Network Firewalls, Network Access Control, Security Operations Critical Vulnerability Uncovered, Exposing Remote Privilege Escalation Threat Prajeet Nair (@prajeetspeaks) • July 3, 2025 Image: Anucha Cheechang/Shutterstock Cisco has issued urgent security updates to address a significant vulnerability in its Unified Communications Manager (UCM), which enables unauthorized attackers to gain root access…
U.S. and international law enforcement have detained a British national, believed to be the infamous hacker known as “IntelBroker,” alongside four individuals presumed to be associated with the BreachForums online marketplace for illicitly obtained data. The primary suspect, identified in an indictment as 25-year-old Kai Logan West, was apprehended in…
Cybercrime, Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Canadian Cybersecurity Breaches: Hacking Incidents and Vulnerabilities Anviksha More (AnvikshaMore) • June 26, 2025 Image: Shutterstock/ISMG In a weekly roundup of cybersecurity incidents and breaches, Information Security Media Group highlights significant events including the UK NHS’s link between ransomware and patient…
An advisory issued by the FBI in conjunction with Canada’s Cyber Centre unveils an ongoing cyber espionage campaign attributed to a China-associated group targeting global telecom networks. Dated June 20, 2025, the report highlights the activities of “Salt Typhoon,” a well-known advanced persistent threat (APT) group harnessing existing vulnerabilities in…
The Canadian telecommunications sector has recently faced a significant security breach, allegedly orchestrated by state-sponsored hackers from China. These cyber actors exploited a critical vulnerability that had been patched 16 months earlier, compromising a major telecommunications provider in Canada, as confirmed by officials from both the Canadian and U.S. governments.…
The recent cybersecurity breaches have revealed significant vulnerabilities affecting key federal departments and numerous private sector companies. Notably, the departments of Commerce, Treasury, Homeland Security, and the National Institutes of Health were compromised, raising alarms about the integrity of sensitive governmental data. Prominent private corporations including Microsoft, Intel, Cisco, Deloitte,…
Governance & Risk Management, Zero Trust Florida Vendor Aims for $100M ARR by 2027 Through Identity Segmentation and ZTNA Michael Novinson (MichaelNovinson) • June 3, 2025 Benny Lakunishok, co-founder and CEO, Zero Networks (Image: Zero Networks) Zero Networks, a startup specializing in microsegmentation, has successfully secured $55 million in funding…
Governance & Risk Management, Patch Management, Vulnerability Assessment & Penetration Testing (VA/PT) Research Uncovers Exploit Risks for Popular Software Prajeet Nair (@prajeetspeaks) • June 2, 2025 Image: Shutterstock A critical vulnerability recently patched in Cisco IOS XE has been linked to the potential for remote code execution (RCE) if exploited.…
Cisco Talos has issued a warning regarding active exploitation of a zero-day vulnerability (CVE-2025-0994) in Cityworks, allegedly by the Chinese-speaking threat group UAT-6382. This article provides an overview of the malware involved, the organizations at risk, and essential security measures. Cisco Talos has raised an alarm about targeted cyberattacks focusing…
