Recent revelations indicate that the threat actor identified as EncryptHub has effectively taken advantage of a recently patched security vulnerability in Microsoft Windows, designated as a zero-day flaw, to deploy a range of malicious software. This includes information-stealing tools like Rhadamanthys and StealC, alongside traditional backdoor implementations, raising significant alarm…
Okta, a pivotal player in identity and access management, reported an unauthorized access event involving its source code repositories earlier this month. The incident, which was disclosed on Wednesday, raises substantial concerns about the security practices surrounding sensitive organizational code. According to an official statement, Okta reassured stakeholders that “there…
Agentic AI, Artificial Intelligence & Machine Learning, Identity & Access Management Durand: Agentic Models Demand Enhanced Verification and Advanced Access Controls Michael Novinson (MichaelNovinson) • September 12, 2025 Andre Durand, founder and CEO of Ping Identity (Image: Ping Identity) The increasing weaponization of trust by malicious actors is compelling businesses…
A recent investigation has uncovered alarming findings regarding a dataset utilized for training large language models (LLMs). This dataset reportedly contains close to 12,000 live secrets, including credentials capable of authenticating access to various services. This discovery raises significant concerns about the risks associated with hard-coded credentials. Organizations face heightened…
Recent developments have emerged regarding the Salesloft Drift breach, which has impacted over 700 organizations across the globe. New victims have come forward, adding to the severity of the incident. On August 20, Salesloft and Salesforce announced they had severed ties between Drift, an AI-powered chatbot for sales and marketing,…
NetApp SnapCenter has revealed a significant security vulnerability that poses a considerable risk of privilege escalation if exploited. SnapCenter is an enterprise-grade solution employed for the management of data protection across various applications, databases, virtual machines, and file systems. It provides functionalities for backing up, restoring, and cloning data resources,…
Cybercrime, Fraud Management & Cybercrime Vastaamo Hacker Aleksanteri Kivimäki Released While Awaiting Appeal Akshaya Asokan (asokan_akshaya) • September 12, 2025 Aleksanteri Kivimäki in a Finnish courtroom on February 28, 2023 A Helsinki court has ordered the release of one of Finland’s most infamous hackers, Aleksanteri Tomminpoika Kivimäki, pending the outcome…
In 2024, a total of 5,414 ransomware attacks occurred worldwide, representing an 11% increase compared to 2023. Following a gradual start, ransomware incidents surged in the second quarter and peaked in the fourth, accounting for 1,827 incidents—approximately 33% of the total for the year. Notably, law enforcement actions against prominent…
Fairmont Federal Credit Union Faces Data Breach Investigation by Edelson Lechtzin LLP FAIRMONT, W.Va., September 12, 2025 — Edelson Lechtzin LLP, a prominent national class-action law firm based in suburban Philadelphia, is currently investigating reported data privacy violations stemming from a breach at Fairmont Federal Credit Union (FFCU). The credit…
