Recent Cybersecurity Incidents: A Deep Dive into Breaches and Threats Pooja Tikekar (@PoojaTikekar) • January 1, 1970 Image: Shutterstock/ISMG This week, Information Security Media Group reports significant cybersecurity incidents including a breach tying Clop ransomware to Korean Air vendor data compromise, a sophisticated attack by a China-linked APT leveraging software…
Also: Updates on China-Linked APT Hijack, Condé Nast Data Breach, La Poste Cyberattack Pooja Tikekar (@PoojaTikekar) • January 1, 1970 Image: Shutterstock/ISMG Each week, the Information Security Media Group provides a roundup of global cybersecurity incidents. This week, a breach linked to Clop exposed data of about 30,000 Korean Air…
VMware has issued urgent security updates to rectify a significant vulnerability in its vCenter Server software that poses a risk of remote code execution. This flaw, designated as CVE-2023-34048 and assigned a CVSS score of 9.8, is classified as an out-of-bounds write vulnerability associated with the DCE/RPC protocol. According to…
New Campaign Unveils Widespread Distribution of Astaroth Fileless Malware In a new report from Microsoft, cybersecurity experts reveal the latest details of an extensive campaign involving the notorious Astaroth fileless malware. Initially targeting users in Europe and Brazil earlier this year, this malware has been operational since at least 2017…
Massive Data Breach Exposes Personal Information of 120 Million Reliance Jio Customers In a troubling incident that highlights vulnerabilities in data security, the personal details of approximately 120 million customers of Reliance Jio have reportedly been compromised. This breach may qualify as one of the most significant incidents of data…
Artificial Intelligence & Machine Learning, Cybercrime, Fraud Management & Cybercrime Cybersecurity Experts Predict Future Trends with Emphasis on Cyberattacks, Deepfakes, and AI Anna Delaney (annamadeline), Cal Harrison • December 31, 2025 View this video on cyber trends for 2026, hosted by ISMG’s Anna Delaney alongside a panel of experts. In…
In late November 2024, a significant cybersecurity breach occurred when hackers infiltrated the computer network of Cognizant, a major technology services provider. The attackers gained access to sensitive personal information, which has raised serious concerns about data security practices within the organization. It has come to light that Cognizant did…
On October 11, 2023, the threat actor group known as Winter Vivern was detected exploiting a zero-day vulnerability in Roundcube webmail software, allowing them to harvest sensitive email messages from targeted accounts. According to ESET security researcher Matthieu Faou, the group has elevated its offensive by leveraging a newly discovered…
Discovery of Sophisticated Linux Spyware: EvilGnome Targets Users Security researchers have identified a novel strain of Linux spyware, dubbed EvilGnome, which is currently eluding detection by all major antivirus software. This finding, reported by Intezer Labs, highlights a rare case in the cybersecurity landscape where Linux malware demonstrates advanced functionalities…
