In early September 2023, Qrator Labs identified and successfully mitigated one of the year’s most consequential Layer 7 DDoS attacks, executed by what is currently recognized as the largest botnet in existence. This attack targeted a government organization and exploited 5.76 million compromised Internet of Things (IoT) devices, among other…
Sussex Police Reports Over 400 Data Breaches Since 2022, Compensation Claims Filed Sussex Police has revealed that they have experienced more than 400 data breaches since the beginning of 2022, resulting in financial compensation for several claims that were successfully filed by affected parties. This alarming trend raises critical questions…
Recent revelations indicate that the threat actor identified as EncryptHub has effectively taken advantage of a recently patched security vulnerability in Microsoft Windows, designated as a zero-day flaw, to deploy a range of malicious software. This includes information-stealing tools like Rhadamanthys and StealC, alongside traditional backdoor implementations, raising significant alarm…
Okta, a pivotal player in identity and access management, reported an unauthorized access event involving its source code repositories earlier this month. The incident, which was disclosed on Wednesday, raises substantial concerns about the security practices surrounding sensitive organizational code. According to an official statement, Okta reassured stakeholders that “there…
Agentic AI, Artificial Intelligence & Machine Learning, Identity & Access Management Durand: Agentic Models Demand Enhanced Verification and Advanced Access Controls Michael Novinson (MichaelNovinson) • September 12, 2025 Andre Durand, founder and CEO of Ping Identity (Image: Ping Identity) The increasing weaponization of trust by malicious actors is compelling businesses…
A recent investigation has uncovered alarming findings regarding a dataset utilized for training large language models (LLMs). This dataset reportedly contains close to 12,000 live secrets, including credentials capable of authenticating access to various services. This discovery raises significant concerns about the risks associated with hard-coded credentials. Organizations face heightened…
Recent developments have emerged regarding the Salesloft Drift breach, which has impacted over 700 organizations across the globe. New victims have come forward, adding to the severity of the incident. On August 20, Salesloft and Salesforce announced they had severed ties between Drift, an AI-powered chatbot for sales and marketing,…
NetApp SnapCenter has revealed a significant security vulnerability that poses a considerable risk of privilege escalation if exploited. SnapCenter is an enterprise-grade solution employed for the management of data protection across various applications, databases, virtual machines, and file systems. It provides functionalities for backing up, restoring, and cloning data resources,…
Cybercrime, Fraud Management & Cybercrime Vastaamo Hacker Aleksanteri Kivimäki Released While Awaiting Appeal Akshaya Asokan (asokan_akshaya) • September 12, 2025 Aleksanteri Kivimäki in a Finnish courtroom on February 28, 2023 A Helsinki court has ordered the release of one of Finland’s most infamous hackers, Aleksanteri Tomminpoika Kivimäki, pending the outcome…
