A financially driven threat actor group known as Magnet Goblin is rapidly exploiting one-day vulnerabilities to compromise edge devices and publicly accessible services. Their swift adaptation of these vulnerabilities enables the deployment of malware on compromised hosts, elevating the potential risks for organizations targeted by their campaigns. Check Point, a…
Law enforcement agencies across eight countries have successfully dismantled the infrastructure of Emotet, a prominent email-based malware that has facilitated numerous botnet-driven spam campaigns and ransomware attacks over the past decade. This significant initiative, named “Operation Ladybird,” marked an unprecedented global collaboration among authorities from the Netherlands, Germany, the U.S.,…
Understanding Operational Security: The Importance of Prioritizing Digital Safety Operational security (OpSec) is a critical concept that relates to safeguarding sensitive information before crises arise. It involves the proactive implementation of protective measures to avoid potential risks down the line, reflecting an almost time-travel-like foresight. In today’s digital age, where…
In a recent incident highlighting vulnerabilities within online platforms, XKCD, a renowned webcomic platform celebrated for its tech-savvy humor, has reported a significant data breach affecting its forum users. This breach, which occurred approximately two months ago, resulted in the unauthorized access of around 562,000 usernames, email addresses, IP addresses,…
Cybercrime, Cybercrime as-a-Service, Fraud Management & Cybercrime The Rise of Cybercrime: As Innovation Surges, Risks Grow Mathew J. Schwartz (@euroinfosec) • November 28, 2025 Image: Shutterstock/ISMG Cybercriminal activities are increasingly marked by sophisticated strategies that leverage continuous innovation. Ransomware groups are not only launching repeat supply chain attacks but are…
Reliance Securities Penalized for Cybersecurity Deficiencies The Securities and Exchange Board of India (SEBI) has levied a ₹5 lakh ($6,000) fine against Reliance Securities Limited due to serious inadequacies in its cybersecurity and data protection practices. This regulatory action, originating from a thematic inspection conducted by SEBI from April 1,…
Recently, a serious security vulnerability has been identified within Progress Software’s OpenEdge Authentication Gateway and AdminServer, which could potentially allow attackers to circumvent authentication mechanisms. This flaw has been designated as CVE-2024-1403 and carries a maximum severity score of 10.0 on the CVSS scale. It affects multiple versions of OpenEdge,…
This week, U.S. and Bulgarian authorities dismantled the dark web platform utilized by the NetWalker ransomware cybercrime group to disseminate data stolen from its victims. The action signifies an escalation in the ongoing battle against ransomware threats, marking a significant cooperative effort to address cybercrime on an international scale. Acting…
CIOs and CISOs must maintain a keen awareness of their organizations’ security landscapes. However, balancing the influx of daily updates with the need for a clear overview continues to challenge many executives. As cyber threats can arise at any moment, including off-hours and weekends, consistent vigilance is imperative. The reliance…
