Exploiting Vulnerabilities in NPM: A Surge in Credential-Theft Packages Cybercriminals have recently exploited a significant vulnerability in the NPM code repository, gaining access through more than 100 malicious packages designed to steal credentials since August. Notably, these attacks largely went unnoticed until now. Security firm Koi revealed these alarming findings…
In a significant breach of cybersecurity, Australian health insurer Medibank has announced that the personal data of approximately 9.7 million current and former customers has been compromised due to a ransomware attack. The incident, detected on October 12, raised alarms within the company when signs consistent with a ransomware event…
Business Continuity Management / Disaster Recovery, Cloud Data Security & Resilience, Governance & Risk Management Azure Outage Occurs Just Days After Major AWS DNS Disruption Cal Harrison • October 29, 2025 Image: Shutterstock On October 29, Microsoft’s Azure cloud and Office 365 systems encountered a significant outage caused by a…
Marina Bay Sands Penalized $243,400 Following Data Breach Affecting Over 665,000 Reward Members Marina Bay Sands, the iconic integrated resort situated in Singapore, has recently faced significant financial repercussions due to a data breach compromising the personal information of over 665,000 members of its rewards program. The breach, which has…
Security Flaws Discovered in Ollama AI Framework Recent disclosures by cybersecurity researchers have revealed six vulnerabilities within the Ollama artificial intelligence (AI) framework, a tool enabling users to deploy large language models (LLMs) locally on multiple operating systems, including Windows, Linux, and macOS. These vulnerabilities present significant risks, allowing potential…
On Monday, cybersecurity researchers unveiled the existence of a newly identified re-implementation of the notorious Cobalt Strike Beacon for both Linux and Windows operating systems. This variant, dubbed “Vermilion Strike,” has been actively targeting a range of sectors, including government, telecommunications, IT, and financial institutions. This advanced yet undetected penetration…
Microsoft Azure Suffers Major Outage Amid Configuration Issues Microsoft’s Azure cloud platform, along with its widely utilized 365 services and gaming platforms such as Xbox and Minecraft, experienced significant outages around noon Eastern time on Wednesday. The company attributed these disruptions to “an inadvertent configuration change.” This incident represents the…
The Indian government has unveiled a draft of the much-anticipated Digital Personal Data Protection Bill, marking the fourth attempt to establish comprehensive data protection legislation since its initial proposal in July 2018. This draft aims to enhance personal data security while emphasizing user consent through clear and straightforward language regarding…
Governance & Risk Management, Patch Management Significant Vulnerability in Windows Server Update Services Exposed Akshaya Asokan (asokan_akshaya) • October 28, 2025 Image: bluestork/Shutterstock Concerns are mounting over the exploitation of a flaw in Windows Server Update Services (WSUS), especially after Microsoft expedited a patch addressing an issue that permits unauthenticated…
