The LockBit ransomware group has re-emerged on the dark web just days after an international law enforcement operation disrupted its operations by seizing control of critical infrastructure. This resurgence underscores the persistent threat posed by this malicious entity, known for its sophisticated attacks and extortion tactics. Recent developments indicate that…
A clandestine hacking group operating under the name Scattered LAPSUS$ Hunters has reportedly breached the global cloud service provider Salesforce, claiming to have compromised nearly one billion customer records. This revelation heightens concerns about the increasing prevalence of supply chain attacks targeting major corporations. Despite Salesforce’s firm denial of any…
Recently, cybersecurity experts identified and disclosed a critical vulnerability in a widely used online travel service, which specializes in hotel and car rentals. This vulnerability, now patched, allowed adversaries to take control of user accounts, posing a significant risk to millions of airline customers. According to Salt Labs, a firm…
In a coordinated effort, at least three advanced persistent threat (APT) groups have initiated spear-phishing campaigns, exploiting the ongoing Russo-Ukrainian conflict as a pretext for distributing malware and extracting sensitive information. These campaigns have been attributed to the groups El Machete, Lyceum, and SideWinder, targeting sectors such as energy, finance,…
Government, Industry Specific, Next-Generation Technologies & Secure Development Also: Implications of the UK’s $7B Bitcoin Case, Vectra’s Acquisition of Netography Chris Riotta (@chrisriotta) • October 3, 2025 From left: Chris Riotta, Michael Novinson, and Mathew Schwartz In this week’s analysis, ISMG editors evaluate the ramifications of the U.S. government shutdown…
In today’s fast-paced digital landscape, IT leaders must remain vigilant against the continuously evolving threats in the realm of cybersecurity. As attacks become more sophisticated and prevalent, the challenge arises: how can one devise proactive and agile strategies that effectively mitigate risks while optimizing the value of cybersecurity investments? Recent…
WICHITA, Kan. (KWCH) – Recent federal data reveals a significant rise in fraudulent activities impacting businesses, which collectively lose billions annually to scams. Such financial losses often reverberate through the marketplace, ultimately affecting consumers with increased prices. While many associate scams primarily with individual consumers, businesses are increasingly falling victim…
Critical Vulnerability in Zyxel Devices Under Active Exploitation Cybersecurity experts have issued urgent warnings regarding a severe zero-day vulnerability affecting Zyxel CPE Series devices, with reports of ongoing exploitation attempts. Dubbed CVE-2024-40891, this command injection vulnerability enables attackers to execute arbitrary commands on compromised devices, potentially resulting in full system…
Recent cybersecurity investigations have revealed a sophisticated operation attributed to a threat actor associated with Hamas’s cyber warfare division. This intricate campaign has been designed to target high-profile Israeli individuals working in delicate sectors such as defense, law enforcement, and emergency services. According to cybersecurity firm Cybereason, the attackers employed…
