New Timing Vulnerability Discovered in TLS: Raccoon Attack A recent study has revealed a significant timing vulnerability affecting the Transport Layer Security (TLS) protocol, potentially allowing attackers to compromise encryption and access sensitive communications under specific scenarios. Researchers have labeled this exploit the “Raccoon Attack,” targeting server-side operations in TLS…
A significant security incident has impacted 700Credit, a Fintech and data services entity based in Michigan, USA, which facilitates consumer financing options for dealerships in sectors such as auto, RV, powersports, and marine. According to the company’s breach notification, an “unauthorized access” event resulted in the copying of specific customer…
Snapchat Source Code Leaked on GitHub: Cybersecurity Implications Unfold Recently, the source code for Snapchat, a widely-used social media application, was unlawfully released online. This breach occurred when a hacker leaked the code on GitHub, a Microsoft-owned code repository. The GitHub account, registered under the name Khaled Alshehri with the…
Agentic AI, Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Insights from ServiceNow’s Neeraj Jain on Managing Risk and Ensuring Real-Time Data Access for AI Michael Novinson (MichaelNovinson) • December 15, 2025 Neeraj Jain, Director of Product Management, Hyperscalers and Multi-Cloud, ServiceNow Organizations that incorporate governance into their…
Google to Discontinue Reporting on Data Breaches In a recent development, tech giant Google has announced that it will cease its reporting on data breaches. This shift has raised concerns within the cybersecurity community, particularly among business owners keenly monitoring the landscape of cyber threats. The decision is perceived as…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially included a critical vulnerability affecting Microsoft SharePoint Server in its Known Exploited Vulnerabilities (KEV) catalog, highlighting evidence of active exploitation within various environments. This vulnerability, identified as CVE-2023-29357, has garnered a significant CVSS score of 9.8, indicating its severity and…
Major Cyber Breach Hits European Cryptocurrency Exchange Eterbase In a significant cybersecurity incident, Eterbase, a cryptocurrency exchange operating out of Bratislava, Slovakia, has reported a breach that has resulted in the theft of cryptocurrencies valued at $5.4 million. This breach, attributed to an unidentified hacker group, highlights ongoing vulnerabilities within…
In response to emerging security concerns, Google has underscored the importance of using HTTPS by marking all non-HTTPS websites as ‘Not Secure’ in its Chrome 68 browser update. This shift aims to enhance the security landscape for internet users. Additionally, the upgraded version addresses critical vulnerabilities that may put private…
Data Breach Notification, Data Security, Healthcare Data Breach At National Accident Health Exposes Medical Information of 181,000 Individuals Marianne Kolbasuk McGee (HealthInfoSec) • December 15, 2025 The NAHGA has issued notifications to 181,000 individuals regarding an April breach that may have compromised their medical claims data. (Image: NAHGA) A breach…
