Recently, Cisco and VMware disclosed critical security vulnerabilities in their software that could potentially be exploited by adversaries, leading to unauthorized code execution on targeted systems. At the forefront of these vulnerabilities is a critical command injection flaw identified in Cisco Industrial Network Director, tracked as CVE-2023-20036, which has an…
In a concerning incident on Tuesday morning, three armed men attempted to rob a cryptocurrency exchange in Ottawa, Canada. Entering the premises with handguns, the suspects restrained four employees and demanded a significant outbound transaction from the exchange. In a moment of violence, one employee was struck in the head…
Data Breach at Orange: 1.3 Million Customers Affected In a significant cybersecurity incident, French telecommunications giant Orange has reported a second major data breach within a span of just three months. This latest attack has resulted in the theft of personal information belonging to 1.3 million customers from its online…
As the mid-February compliance deadline looms for new regulations aimed at aligning federal laws governing the confidentiality of substance use disorder records with HIPAA, treatment facilities supported by federal funding are facing crucial uncertainties. Legal expert Aleksandra Vold, a partner at the law firm BakerHostetler, emphasized that several significant questions…
Cybercriminals Exploit Psychological Triggers to Compromise Security In an unsettling development within the cybersecurity landscape, recent reports reveal how hackers are leveraging psychological manipulation to infiltrate systems and access sensitive data. Specifically, these cybercriminals frequently utilize three core psychological triggers that prompt individuals into swift, often ill-considered actions. This strategy…
On Friday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) expanded its Known Exploited Vulnerabilities (KEV) catalog by adding three security flaws, highlighting the urgent need for businesses to address vulnerabilities currently being exploited in the wild. The newly identified vulnerabilities include CVE-2023-28432, a significant information disclosure issue affecting MinIO,…
Recent developments have unveiled a serious cyber threat affecting various operating systems, including Windows, macOS, Solaris, and Linux. The emergence of a new genre of ‘undetectable’ spying malware underscores the evolving nature of cybercrime, raising concerns for users across these platforms. Last week, an investigative report by EFF and Lookout…
In January 2026, a construction firm in the UK uncovered a notorious digital intruder on its Windows Server, identified by security experts from the eSentire Threat Response Unit (TRU) as Prometei, a Russian-affiliated botnet that has been operational since 2016. While Prometei primarily focuses on mining Monero cryptocurrency, TRU’s investigation…
Bitly, a leading URL shortening service, is currently grappling with a significant data breach that puts user account credentials at risk. In a blog post released yesterday, the company alerted its users that their account details may have been compromised in an incident involving potential unauthorized access to sensitive information.…