Recent reports have highlighted three critical security vulnerabilities within the Microsoft Dynamics 365 and Power Apps Web API. These exploits, which could lead to unauthorized data exposure, have been addressed as of May 2024, following detection by Stratus Security, a cybersecurity firm based in Melbourne. The vulnerabilities identified reflect significant…
Recent cybersecurity investigations have revealed a series of infiltration attempts by a Russian-affiliated hacking group known as Gamaredon, targeting Ukrainian entities as early as July 2021. Broadcom subsidiary Symantec released findings on Monday highlighting the group’s consistent activity in cyberespionage, a pattern they’ve maintained since at least 2013. Ukrainian intelligence…
AI-Based Attacks, Artificial Intelligence & Machine Learning, Fraud Management & Cybercrime In Today’s Reality, Embracing Zero Trust Principles is Crucial Suparna Goswami (gsuparna) • October 10, 2025 Image: Shutterstock In a groundbreaking legal event earlier this month, a California judge dismissed an $8.7 million lawsuit due to the introduction of…
A sophisticated botnet identified as the KV-botnet is exploiting vulnerabilities in devices from well-known manufacturers—specifically Cisco, DrayTek, Fortinet, and NETGEAR—to create a covert data transfer network. This network is being utilized by advanced persistent threat (APT) actors, including the China-linked group known as Volt Typhoon. According to Black Lotus Labs…
Qantas Airways has confirmed that customer data compromised in a July cyber breach has been released online by cybercriminals. This incident marks a significant escalation in the frequency and severity of cyberattacks targeting businesses across various sectors. In July, Qantas disclosed that over a million customers had their sensitive information,…
Emerging Jailbreak Technique Poses New Threats to Language Models Cybersecurity research has recently unveiled a new jailbreak technique that undermines the safety mechanisms of large language models (LLMs), potentially enabling the generation of harmful or malicious content. This multi-turn attack strategy, termed “Bad Likert Judge,” has been revealed by researchers…
Joe Tibbetts: VP of Technology Alliances & API Program at Mimecast In the realm of cybersecurity, the role of partnerships and technological integration is vital. Joe Tibbetts, the Vice President of Technology Alliances and the API Program at Mimecast, has been instrumental in shaping this landscape since he joined the…
On Friday, China’s Ministry of Industry and Information Technology (MIIT) introduced draft proposals aimed at enhancing data security response protocols through a structured color-coded classification system. This initiative responds to the increasing complexity and frequency of data-related incidents within the country. The new framework is intended to bolster the national…
In the latest edition of the Cybersecurity Newsletter, we explore significant vulnerabilities and threats currently impacting the digital environment. This week’s focus highlights several critical incidents that occurred leading up to October 12, 2025, including a Discord platform breach, a substantial data leak at Red Hat, and concerning vulnerabilities associated…
