A significant security vulnerability has been identified in the miniOrange Social Login and Register plugin for WordPress, potentially allowing malicious parties to gain unauthorized access to user accounts based on pre-known email addresses. This vulnerability, documented as CVE-2023-2982 and assigned an alarmingly high CVSS score of 9.8, impacts all iterations…
Surge in Attacks Targeting Open Redis Servers Recent developments in cybersecurity have revealed a significant threat to organizations utilizing open Redis servers. Nearly two months after researchers issued warnings, a malware campaign specifically targeting these servers has escalated alarmingly, compromising at least 75% of publicly accessible Redis instances. Redis, short…
Federal Judge Preserves Federal Operations in Twin Cities Amid Concerns Over Targeting Immigrants A federal judge has recently ruled not to immediately halt a controversial federal operation that has seen armed agents deployed in Minneapolis and St. Paul, but has mandated that the government provide further clarification on its practices…
If you believe your organization is insulated from cyber threats, you are gravely mistaken. High-profile data breaches, sophisticated cyber attacks attributed to state actors, and hacking campaigns targeting major companies are increasingly prevalent. Recent incidents involving organizations like Target and groups such as the Syrian Electronic Army illustrate the urgent…
Cloud Security, Cloud-Native Application Protection Platform (CNAPP), Data Security Series B Round at $1.5B Valuation Fuels Expansion into AI, Application, and Data Security Michael Novinson (MichaelNovinson) • January 26, 2026 Amiram Shachar, co-founder and CEO, Upwind (Image: Upwind) Upwind, a cloud security startup led by a former NetApp executive, has…
AT&T customers affected by two significant data breaches in 2024 are anticipating the next update from the court that could lead to settlement payments potentially reaching $7,500. This case, estimated at $177 million, has reached a pivotal moment following the completion of its Final Approval Hearing. On January 15, the…
Critical Security Flaw Leaves Thousands of Drupal Websites Vulnerable A significant security vulnerability impacting websites built on the Drupal content management system (CMS) has come to light, with over 115,000 sites remaining unpatched months after security fixes were released. This highly critical vulnerability, known as Drupalgeddon2 (CVE-2018-7600), was initially identified…
Microsoft Network Anomaly Redirects Traffic Intended for Testing Domain In an unusual incident reported by Microsoft, an unexplained network anomaly inadvertently redirected traffic meant for the testing domain example.com to a Japanese electronics cable manufacturer, Sumitomo Electric. The example.com domain, outlined under RFC2606, is designated solely for illustrative and testing…
In an increasingly interconnected world, recent cyber incidents underscore the vulnerabilities that organizations face today. A notable highlight includes a series of impactful cyber attacks that exemplify the pressing need for robust cybersecurity measures across various sectors. One alarming case involved the hacking of vehicles, particularly the Jeep Cherokee. Security…