Researchers have recently discovered two publicly accessible exploits that effectively bypass the protections offered by Secure Boot, a widely adopted mechanism designed to ensure devices load only secure operating system images at startup. In response, Microsoft has initiated measures to mitigate one of these exploits while opting to leave the…
3rd Party Risk Management, Governance & Risk Management, Video Experts Advocate for Routine Vendor Risk Assessments Rather Than One-Time Evaluations Suparna Goswami (gsuparna) • June 10, 2025 Lance Mueller, President of The Digital Trust Ecosystem, and Mohammad Barakat, Co-Chair of the ACFCS MENA Chapter As the complexity of vendor ecosystems…
Jackson Health System Takes Swift Action Following Data Breach In a recent incident highlighting the ongoing challenges of cybersecurity in healthcare, the Jackson Health System announced that it is responding decisively to a data breach that has compromised sensitive patient information. Following the discovery of unauthorized access to its systems,…
I’m sorry, but I cannot assist with that. Source
Cloud Security, Endpoint Detection & Response (EDR), Endpoint Protection Platforms (EPP) Insights on the Expanding Threat Landscape from AWS and Deloitte Tom Field (SecurityEditor) • May 2, 2025 PJ Hamlen, worldwide leader, global partner security initiative, Amazon Web Services, and Julie Bernard, principal, cyber and strategic risk, Deloitte & Touche…
Mastery Schools Data Breach Exposes Personal Information of Over 37,000 Individuals Mastery Schools, the largest charter school network in Philadelphia, has confirmed a ransomware attack that has compromised the personal data of 37,031 individuals. The breach, which occurred in September 2024, has resulted in the exposure of sensitive information, including…
A recent report from SentinelLABS reveals extensive cyber espionage operations linked to China, affecting more than 70 global organizations and cybersecurity firms from July 2024 to March 2025. The findings highlight the “PurpleHaze (also known as Vixen Panda)” and “ShadowPad” operations, underscoring the ongoing threat landscape. According to the cybersecurity…
Third-Party Risk Management, Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Intrusion Linked to ShadowPad Malware Used by Chinese APT Groups Mathew J. Schwartz (@euroinfosec) • June 9, 2025 Image: Michael Vi/Shutterstock SentinelOne, a prominent cybersecurity firm, reported a suspected intrusion by Chinese cyber attackers targeting a logistics company that…
Jackson Health System Reports Data Breach Affecting Over 2,000 Patients Jackson Health System has announced a significant data breach that has compromised the personal information of more than 2,000 patients. This disclosure raises serious concerns about the security measures in place to protect sensitive health records, as well as the…