In a significant security update, Google has patched a critical vulnerability in its Cloud Platform (GCP) Composer service. This flaw, identified by Tenable Research and labeled as CloudImposer, had the potential for attackers to execute remote code on GCP servers. Exploitation routes included a supply chain attack method termed dependency…
A sophisticated threat actor has been exploiting an evasive Windows rootkit to infiltrate high-profile organizations in Asia and Africa, with activity detected since at least 2018. This malware, dubbed ‘Moriya’, operates as a passive backdoor, allowing attackers to monitor incoming traffic on infected systems and selectively respond to packets intended…
DHS Deletes Compromised Chicago Police Data Amid Oversight Failures On November 21, 2023, field intelligence officers from the Department of Homeland Security (DHS) deleted a significant volume of records from the Chicago Police Department (CPD), but this deletion was far from routine. The data in question, which concerned about 900…
The cybercrime group known as ShinyHunters has made headlines for its ongoing campaign of data breaches and is now reported to be actively exploiting vulnerabilities in companies’ GitHub repositories. This analysis highlights the group’s strategies for conducting broader and more sophisticated cyberattacks. According to a report from Intel 471 shared…
Artificial Intelligence & Machine Learning, Healthcare, Industry Specific Guidance Documents Highlight 5 Key Risk Areas and Best Practices for AI in Healthcare Marianne Kolbasuk McGee (HealthInfoSec) • November 12, 2025 The Health Sector Coordinating Council has previewed upcoming materials aimed at helping the healthcare sector address the cyber risks associated…
On November 7, a hacker on a forum began offering what they claimed to be 353 GB of data from Doctor Alliance, a Texas-based vendor specializing in services for healthcare providers. The seller indicated the package consists of 1,240,640 files, cautioning potential buyers that “all your data will be sold”…
Critical Vulnerabilities Discovered in VMware vCenter Server: A Call to Action for Businesses On Tuesday, Broadcom issued urgent updates in response to a significant security vulnerability affecting VMware vCenter Server that could potentially allow remote code execution. This vulnerability, designated CVE-2024-38812 and rated with a CVSS score of 9.8, is…
A recent advisory from U.S. and U.K. intelligence agencies reveals that cyber operatives linked to the Russian Foreign Intelligence Service (SVR) have adapted their operational tactics in light of prior public revelations regarding their attack methodologies. This shift aims to circumvent detection and mitigation efforts from cybersecurity defenders. The National…
Wiz, a cloud security organization, has disclosed a recently patched vulnerability in Microsoft’s Azure Cosmos database that posed a significant risk by allowing unauthorized users to gain full administrative access to the database instances of other customers. This vulnerability, named “ChaosDB,” was particularly alarming due to its potential for exploitation…
