Recent reports indicate that pro-Russian hacking groups are exploiting a security vulnerability in WinRAR, a widely used archiving software. This vulnerability has been employed in a phishing campaign aimed at credential theft from compromised systems, raising significant security concerns among business owners. The vulnerability in question, known as CVE-2023-38831, affects…
The Yahoo Data Breach: A Case of Spear-Phishing and Human Error In one of the most significant data breaches recorded, Yahoo fell victim to a spear-phishing attack that compromised approximately 500 million user accounts. This incident, initiated in 2014, underscores the vulnerabilities that can stem from human error within organizations,…
Webinar Overview: CISO Insights on Human Risk Management In a recent webinar titled “CISO to CISO: Measuring and Managing Human Risk,” cybersecurity leaders convened to discuss the critical dimensions of human factors in security breaches. The conference emphasized the need for organizations to recognize that vulnerabilities stem not only from…
Significant Data Breach at University of Phoenix Affects Nearly 3.5 Million Individuals The University of Phoenix has confirmed a substantial data breach that has impacted approximately 3.5 million individuals, a serious incident traced back to August when cybercriminals infiltrated the university’s network and exfiltrated sensitive information. The breach was identified…
Cisco Systems has recently disclosed a severe, unpatched vulnerability affecting its IOS XE software, which is currently under active exploitation by threat actors. The zero-day flaw, identified as CVE-2023-20198, holds a critical severity rating of 10.0 on the Common Vulnerability Scoring System (CVSS). This vulnerability specifically impacts enterprise networking hardware…
Cybercriminals increasingly exploit newly disclosed vulnerabilities, making this one of the primary vectors for threats such as crypto-mining, phishing, and ransomware. Recently, a critical vulnerability in the Oracle WebLogic Server, a widely utilized enterprise application platform, has been actively targeted in the wild. Researchers have identified this exploit as distributing…
InterContinental Hotels Group Faces Significant Data Breach InterContinental Hotels Group (IHG), the parent company of well-known brands such as Holiday Inn and Crowne Plaza, has reported that malware infiltrated its payment card systems, compromising credit card numbers and other sensitive information across 1,174 franchise hotels in the United States. This…
Webinar Alert: Enhancing Defense Strategies Against Vulnerabilities In the evolving landscape of cybersecurity, businesses must grapple with the threats posed by increasingly sophisticated attackers. A recent webinar titled “Your CPS is Wide Open: Stop Point Solutions from Failing Defense” brought together industry experts to address the critical vulnerabilities that organizations…
South African Universities Grapple with Escalating Cybersecurity Threats As South African universities prepare for the upcoming release of matric results, the higher education sector is increasingly besieged by cybersecurity challenges that are unique compared to many other industries. With threats like ransomware, phishing attacks, data breaches, and insider threats, institutions…
