Governance & Risk Management, Remote Workforce Research Highlights Surge in Cyber Attacks During Pandemic Greg Sirico • January 5, 2026 Image: Summit Art Creations/Shutterstock The COVID-19 pandemic served as a critical test of the resilience of secure networking practices, particularly as businesses rapidly transitioned to remote work environments. The swift…
The hacking group known as Crimson Collective has reportedly gained access to the personal information of over one million residential customers from the U.S. fiber broadband provider Brightspeed. This claim was made in a post on January 4 via Telegram, where the group referenced a previous breach involving Red Hat…
Recent disclosures have revealed a significant security vulnerability affecting the libcue library, which supports GNOME Linux systems. This flaw, tracked as CVE-2023-43641, has been assigned a high CVSS score of 8.8, indicating its potential severity. The vulnerability stems from memory corruption associated with the libcue library, specifically affecting versions 2.2.1…
Recent developments reveal a significant cyber breach affecting ASUS customers, attributed to a sophisticated supply chain attack. Kaspersky, a Russian cybersecurity company, disclosed parts of this incident last week, though it withheld the complete list of hardcoded MAC addresses embedded in the malicious code targeting specific users. In lieu of…
In a significant development within the realm of cybersecurity, it has been reported that LeakedSource, a breach notification service infamous for aggregating and disclosing vast amounts of compromised user data, has gone offline following an alleged law enforcement raid. This site, which came into prominence in late 2015, has been…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Insurer’s Breach Likely to Be the Largest Reported Health Data Breach in 2025 Marianne Kolbasuk McGee (HealthInfoSec) • January 2, 2026 Aflac is notifying 22.65 million individuals that their sensitive data may have been stolen in a June 2025 hacking incident.…
Data Breach Exposes Ledger Customers’ Information Ledger, a prominent provider of cryptocurrency hardware wallets, has confirmed that customer names and contact details were compromised following a data breach involving one of its payment processing partners. This incident marks yet another challenge for Ledger, which has faced multiple breaches in the…
In a concerning escalation of cybersecurity threats, Amazon Web Services (AWS), Cloudflare, and Google reported significant progress in defending against unprecedented distributed denial-of-service (DDoS) attacks that utilize a new exploit known as HTTP/2 Rapid Reset. This emerging vulnerability has raised alarms due to its ability to launch large-scale attacks efficiently.…
A recently disclosed spyware framework, identified as TajMahal, has emerged as a significant threat in the cybersecurity landscape, having reportedly operated undetected for over five years. Cybersecurity researchers from Kaspersky Lab announced the discovery, revealing that this advanced persistent threat (APT) toolkit is characterized by its modular architecture and an…
