A sophisticated malware campaign targeting industrial sectors in the Middle East has resurfaced, equipped with advanced tools designed to compromise both Windows and macOS operating systems. This resurgence indicates a tactical shift in both the targets and the methods employed in spreading the malware. According to a recent analysis by…
The campaign of Mamdani did not provide a response to inquiries for comment regarding recent developments. The New York Police Department (NYPD) significantly expanded its mass surveillance programs under Commissioner Raymond Kelly following the September 11 attacks, supported by substantial federal anti-terrorism funding. However, Ferguson highlights that former commissioner William…
On Tuesday, identity and access management firm Okta announced the conclusion of its investigation into a security breach involving a third-party vendor, which occurred in January 2022. The breach, attributed to the notorious LAPSUS$ hacking group, was previously thought to have affected 366 customer tenants. However, after a thorough review,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development, Security Operations Troy Leach of the Cloud Security Alliance Discusses AI’s Impact on SOC Analysts’ Efficiency Anna Delaney (annamadeline) • November 5, 2025 Troy Leach, Chief Strategy Officer, Cloud Security Alliance Security operations centers (SOCs) face an increasing demand for…
The University of Pennsylvania has confirmed that a cyberattack led to unauthorized access and theft of sensitive university data. The breach also involved the manipulation of official @upenn.edu email addresses, which were used to send harassing messages to community members. This incident disrupted systems related to development and alumni relations,…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced on Tuesday the addition of a serious vulnerability affecting SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities (KEV) catalog. This decision comes amid indications of active exploitation of the flaw. Identified as CVE-2024-28987, this vulnerability has been assigned…
New Espionage Campaign Unveiled: Targets Corporate Networks in Venezuela On Thursday, cybersecurity researchers revealed an ongoing espionage campaign primarily aimed at corporate networks in Spanish-speaking countries, with Venezuela being the focal point. This newly identified threat, named “Bandidos” by security firm ESET, employs an enhanced variant of the notorious Bandook…
T-Mobile has confirmed it fell victim to a security breach in March, attributed to the notorious LAPSUS$ hacking group, known for its sophisticated cyber exploits. This assertion comes following revelations by investigative journalist Brian Krebs, who disclosed internal communications from LAPSUS$ that corroborate multiple incursions into T-Mobile’s systems throughout March,…
Data Breach Notification, Data Privacy, Data Security 2025 Sees Major Data Breach Affecting 10.5 Million Individuals, Multiple Insurers, State Authorities Marianne Kolbasuk McGee (HealthInfoSec) • November 4, 2025 Conduent, a publicly traded entity spun off from Xerox in 2017, is facing a surge of class-action lawsuits following a data breach…
