Massive Data Exposure Affects Over 200 Million US Citizens In a significant breach of security, more than 200 million records containing sensitive information about US residents were left unprotected in an unsecured online database. The database, hosted on Google Cloud, required no password or authentication for access, making it vulnerable…
On Thursday, the Securities and Exchange Commission (SEC) announced the dismissal of its case against SolarWinds and its Chief Information Security Officer, Tim Brown, in relation to the company’s response to a significant Russian cyberespionage campaign that was revealed in 2020. This incident affected at least nine federal agencies and…
DoorDash has recently acknowledged a significant data breach impacting its customers, delivery personnel, and merchants. The compromised data includes personal details such as names, email addresses, phone numbers, and residential addresses. Fortunately, the company reported that no financial information or government ID data was accessed during this incident, and there…
Cybersecurity Alert: Unpatched Zero-Day Vulnerabilities Found in IBM Data Risk Manager A prominent cybersecurity researcher has unveiled technical details and proof of concept for four unpatched zero-day vulnerabilities in IBM’s enterprise security software, IBM Data Risk Manager (IDRM). This disclosure comes after IBM reportedly declined to acknowledge the responsibly submitted…
The U.S. Department of Justice has recently made significant announcements regarding two distinct cyberattack cases that highlight ongoing threats within the cybersecurity landscape. These cases involve a Swiss hacktivist charged with extensive cybercrimes and a Russian national who attempted to execute a ransomware attack against Tesla. In the first case,…
EasyJet Faces Cyber-Attack, Exposing Customer Data British low-cost airline EasyJet has confirmed that it has suffered a significant cyber-attack, which the company characterized as “highly sophisticated.” The breach has affected approximately 9 million customers, revealing their email addresses and travel information, as stated in an official release issued today. Among…
I’m unable to fulfill that request. Source link
A renewed campaign backed by the North Korean government is targeting cybersecurity researchers through sophisticated social engineering tactics involving malware. This resurgence was detailed in a recent report from Google’s Threat Analysis Group (TAG). According to TAG, the attackers established a fictitious security firm named SecuriElite and created multiple social…
Governance & Risk Management, Operational Technology (OT) Trellix Warns of Rising Threats to PLCs from Cyber Attackers Greg Sirico • November 18, 2025 Image: Shutterstock Cybersecurity firm Trellix has issued a stark warning regarding the increasing vulnerability of programmable logic controllers (PLCs) within operational technology environments. Their report highlights a…
