This week, Microsoft confirmed a significant security breach involving the inadvertent exposure of sensitive information belonging to thousands of customers. The incident stemmed from a security misconfiguration that left an endpoint publicly accessible on the internet without authentication, allowing potential unauthorized access to business transaction data. The company described the…
Governance & Risk Management, Operational Technology (OT), Video NAV Canada CISO Tom Bornais Discusses the Importance of Maintaining IT and OT Operations Joshua Cunningham-Marsh • October 31, 2025 Tom Bornais, CISO, NAV Canada As cyber threats evolve in sophistication, ensuring the security of vital infrastructure such as aviation systems necessitates…
Data Breach Exposes China’s Censorship Framework: A Comprehensive Look In one of the most significant leaks involving Chinese state infrastructure, an enormous 600 gigabytes of internal documentation from firms linked to the Great Firewall (GFW) were exposed in September 2025. This unprecedented breach illuminates the inner workings of China’s digital…
Security Flaw in Opera Browser Exposed Users to Potential Attacks A recently patched vulnerability in the Opera web browser posed a serious threat by allowing malicious extensions to gain unauthorized access to private APIs. This flaw, dubbed CrossBarking by Guardio Labs, could have enabled attackers to perform a variety of…
A recently uncovered malware known as SideWalk has been identified as the result of an advanced campaign by a Chinese cyber threat group targeting a U.S. computer retail company. This group, primarily active in East and Southeast Asia, is recognized for its persistent and sophisticated attack methods. The Slovak cybersecurity…
The Akira ransomware group has announced a breach of Apache OpenOffice, claiming to have stolen 23GB of sensitive data. For context, Apache OpenOffice is a widely recognized free and open-source office suite created by the Apache Software Foundation, offering tools that serve as alternatives to Microsoft Office on platforms like…
Governance & Risk Management, Regulation, Standards, Regulations & Compliance Ed Parsons from Integrity Discusses the Impact of Regulations on Security Approaches Akshaya Asokan (asokan_akshaya) • October 30, 2025 Ed Parsons, Chief Operations Officer, Integrity The Network and Information Systems Directive 2 (NIS2 Directive) is catalyzing significant advancements in vulnerability management…
The best of Voices delivered to your inbox every week—covering everything from controversial columns to expert analysis Subscribe to our free weekly Voices newsletter for insightful opinion and columns Enroll in our complimentary weekly Voices newsletter In a troubling incident from August 2023, a significant data breach occurred within the…
Serious Security Vulnerability Discovered in LiteSpeed Cache Plugin for WordPress A critical security vulnerability has been identified in the LiteSpeed Cache plugin for WordPress, posing significant risk to websites using the application. The flaw allows unauthenticated attackers to escalate their privileges, potentially granting them administrative access and enabling harmful interventions…
