On November 8, 2023, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) formally recognized a critical vulnerability in the Service Location Protocol (SLP) by adding it to its Known Exploited Vulnerabilities (KEV) catalog. This entry highlights the agency’s concerns regarding active exploitations of the flaw, which has been assigned the…
WhatsApp Files Lawsuit Against NSO Group Over User Exploitation In a landmark legal move, WhatsApp, a leading encrypted messaging service, has initiated a lawsuit against the Israeli technology firm NSO Group, alleging that the company has engaged in malicious cyber activities targeting its users. This case represents a significant step…
The FBI has recently detained a Chinese national for allegedly orchestrating the distribution of malware implicated in the 2015 Office of Personnel Management (OPM) breach. This breach, one of the largest in U.S. history, resulted in the compromise of personal information belonging to over 25 million federal employees, including 5.6…
3rd Party Risk Management , Governance & Risk Management Aikido Researcher Suggests New Variant Is Likely in Testing Phase Akshaya Asokan (asokan_akshaya) • December 29, 2025 Image: Shutterstock/ISMG Researchers from Aikido have uncovered a potentially novel variant of the Shai Hulud malware, which has been responsible for a series of…
Aflac Inc., one of the largest supplemental insurance providers in the United States, has confirmed a significant data breach affecting approximately 22.6 million individuals. Based in Columbus, Georgia, the company, well-known for its distinctive duck mascot, announced in late December 2025 that hackers had accessed sensitive personal and health information,…
A recent cybersecurity report reveals ongoing malicious activities attributed to two significant Chinese state-sponsored hacking groups, aimed at infiltrating 24 government entities in Cambodia. This activity is indicative of a long-term espionage operation, as outlined by researchers from Palo Alto Networks’ Unit 42 last week. The researchers noted that these…
Cybersecurity Alert: Initial Exploitation of BlueKeep Vulnerability Aimed at Cryptocurrency Mining Cybersecurity experts have identified what appears to be an amateur attempt to exploit the notorious BlueKeep vulnerability, which affects Microsoft’s Remote Desktop Protocol (RDP). This new cyberattack attempts to compromise vulnerable systems for the purpose of cryptocurrency mining, particularly…
By the year 2025, individuals who navigated their careers through an intense online presence have risen to notably influential positions globally. As predicted, topping the ranks is Donald Trump. The 79-year-old former president exercises control primarily through proclamations made on his social network, Truth Social. Meanwhile, the U.S. government has…
Instagram Faces Significant Data Breach Affecting High-Profile Users Instagram has recently announced a serious data breach that has resulted in unauthorized access to the phone numbers and email addresses of numerous high-profile users. The incident was confirmed by the platform, which has over 700 million users and is owned by…
