Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control ‘RedNovember’ Engages Organizations Across the US, Asia, and Europe Akshaya Asokan (asokan_akshaya) • September 25, 2025 Image: Shutterstock/ISMG A recently identified hacking group, linked to extensive compromises of edge devices, has been confirmed as state-aligned with China,…
The U.S. government has recently unsealed charges against a Chinese individual, Guan Tianfeng, linked to a significant cybersecurity breach in which thousands of Sophos firewall devices were compromised worldwide in 2020. Guan, who allegedly worked for Sichuan Silence Information Technology Company, Limited, is facing accusations of conspiracy to commit computer…
Recent cyber activity has revealed significant vulnerabilities and breaches affecting U.S. federal agencies and corporations, highlighting the ongoing threats in the cybersecurity landscape. The Cybersecurity and Infrastructure Security Agency (CISA) reported that hackers exploited a known vulnerability in an open-source geospatial data server, leading to the deployment of a web…
Recent discoveries by the Qualys Threat Research Unit have unveiled two significant security vulnerabilities within the OpenSSH suite, an essential tool for secure networking. These vulnerabilities, if exploited, could enable attackers to perform a man-in-the-middle (MitM) attack and instigate a denial-of-service (DoS) attack, threatening the security and availability of affected…
The U.S. Department of Justice (DoJ) has successfully seized $500,000 in Bitcoin connected to a group of North Korean hackers who employed a ransomware variant known as Maui to extort digital payments from various organizations. This operation illustrates an increasing trend in cyber extortion tactics aimed at multiple sectors, including…
Network Firewalls, Network Access Control, Security Operations CISA Issues Emergency Directive Following Ongoing Exploits of Cisco Devices Chris Riotta (@chrisriotta) • September 25, 2025 Image: Anucha Cheechang/Shutterstock The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding an ongoing cyberattack campaign that targets Cisco firewalls, exploiting zero-day vulnerabilities…
The Inc ransomware group has claimed responsibility for a significant data breach at the Pennsylvania Attorney General’s office that occurred in August 2025. Cybersecurity researchers from Comparitech report that the group asserts it has exfiltrated approximately 5.7 terabytes of data from the office. In a demonstration of their claims, the…
Recent cybersecurity incidents underscore a harsh reality: even the most well-equipped organizations are susceptible to breaches. Despite investing in advanced security tools, comprehensive training for staff, and implementing robust defense mechanisms, many firms continue to fall victim to cyber attacks. The question arises: what factors contribute to these breaches? Attackers…
NCSC Issues Statement on Nursery Data Breach Incident In a recent development, the National Cyber Security Centre (NCSC) has released a statement regarding a significant data incident that impacted a nursery organization. This breach has raised alarms among cybersecurity experts, particularly due to the sensitive nature of the data involved…
