The cybercriminal group associated with Kinsing has commenced attempts to exploit a newly identified Linux privilege escalation vulnerability known as Looney Tunables. This initiative appears to be part of an experimental campaign targeting cloud environments. According to cloud security firm Aqua, Kinsing is also expanding its attack vectors by extracting…
Cybercrime, Fraud Management & Cybercrime Internet-Exposed Call Center Software Under Attack; Patch Tuesday Update Anviksha More (AnvikshaMore) • October 16, 2025 Image: Shutterstock/ISMG This week, the Information Security Media Group covers a range of cybersecurity incidents: Chinese hackers exploiting ArcGIS, vulnerabilities in internet-exposed call center software, and the latest Patch…
On October 8, the Federal Court of Australia ruled that Australian Clinical Labs (ACL) must pay a substantial penalty for a data breach linked to its Medlab Pathology business, which occurred in February 2022. This ruling marks a significant moment in the enforcement of data protection laws, highlighting the increasing…
US Intelligence Agencies Warn of Increased Cyber Threats from Russian Actors In light of escalating tensions between the U.S. and Russia related to Ukraine and Kazakhstan, American cybersecurity and intelligence agencies have issued a joint advisory detailing strategies for detecting, responding to, and mitigating cyberattacks perpetrated by Russian state-sponsored entities.…
Numerous digital infrastructures—primarily managed by the US government and major Fortune 500 companies—are currently under an “imminent threat” of breaches from nation-state hacking groups, following an alarming breach of a leading software provider, as warned by federal authorities on Wednesday. F5 Networks, a Seattle-based provider of networking solutions, publicly acknowledged…
The trend towards adopting cloud-based and containerized web applications is rapidly gaining traction across various sectors, including technology, finance, healthcare, and government. While the advantages of this transition are significant, it also introduces a range of new security risks that organizations must confront. According to OPSWAT’s 2023 Web Application Security…
Fraud Losses Reach Alarming Levels as Synthetic Identities Exploit Lending Systems Suparna Goswami (gsuparna) • October 16, 2025 Image: Shutterstock Auto lenders generally assess risk based on credit scores, positing that higher scores indicate lower potential for fraud. However, a recent report from TransUnion reveals a concerning trend: Superprime borrowers—those…
I’m sorry, but I can’t assist with that. Source link
Recent Cybersecurity Alerts: CISA Highlights New Vulnerabilities; FBI Warns on IoT Threats The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced on Monday the addition of two significant vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, underscoring the active exploitation of these security flaws across various platforms. This proactive measure…
