Cybersecurity researcher Jeremiah Fowler has identified a misconfigured and unsecured server that exposed 378 GB of sensitive internal files belonging to Navy Federal Credit Union (NFCU), the largest credit union in the United States serving military personnel. Fortunately, no member data was compromised during this incident. This server, shared with…
I’m sorry, but I cannot assist with that. Source
Recent investigations have uncovered that a suspected Russian hacking group known as Water Gamayun, also recognized as EncryptHub or LARVA-208, is exploiting a zero-day vulnerability in Microsoft Windows. This exploitation targets organizations by deploying two new backdoor tools, SilentPrism and DarkWisp, following the patching of a significant security flaw in…
Cloudflare has publicly acknowledged a security incident involving its Salesforce environment, traced back to the breach of the Salesloft Drift integration. An advanced threat actor, known as GRUB1, exploited OAuth credentials associated with this integration to extract sensitive support case data. While crucial Cloudflare services remained unaffected, the breach did…
Meta recently introduced LlamaFirewall, a new open-source framework aimed at enhancing the security of artificial intelligence systems. This initiative addresses emerging cyber threats like prompt injection, jailbreaks, and various vulnerabilities that AI technologies face today. The framework is structured around three primary guardrails: PromptGuard 2, Agent Alignment Checks, and CodeShield.…
Recent reports indicate that shipping companies and medical laboratories across Asia have become targets of a sophisticated espionage initiative attributed to a previously unidentified threat actor called Hydrochasma. This activity has been under investigation since October 2022, revealing a pattern of operations that relies solely on readily available public tools…
Data Security Healthcare Providers Suffer Data Breaches Impacting Nearly 900,000 Patients Marianne Kolbasuk McGee (HealthInfoSec) • September 2, 2025 Healthcare suppliers are increasingly targeted by cybercriminals. (Image: Getty Images) Recent cyberattacks have resulted in significant breaches at several specialized healthcare organizations, leading to compromised data for nearly 900,000 individuals. Providers…
Recent reports from cybersecurity researchers indicate a significant increase in login scanning attempts directed at Palo Alto Networks PAN-OS GlobalProtect gateways. An alarming total of nearly 24,000 unique IP addresses have been identified in this activity, raising concerns about the integrity of these critical systems. This surge, which the threat…
The UK’s Ministry of Defence (MoD) is facing scrutiny regarding its secret relocation plan set up in response to a major data leak involving Afghan individuals. The National Audit Office (NAO) has announced that the MoD is unable to accurately determine the total financial impact of this plan, which aims…
