On September 11, a significant data breach emerged in the realm of Chinese censorship, as researchers unveiled an extensive leak of over 500GB of internal documents, source code, work logs, and communications related to the infamous Great Firewall. This leak, which includes essential operational runbooks and deployment repositories for the…
Google has issued urgent out-of-band security updates to rectify a critical vulnerability in its Chrome browser for Windows. This flaw, designated as CVE-2025-2783 (CVSS score: 8.3), has reportedly been exploited in real-world phishing attacks aimed primarily at organizations in Russia. Described as stemming from an “incorrect handle provided in unspecified…
As we navigate the evolving landscape of cyber threats, patterns from 2022 suggest heightened risks for businesses and individuals alike in 2023. More incidents of zero-knowledge attacks, credential leaks, and emerging cybercrime trends, particularly from Gen-Z, indicate a pressing need for awareness and preparedness. Cybercrime continues to pose a significant…
Endpoint Security, Hardware / Chip-level Security Eset Uncovers New Malware Variant, HybridPetya Anviksha More (AnvikshaMore) • September 12, 2025 Image: Shutterstock Security researchers at Eset have recently identified a new variant of malware reminiscent of the notorious Petya/NotPetya, which they have named “HybridPetya.” This insight was shared on Friday, emphasizing…
In early September 2023, Qrator Labs identified and successfully mitigated one of the year’s most consequential Layer 7 DDoS attacks, executed by what is currently recognized as the largest botnet in existence. This attack targeted a government organization and exploited 5.76 million compromised Internet of Things (IoT) devices, among other…
Sussex Police Reports Over 400 Data Breaches Since 2022, Compensation Claims Filed Sussex Police has revealed that they have experienced more than 400 data breaches since the beginning of 2022, resulting in financial compensation for several claims that were successfully filed by affected parties. This alarming trend raises critical questions…
Recent revelations indicate that the threat actor identified as EncryptHub has effectively taken advantage of a recently patched security vulnerability in Microsoft Windows, designated as a zero-day flaw, to deploy a range of malicious software. This includes information-stealing tools like Rhadamanthys and StealC, alongside traditional backdoor implementations, raising significant alarm…
Okta, a pivotal player in identity and access management, reported an unauthorized access event involving its source code repositories earlier this month. The incident, which was disclosed on Wednesday, raises substantial concerns about the security practices surrounding sensitive organizational code. According to an official statement, Okta reassured stakeholders that “there…
Agentic AI, Artificial Intelligence & Machine Learning, Identity & Access Management Durand: Agentic Models Demand Enhanced Verification and Advanced Access Controls Michael Novinson (MichaelNovinson) • September 12, 2025 Andre Durand, founder and CEO of Ping Identity (Image: Ping Identity) The increasing weaponization of trust by malicious actors is compelling businesses…
