Fraud Management & Cybercrime, Ransomware, Video Also: Rapid7’s Boardroom Shake-Up, China’s Tactical Shift in Cyber Operations Anna Delaney (annamadeline) • March 28, 2025 Clockwise, from top left: Anna Delaney, Mathew Schwartz, Michael Novinson, and Tony Morbin. In this week’s analysis, ISMG editors delve into the contrasting strategies of ransomware attacks,…
Investigation Underway into Data Breach at St. Joseph’s College of Maine St. Joseph’s College of Maine is currently under investigation following a significant data breach that has raised concerns among stakeholders regarding the security of sensitive information. The New York-based law firm Levi & Korsinsky, LLP, has been enlisted to…
PCI DSS 4.0.1 Implementation: An Urgent Call to Secure Non-Human Identities As the deadline for compliance with the Payment Card Industry Data Security Standard (PCI DSS) version 4.0.1 looms on March 31, organizations must confront heightened security mandates, particularly concerning Non-Human Identities (NHIs). These identities include critical elements such as…
Finance & Banking, Fraud Management & Cybercrime, Fraud Risk Management Insights from Jason Costain on the Learning Opportunities Between Traditional and Digital Banks Suparna Goswami (gsuparna) • March 28, 2025 Jason Costain, former head of fraud analytics and threat management, NatWest Group Digital-only banks are often lauded for their rapid…
Phishing Attack Targets Creator of HaveIBeenPwned, Highlighting Evolving Threats This week, Troy Hunt, the founder of the widely-used data breach checking service HaveIBeenPwned, fell victim to a sophisticated phishing attack that compromised his personal Mailchimp account. The incident has raised concerns about the security of even established figures in the…
Research conducted by F5 reveals that the proliferation of generative AI has significantly transformed the dynamics of bot traffic, indicating that automated users now surpass human users in accessing informational web content. The findings are part of the 2025 Advanced Persistent Bots Report, which analyzed over 207 billion web and…
Data Security , Government , Industry Specific Sensitive Information of Senior Trump Officials Exposed Following Security Breach Chris Riotta (@chrisriotta) • March 28, 2025 Image: Shutterstock The personal contact information and vital details of key advisors to former U.S. President Donald Trump have been reportedly made accessible through various commercial…
Oracle Maintains No Breach Occurred Amid Ongoing Researcher Scrutiny In a recent development, Oracle has once again asserted that it has not experienced any data breach, despite persistent investigations by cybersecurity researchers. The firm’s official stance remains that its systems have not been compromised, even as experts continue to probe…
Trustwave’s Spider Labs has recently disclosed a significant security concern involving alleged compromised Lightweight Directory Access Protocol (LDAP) credentials associated with Oracle Cloud. According to Spider Labs, the credentials provided by an entity identified as rose87168 expose a considerable volume of sensitive identity and access management data linked to a…
