The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued a warning on Thursday regarding the discovery of two vulnerabilities in the Palo Alto Networks Expedition software. These vulnerabilities are currently being exploited in the wild, heightening concerns for users and organizations that manage their network infrastructures with this tool. In…
On Thursday, Google’s Threat Analysis Group (TAG) revealed that it is currently monitoring over 270 state-sponsored threat actors operating across more than 50 countries. Since the beginning of 2021, TAG has issued approximately 50,000 alerts concerning phishing and malware attempts tied to these government-backed actors. This represents a 33% increase…
The Rise of Cybersecurity Threats: A Call for Action In recent years, cybersecurity has emerged as a critical concern for businesses worldwide. Forecasts for 2023 predict that the total cost of cybercrime will soar to approximately $8 trillion, highlighting the urgent need for robust cybersecurity measures across various sectors. Despite…
Human Risk in 2025: Mitigating AI-Powered Insider Threats As organizations continue to integrate artificial intelligence into their operations, the landscape of cybersecurity risk is evolving dramatically. A recent report highlights the potential for AI-driven insider threats to become a significant challenge by 2025, raising alarms among business leaders about the…
On a day marked by significant developments, Montana’s insurance commissioner launched an investigation into a considerable data breach affecting the state’s largest health insurer. Concurrently, a group of attorneys initiated a class-action lawsuit in Helena, alleging that this corporation neglected to inform its customers of the breach and failed to…
Cybersecurity experts have identified a critical vulnerability in the PostgreSQL open-source database system, potentially allowing unprivileged users to manipulate environment variables. This security flaw, categorized as CVE-2024-10979, carries a CVSS severity score of 8.8, indicating significant risks associated with its exploitation. Environment variables serve as user-defined settings that enable programs…
Telecom Sector Under Siege by LightBasin Recent investigations into cyber threats have revealed that an advanced adversary known as LightBasin is behind a series of attacks targeting the telecommunications industry. This sophisticated group is primarily focused on extracting highly specific data, such as subscriber information and call metadata, which aligns…
A Sydney resident has been handed an 18-month Community Correction Order (CCO) and directed to perform 100 hours of community service following an attempt to exploit the 2022 Optus data breach. This individual, who was 19 at the time of the arrest in October 2022 and is now 20, engaged…
Modern IGA for the AI Era: Critical Insights for Business Owners In the rapidly evolving landscape of cybersecurity, businesses must remain vigilant, particularly in the face of sophisticated threats that leverage advances in artificial intelligence. Recent incidents highlight the increasingly complex challenges organizations encounter, underscoring the need for a proactive…
