Russian Submarine Incident Off French Coast Raises Security Concerns Recently, Russia’s Kilo-class submarine, the Novorossiysk, surfaced near the French coast, prompting the Kremlin to maintain that there was no issue with the vessel. Russian officials asserted that the submarine was merely adhering to maritime rules for navigating the English Channel,…
Recent vulnerability findings have unveiled a significant design flaw within Google Workspace’s domain-wide delegation (DWD) feature. Cybersecurity researchers have reported that this flaw could enable malicious actors to escalate privileges and gain unauthorized access to Google Workspace APIs, bypassing super admin requirements. The analysis highlights the seriousness of this vulnerability,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Study Reveals Minor Data Poisoning Can Compromise Large Language Models Rashmi Ramesh (rashmiramesh_) • October 14, 2025 Image: ArtemisDiana/Shutterstock Recent findings indicate that as few as a few hundred malicious training documents can lead a large language model (LLM) to…
Recent cyber incidents have underscored the vulnerabilities permeating the aviation sector. The latest episode, the significant data breach of Qantas, has put millions of personal records at risk, echoing previous security failures such as the breach involving Collins Aerospace. These incidents unveil a systemic fragility within a network of interlinked…
The Apache Software Foundation (ASF) has announced a critical security update for its Tomcat server software, addressing a significant vulnerability that could lead to remote code execution (RCE) under specific conditions. This update highlights vulnerabilities identified as CVE-2024-56337 and CVE-2024-50379, the latter of which has a CVSS score of 9.8,…
A persistent threat actor, suspected to have ties to an Indian cybersecurity firm, has been actively attacking military organizations in South Asia since at least September 2020. The targeted nations include Bangladesh, Nepal, and Sri Lanka, with various iterations of their specialized malware framework used in each assault. According to…
Recent reports reveal a concerning new attack method, identified as “Pixnapping,” that exposes vulnerabilities in Android devices, enabling attackers to surreptitiously acquire crucial information such as two-factor authentication codes, location data, and other sensitive details within a mere 30 seconds. The Pixnapping attack originates from a malicious app that must…
A new variant of the well-known DJVU ransomware is being distributed through cracked software, raising fresh concerns within the cybersecurity community. This particular variant appends the .xaro extension to files, prompting affected users to pay a ransom for decryption capabilities. According to Cybereason security researcher Ralph Villanueva, the behavior is…
Video Insights from Jumio’s Joe Kaufmann on the Evolving Role of Chief Privacy Officers Brian Pereira (creed_digital) • October 14, 2025 Joe Kaufmann, Chief Privacy and Data Protection Officer, Jumio Data privacy has transitioned significantly from its origins in safeguarding state secrets and intellectual property to a more dynamic role…
