In recent years, the proliferation of compromised credentials on various platforms has reached alarming levels, affecting organizations globally. Reports indicate that these credentials are frequently found on the dark web, clear web, paste sites, or in data dumps shared among cybercriminals. Such information is often exploited for account takeover attacks,…
AI Agent Risks: Emerging Threats in DevSecOps Recent trends indicate a significant rise in cybersecurity incidents related to artificial intelligence (AI) agents within the realm of DevSecOps. These tools, designed to enhance software development and security processes, have become attractive targets for cybercriminals seeking to exploit their vulnerabilities. The escalating…
Qantas Cybersecurity Breach: A Deep Dive into the Aftermath In a troubling incident that underscores the vulnerabilities of even the largest corporations, Australian airline Qantas has fallen victim to a significant cybersecurity breach. This event exposed the personal data of approximately 5 million customers, primarily linked to their frequent flyer…
A significant security vulnerability has been identified in the Wi-Fi Test Suite that may allow unauthorized local attackers to execute arbitrary code with elevated privileges. This flaw, designated CVE-2024-41992, primarily affects routers manufactured by Arcadyan FMIMG51AX000J, as reported by the CERT Coordination Center (CERT/CC). According to CERT/CC, the exploitability of…
Massive Crypto Heist: Poly Network Loses $611 Million in Digital Assets In a significant blow to the cryptocurrency landscape, hackers have stolen approximately $611 million worth of digital assets from Poly Network, a decentralized finance (DeFi) platform based in China. This incident is considered among the largest thefts in the…
A new hacktivist group named Hezi Rash, translating to “Black Force” in Kurdish, has gained prominence in the cyber landscape, as detailed in a recent report from Check Point’s External Risk Management team. Formed in 2023, this nationalist organization has adopted cyber warfare strategies, primarily deploying Distributed Denial-of-Service (DDoS) attacks…
Significant Data Breach at Optus Exposes Personal Information of Millions Australian telecommunications company Optus confirmed on Monday a significant data breach affecting nearly 2.1 million current and former customers. This incident, which surfaced late last month, resulted in the leak of personal details, including at least one form of identification…
Cyber Insurance, Governance & Risk Management, Risk Assessments Searchlight Cyber Acquires European Startup to Enhance Cyber Risk Insights Michael Novinson (@MichaelNovinson) • October 31, 2025 Ben Jones, co-founder and CEO, Searchlight Cyber (Image: Searchlight Cyber) Searchlight Cyber has announced the acquisition of Intangic, a European startup focused on cyber risk…
New Vulnerability Risks Driver Signature Enforcement on Windows Systems A recently uncovered attack method exposes vulnerabilities in Microsoft’s Driver Signature Enforcement (DSE) on fully updated Windows systems, enabling potential OS downgrade attacks. This breakthrough allows cybercriminals to load unsigned kernel drivers, paving the way for the deployment of custom rootkits.…
