The American Israel Public Affairs Committee (AIPAC) has reported a data breach stemming from a compromise of an external system managed by an unidentified third-party service provider. This breach was publicly disclosed in a notification to the Maine attorney general’s office on November 14, 2025. Extended Unauthorized Access According to…
Palo Alto Networks has disclosed a significant security vulnerability affecting PAN-OS that is currently under active exploitation by cybercriminals. This flaw, designated as CVE-2024-3400 with a CVSS score of 10.0, is characterized as “intricate,” arising from the combination of two distinct bugs present in PAN-OS versions 10.2, 11.0, and 11.1.…
The cybersecurity landscape was profoundly impacted by the SolarWinds attack, a sophisticated breach facilitated by the infamous Sunburst malware. This incident highlighted the vulnerability of various sectors, as attackers exploited the far-reaching SolarWinds ecosystem to access critical source code and sensitive data spanning multiple organizations, including U.S. government agencies, contractors,…
A hacking group, active in the Middle East since at least 2017, has been detected impersonating popular messaging applications like Telegram and Threema. This tactic is part of their strategy to deploy a new variant of malware targeting Android devices, a threat that had not been previously documented. According to…
Live Webinar: Navigating the Challenges of Multi-Cloud Environments In a rapidly evolving digital landscape, businesses are increasingly turning to multi-cloud environments to meet their diverse operational needs. However, this shift introduces several cybersecurity challenges that organizations must navigate to protect their sensitive data and infrastructure. The upcoming live webinar will…
Cybersecurity Breach in Somalia Compromises E-Visa System, Key Official Dismissed MOGADISHU – In a significant cybersecurity incident, Somalia’s Security Minister, Abdullahi Sheikh Ismail Fartag, announced the dismissal of Mohamed Kasim, the deputy director of the Immigration and Citizenship Agency, following a breach of the nation’s e-visa system. This breach has…
Recent research reveals that the conversion process from DOS to NT paths in Windows represents a potential exploitation vector for threat actors, enabling rootkit-like functionality that could hide and impersonate files, directories, and processes. According to Or Yair, a security researcher from SafeBreach, when users invoke functions that involve a…
On Thursday, the U.S. and U.K. governments officially attributed the supply chain breach of SolarWinds, an IT infrastructure management firm, to Russian government operatives from the Foreign Intelligence Service (SVR). This attribution was made with “high confidence,” acknowledging the complexity and depth of the cyber-attack. The U.K. government issued a…
On Tuesday, cybersecurity giant FireEye confirmed it has suffered a significant breach, falling victim to a sophisticated state-sponsored attack that resulted in the theft of its Red Team penetration testing tools. These tools are integral for evaluating the security measures of their clients, spotlighting the pressing vulnerabilities that organizations face,…
