The Cybersecurity and Infrastructure Security Agency (CISA) in the United States has issued an alert regarding a sophisticated malware campaign attributed to North Korean hackers targeting government contracting firms. This new threat, identified as “BLINDINGCAN,” utilizes an advanced remote access Trojan designed to create a backdoor into compromised systems. The…
US Customs and Border Protection Enhances Surveillance with Portable Drones Recent federal contracting documents have revealed that the US Customs and Border Protection (CBP) is intensifying its surveillance strategy by adopting portable drones. This shift aims to establish a decentralized monitoring system capable of real-time tracking, raising concerns among critics…
Timehop Faces Major Data Breach: User Information Compromised In a significant data breach, Timehop, the social media app that curates users’ past posts and photos, has reported a security incident impacting over 21 million users. The breach occurred on July 4th, during which unauthorized individuals gained access to sensitive user…
Data Privacy, Data Security, HIPAA/HITECH Increased Push as HHS Intensifies Oversight of Data Sharing and Record Access Regulations Marianne Kolbasuk McGee (HealthInfoSec) • December 17, 2025 Sen. Ron Wyden is advocating for greater privacy controls for patients regarding their health information. (Image: Getty Images) Senator Ron Wyden of Oregon is…
Cybersecurity Breach at the University of Sydney Exposes Personal Data In a significant cybersecurity incident, the University of Sydney has confirmed an unauthorized breach of its online IT code library, which has the potential to impact personal data previously held within the system. Last week, university officials reported discovering suspicious…
A recent security report reveals that information-stealing malware is exploiting a previously undocumented Google OAuth endpoint known as MultiLogin. This vulnerability allows cybercriminals to hijack user sessions, granting them continuous access to Google services even after victims have conducted password resets. This revelation has raised significant concerns regarding user privacy…
A recently uncovered vulnerability in Google Drive presents a significant risk, potentially allowing cybercriminals to distribute malware disguised as legitimate files. This largely unaddressed security oversight enables attackers to leverage Google Drive’s file version management feature, resulting in higher success rates for spear-phishing schemes. The flaw, which Google is reportedly…
The rapid expansion of digital currencies has seen a corresponding rise in tactics employed by cybercriminals to siphon off assets. Recently, a significant cybersecurity threat emerged on NuGet, a widely utilized platform for software developers seeking building blocks for their applications. This threat was identified by ReversingLabs, a reputable software…
Data Breach at DomainFactory: A Reminder of Cybersecurity Vigilance A significant data breach affecting DomainFactory, one of Germany’s leading web hosting providers and owned by GoDaddy, has recently come to light. The breach, which first occurred in January, only became public knowledge last week when an unidentified attacker disclosed details…
