A recent analysis by CloudSEK’s XVigil platform has revealed a significant cyberattack on Oracle Cloud, which has resulted in the unauthorized access and exfiltration of approximately six million records, potentially compromising over 140,000 tenants. The perpetrator, known as ‘rose87168,’ is reportedly selling this sensitive data—including JKS files, encrypted single sign-on…
Cloud Security, Data Breach Notification, Data Security Security Researcher Discovers Unsecured Database Exposing 1,864 GB of OrthoMinds Data Marianne Kolbasuk McGee (HealthInfoSec) • March 21, 2025 Image: OrthoMinds A cloud-based orthodontic practice management vendor, OrthoMinds, is in the process of notifying patients regarding a data exposure incident that lasted for…
Recent investigations reveal that cryptocurrency exchange Coinbase was a primary target in a sophisticated cascading supply chain attack utilizing GitHub Actions, which resulted in the compromise of sensitive information across numerous repositories. This incident highlights the vulnerabilities inherent in software development practices and the need for rigorous security measures. According…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Geo Focus: Asia UAT-5918 Breaches Critical Infrastructure in Taiwan Through N-Day Vulnerabilities for Cyberespionage Anviksha More ( AnvikshaMore) • March 21, 2025 Image: Shutterstock Researchers have reported a significant cyberespionage operation targeting Taiwan’s critical infrastructure, attributed to hackers affiliated with Chinese cyber…
On March 20, 2025, Lafayette Federal Credit Union (LFCU) reported a data breach to the Attorney General of California, revealing that an unauthorized individual accessed an employee’s email account. This incident compromised sensitive consumer information, prompting LFCU to notify affected individuals through data breach notification letters after concluding their investigation.…
Agentic AI, Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Investment from NightDragon and HSBC to Propel Dataminr’s Global Expansion and Product Development Michael Novinson (MichaelNovinson) • March 21, 2025 Image: Shutterstock Dataminr, known for its information and event discovery platform, has successfully secured $85 million in a…
Securing the Human Layer: A Critical Imperative in Cybersecurity Recent findings from Verizon’s 2024 Data Breach Investigations Report have highlighted a pressing issue within cybersecurity: human error remains a major catalyst in data breaches, underscoring the necessity to secure the human layer in organizational defenses. The report reveals that human…
In a significant development within the technology investment landscape, Kubient, a digital advertising technology company, has found itself embroiled in a legal controversy stemming from its initial public offering (IPO) in August 2020. Reports have surfaced detailing the claims made in Kubient’s IPO prospectus that suggested ad fraud cost the…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Formation of Open Power AI Consortium with Major Tech Players Rashmi Ramesh (rashmiramesh_) • March 21, 2025 Image: Shutterstock In a significant development, several prominent technology and utility companies announced the formation of an alliance aimed at leveraging artificial intelligence…
