Cybersecurity Breach Targets China’s National Games Systems In a significant cybersecurity incident, an unnamed group of hackers proficient in the Chinese language successfully penetrated systems linked to China’s National Games last year. According to insights from cybersecurity firm Avast, the breach occurred just 12 days before the start of the…
Data Privacy, Data Security, Healthcare Two Companies Face a Combined $6.5 Million in Class Action Settlements Post-2024 Cyber Attacks Marianne Kolbasuk McGee (HealthInfoSec) • October 10, 2025 Both ALN Medical Management and Octapharma Plasma have recently agreed to multimillion-dollar settlements related to cyber incidents from 2024. (Image: Getty Images) In…
Apple has recently announced a significant increase in its bug bounty program, elevating the maximum payout to $2 million for specific software exploit chains that could be exploited by spyware. This announcement was made by Ivan Krstić, Apple’s vice president of security engineering and architecture, during the Hexacon offensive security…
Cybersecurity experts have recently illuminated the mechanisms of a global ransomware operation attributed to Mikhail Pavlovich Matveev, a Russian national indicted by U.S. authorities for his involvement in a multitude of cyberattacks worldwide. Matveev resides in St. Petersburg and utilizes several aliases, including Wazawaka and Boriselcin, playing a pivotal role…
Widespread Compromise of SonicWall SSL VPN Devices Raises Alarm in Cybersecurity Community On October 11, 2025, cybersecurity firm Huntress disclosed a significant breach involving SonicWall SSL VPN devices that has resulted in extensive unauthorized access to numerous customer environments. The incident has drawn considerable attention due to the rapid and…
On Tuesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of three vulnerabilities affecting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog. This action was taken in response to evidence indicating that these flaws are actively being exploited. The vulnerabilities identified include…
In an alarming series of spear-phishing attacks between October and November 2021, the Russia-linked advanced persistent threat group APT29 targeted European diplomatic missions and Ministries of Foreign Affairs. This activity showcases a troubling trend of cyberespionage aimed at sensitive political partners. ESET’s T3 2021 Threat Report, provided to The Hacker…
Critical Infrastructure Security, Government, Industry Specific US Cyber Defense Agency Faces Crisis Amid Shutdown and Resource Shortfalls Chris Riotta (@chrisriotta) • October 10, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is currently grappling with significant challenges that threaten its operational capabilities. Political pressures, notably exacerbated by ongoing tensions…
Recent research has unveiled that North Korean scammers are attempting to deceive U.S. companies into hiring them for architectural design roles, utilizing fabricated profiles, resumes, and Social Security numbers to masquerade as legitimate professionals. This scheme aligns with long-standing efforts by the hermit kingdom to misappropriate billions from organizations worldwide,…
