On Thursday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of a medium-severity security vulnerability in Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog. This decision follows reports indicating that the flaw is actively being exploited in real-world scenarios. The vulnerability, identified as CVE-2025-24054, received a…
In June 2022, the advanced persistent threat (APT) group known as Tonto Team attempted to breach the cybersecurity firm Group-IB, although the attack was thwarted. Based in Singapore, Group-IB reported that it successfully detected and blocked a wave of phishing emails aimed at its employees, marking the second attempt on…
Access Management, Artificial Intelligence & Machine Learning, Identity & Access Management Series E Funding at $2B Valuation Drives Fraud Defense and Identity Technology Expansion Michael Novinson ( @MichaelNovinson) • September 5, 2025 Image: Shutterstock ID.me, a digital identity provider founded by a former U.S. Army platoon leader, has secured $340…
Bridgestone has confirmed that a cyberattack has disrupted operations at some of its manufacturing facilities. This article examines the implications for employees, includes expert insights, and highlights the suspected hacking group, Scattered Lapsus$ Hunters. Bridgestone, the leading tire manufacturer globally by output, has launched an investigation into a cyberattack affecting…
Wealthsimple Reports Security Breach Affecting Customers’ Personal Information Wealthsimple, a prominent FinTech company, has disclosed a security incident that compromised the personal information of certain customers following a breach on August 30. The firm has confirmed that significantly fewer than one percent of its 3 million clients were affected, which…
ASUS has revealed a significant security vulnerability affecting its routers with AiCloud functionality, exposing them to potential remote attacks that can lead to unauthorized execution of commands. This issue, designated as CVE-2025-2492, has attained a critical CVSS score of 9.2 out of 10, indicating a severe level of risk for…
Cloudflare Discovers Record-Breaking DDoS Attack In a significant cybersecurity breach, Cloudflare announced on Monday that it successfully mitigated a massive distributed denial-of-service (DDoS) attack, which reached an unprecedented peak of over 71 million requests per second (RPS). This attack, labeled a “hyper-volumetric” DDoS assault, eclipses the previous record of 46…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development, The Future of AI & Cybersecurity HexStrike-AI Integrates LLMs with Over 150 Security Tools Rashmi Ramesh (rashmiramesh_) • September 5, 2025 Image: Shutterstock In a troubling development, hackers have swiftly adopted an open-source offensive security framework to exploit vulnerabilities in…
Recent reports indicate that the Medusa ransomware-as-a-service (RaaS) group is employing a malicious driver named ABYSSWORKER in a sophisticated attack utilizing a bring your own vulnerable driver (BYOVD) strategy aimed at sabotaging anti-malware systems. According to Elastic Security Labs, a recent incident involving Medusa ransomware utilized a loader that had…
