The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has listed a significant security vulnerability in the Citrix ShareFile storage zones controller in its Known Exploited Vulnerabilities (KEV) catalog, following credible assessments of active exploitation in the wild. This vulnerability, designated as CVE-2023-24489, holds a critical CVSS score of 9.8 and…
George Garofano Sentenced for High-Profile Celebrity Hack In a significant development within the cybersecurity landscape, George Garofano has been sentenced to eight months in prison for hacking into over 250 Apple iCloud accounts belonging to notable celebrities, including Jennifer Lawrence and Kim Kardashian. This sentencing follows his guilty plea to…
Concerns Arise Over Fast Pair Vulnerabilities Found in Bluetooth Devices Recent investigations have uncovered significant vulnerabilities associated with Google’s Fast Pair technology, which could put connected devices at risk. Researchers at KU Leuven have identified flaws in the implementation of this widely adopted Bluetooth feature, raising alarms about the potential…
Recent reports indicate a significant data breach involving a massive database of 272 million email addresses and passwords from leading email providers, including Gmail, Microsoft, and Yahoo. This sensitive information is currently being offered for sale on the Dark Web for a mere price of less than one dollar. The…
HIPAA/HITECH, Litigation, Standards, Regulations & Compliance Lawsuit Claims Competitor Permits ‘Shell Firms’ to Exploit National Data Exchanges Marianne Kolbasuk McGee (HealthInfoSec) • January 16, 2026 Epic Systems is accusing competitor Health Gorilla of allowing deceptive entities to access sensitive patient data through national health information exchange networks. (Image: Epic, Health…
Varonis Systems Issues Warning on Risks Posed by Over-Privileged Chatbots In a recent alert, Varonis Systems raised significant concerns regarding the potential for data breaches linked to the misuse of over-privileged chatbots. As businesses increasingly adopt artificial intelligence to streamline operations and enhance customer engagement, the implications of these systems…
Recent findings from cybersecurity researchers have unveiled a sophisticated post-exploit technique on iOS 16 that could allow attackers to maintain covert access to Apple devices, even when users believe their devices are disconnected. This method leverages a deceptive form of Airplane Mode, manipulating the user interface to mislead victims while…
Widespread Compromise of MikroTik Routers Exposes Vulnerabilities Recent reports have unveiled an alarming situation involving a significant number of MikroTik routers that have fallen victim to cyber exploitation. Last month, we noted a major crypto-mining malware operation responsible for the hijacking of over 200,000 MikroTik devices, utilizing a vulnerability linked…
The ICE List website, also referred to as the ICE List Wiki, has become incapacitated due to a significant cyber attack, occurring just as it aimed to disclose the identities of numerous federal agents in the United States, particularly those linked to Immigration and Customs Enforcement (ICE). Dominick Skinner, the…
