An emerging cybersecurity threat has surfaced, centered around the exploitation of a recently patched vulnerability in the open-source Roundcube webmail software. This vulnerability has been targeted as part of a phishing campaign aimed at stealing user credentials from various organizations. The cybersecurity firm Positive Technologies reported the discovery of a…
Microsoft has recently identified a series of attacks on SolarWinds’ Serv-U managed file transfer service, which were executed using a now-resolved remote code execution (RCE) vulnerability attributed to a Chinese threat group known as “DEV-0322.” This announcement follows SolarWinds’ emergency patches aimed at countering an exploit that could have allowed…
— Criminal impersonation of U.S. immigration officers has emerged as a significant threat, as detailed in a recent warning bulletin from the Federal Bureau of Investigation (FBI). The document, released last month, outlines several incidents across multiple states involving individuals fraudulently claiming to be agents of Immigration and Customs Enforcement…
The Rise of Supply Chain Attacks: A Growing Concern for Businesses In 2021, the cybersecurity landscape was notably defined by a surge in supply chain attacks. These incidents occur when cybercriminals compromise third-party software components to infiltrate downstream applications. High-profile breaches such as those involving SolarWinds, Kaseya, and Codecov have…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Governance & Risk Management Google Issues Warning on Emerging Cyber Threats Akshaya Asokan (asokan_akshaya), David Perera (@daveperera) • November 4, 2025 Image: Shutterstock/ISMG A recent report from Google highlights critical vulnerabilities in the virtualization technology that supports modern IT frameworks, calling attention…
Celerium Designated a Preferred Cybersecurity Provider by the American Hospital Association In a significant advancement for healthcare cybersecurity, Celerium has been recognized as a Preferred Cybersecurity Provider by the American Hospital Association (AHA) for its robust data breach defense solutions. This designation underscores Celerium’s commitment to safeguarding sensitive healthcare data…
On Monday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) officially included a significant security vulnerability affecting ScienceLogic SL1 in its Known Exploited Vulnerabilities (KEV) list. This action comes in response to confirmed instances of active exploitation as a zero-day vulnerability. The flaw, designated as CVE-2024-9537 (scoring 9.3 on the…
The notorious ransomware group REvil, known for significant cyberattacks including those on JBS and Kaseya, has abruptly vanished from the dark web, prompting speculation regarding its potential dismantling. This sudden disappearance has left multiple darknet and clearnet services linked to the Russia-associated syndicate inoperable, presenting users with the error message…
The recent dismantling of the illicit online marketplace known as SSNDOB illustrates a significant blow to cybercriminal activities focused on identity theft. Announced by the U.S. Department of Justice (DoJ), this operation involved multiple law enforcement agencies working in tandem, leading to the effective shutdown of a platform that specialized…
