day vulnerability impacting publicly available Confluence Data Center and Server instances. The flaw, identified as CVE-2023-22515, poses a significant security risk as it can be exploited remotely by attackers to create unauthorized administrator accounts, consequently allowing access to Confluence servers. This…
In a significant cybersecurity case, a 20-year-old college student has pleaded guilty to stealing over $5 million in cryptocurrency through the illicit practice known as SIM swapping. Joel Ortiz, arrested last year, exploited this technique to target approximately 40 victims, resulting in a guilty plea that could lead to a…
