On Friday, China’s Ministry of Industry and Information Technology (MIIT) introduced draft proposals aimed at enhancing data security response protocols through a structured color-coded classification system. This initiative responds to the increasing complexity and frequency of data-related incidents within the country. The new framework is intended to bolster the national…
In the latest edition of the Cybersecurity Newsletter, we explore significant vulnerabilities and threats currently impacting the digital environment. This week’s focus highlights several critical incidents that occurred leading up to October 12, 2025, including a Discord platform breach, a substantial data leak at Red Hat, and concerning vulnerabilities associated…
On Friday, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) took decisive action by imposing sanctions on Integrity Technology Group, Incorporated, a cybersecurity firm based in Beijing. The firm has been implicated in orchestrating a series of cyber attacks that target U.S. entities. These cyber assaults have been…
Recent investigations have revealed that the threat actor responsible for the SolarWinds supply chain compromise has significantly broadened its malware arsenal. The adversary has employed new tools and techniques dating back to 2019, underscoring its capability to maintain persistent access over prolonged periods. This level of stealth demonstrates the sophistication…
Explore the nuances of Data Loss Prevention (DLP) and Data Security. Presented by Safetica 60 Minutes Join the Discussion In an era where data frequently transcends the boundaries of corporate infrastructures, the traditional model of Data Loss Prevention (DLP) fails to adequately protect sensitive information. Data flows across cloud platforms,…
Qantas Suffers Data Breach, Hackers Release Stolen Information on Dark Web The Australian government has reaffirmed its stance against negotiating with cybercriminals following a significant data breach affecting Qantas. This breach was perpetrated by a hacking group that has released sensitive customer data after their ransom deadline passed, showcasing a…
A critical security vulnerability has been identified in ProjectDiscovery’s Nuclei, a prominent open-source vulnerability scanner. This flaw poses a significant risk, as it may enable attackers to circumvent signature checks and execute harmful code within the system. The vulnerability, designated as CVE-2024-43405, has received a CVSS score of 7.4 out…
A recently reported zero-day vulnerability in the Zimbra open-source email platform is currently under active exploitation, primarily by a threat actor believed to be associated with China. This exploitation is part of a series of targeted spear-phishing campaigns that began in December 2021. The cyber operation, referred to as “EmailThief,”…
Brought to you by Blancco Technology 60 mins Organizations frequently operate under the misapprehension that methods such as encryption, physical destruction of devices, or adhering to outdated chain-of-custody processes adequately safeguard data at the end of an asset’s lifecycle. This misconception can lead to serious vulnerabilities as organizations prepare to…
