Microsoft has recently disclosed multiple security vulnerabilities affecting its AI, cloud services, enterprise resource planning systems, and Partner Center solutions. Among the vulnerabilities identified is a critical flaw that has already been exploited in the wild, raising alarms within the cybersecurity community. The most pressing concern is associated with a…
Cyberattacks Target Biomanufacturing Firms with Custom Malware “Tardigrade” Recent investigations have uncovered a series of cyberattacks targeting biomanufacturing companies in the U.S., attributed to an advanced persistent threat (APT) utilizing bespoke malware known as “Tardigrade.” This information was disclosed in a recent advisory published by the Bioeconomy Information Sharing and…
At the close of August, Anthropic, a notable AI firm, publicly affirmed that its chatbot, Claude, would not be involved in assisting with the construction of nuclear weapons. This announcement came on the heels of a strategic partnership with the U.S. Department of Energy (DOE) and the National Nuclear Security…
Recently, the 32nd edition of the RSA Conference, one of the premier cybersecurity events worldwide, concluded in San Francisco. Among the notable insights shared, Kevin Mandia, CEO of Mandiant at Google Cloud, delivered an impactful keynote focusing on the current state of cybersecurity. Mandia highlighted that organizations can enhance their…
Agentic AI, Identity & Access Management, Machine Identities Silicon Valley Startup Targets Discovery and Governance in Non-Human Identity Management Michael Novinson (MichaelNovinson) • October 21, 2025 Danny Oliveri, co-founder and CEO, Defakto (Image: Defakto) Silicon Valley-based startup Defakto, which specializes in non-human identity management, has successfully secured $30.75 million in…
Investigation Reveals Alarming Details in Afghan Data Breach A recent inquiry has uncovered critical information regarding a significant data breach affecting Afghan systems responsible for handling sensitive information. The probe highlights a series of unrecorded meetings and informal agreements that have raised concerns about the security protocols in place. The…
On Monday, Cisco issued an updated advisory highlighting an ongoing threat linked to a long-standing vulnerability in its Adaptive Security Appliance (ASA). The flaw, identified as CVE-2014-2120, has a CVSS score of 4.3 and relates to insufficient input validation within the WebVPN login interface. This vulnerability permits unauthenticated remote attackers…
Recent Cyber Surveillance Attacks Target North Korean Defectors and Journalists In a disturbing development, advanced persistent threats (APTs) linked to nation-state actors have launched a series of highly-targeted surveillance attacks against North Korean defectors, journalists covering North Korea, and associated organizations based in South Korea. Reports from Russian cybersecurity firm…
On October 17, 2025, Envoy Air, a Texas-based regional airline and the largest carrier under American Airlines, confirmed that it was recently compromised due to a series of cyberattacks exploiting a zero-day vulnerability in a major corporate software application. The hacks were executed by CL0P, a notorious ransomware group known…
