On Wednesday, cybersecurity agencies from Australia, the U.K., and the U.S. issued a joint advisory detailing the active exploitation of vulnerabilities in Fortinet and Microsoft Exchange ProxyShell by Iranian state-sponsored threat actors. This exploitation is part of a broader effort to gain initial access into susceptible systems, subsequently enabling activities…
Attack Surface Management, Security Operations Administering Response to NTLM Vulnerability Exploitation Greg Sirico • October 21, 2025 Image: Afansev Ivan/Shutterstock The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding an actively exploited vulnerability in the Server Message Block (SMB) protocol. This flaw, identified as CVE-2025-33073, has…
Revamped Cybersecurity Alert: AI-Enhanced Scams Utilize Stolen Data TOLEDO, Ohio (WTVG) – In an alarming trend, cybercriminals are leveraging artificial intelligence to breathe new life into previously stolen data, effectively repackaging past breaches for their malicious purposes. This development signals a concerning evolution in the tactics of cyber attackers, raising…
Recent disclosures have unveiled nearly two dozen vulnerabilities in Advantech’s industrial-grade wireless access points, a suite of devices that are integral to operational technology networks. Among these vulnerabilities, several are critical, enabling potential attackers to bypass authentication protocols and execute code at elevated privileges, thereby posing substantial risks to the…
On Thursday, the U.S. government unsealed an indictment charging two Iranian nationals with participating in a cyber-enabled disinformation and threat campaign aimed at undermining the integrity of the 2020 presidential elections. The indictment alleges that they gained unauthorized access to confidential voter information from at least one state election website,…
Last month, Taiwanese computer manufacturer MSI was targeted in a ransomware attack, leading to the exposure of sensitive data, particularly their private code signing keys. The perpetrators of this attack have since disclosed these keys on their dark web platform, raising significant security concerns for both MSI and its partners.…
Governance & Risk Management , Healthcare , Industry Specific Penetration Testing Reveals Vulnerabilities in State Medicaid Systems Marianne Kolbasuk McGee (HealthInfoSec) • October 21, 2025 HHS OIG’s penetration testing of ten state Medicaid systems highlighted critical security gaps that must be addressed to safeguard data from advanced cyber threats. (Image:…
Cybersecurity research firm Darktrace has issued a report highlighting the ongoing threat posed by a state-sponsored group known as Salt Typhoon. This Advanced Persistent Threat (APT) group, suspected to be linked to the People’s Republic of China (PRC), continues to discover innovative methods to infiltrate critical infrastructure across the globe.…
Microsoft has recently disclosed multiple security vulnerabilities affecting its AI, cloud services, enterprise resource planning systems, and Partner Center solutions. Among the vulnerabilities identified is a critical flaw that has already been exploited in the wild, raising alarms within the cybersecurity community. The most pressing concern is associated with a…
