The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding the active exploitation of a high-severity vulnerability in Adobe ColdFusion, identified as CVE-2023-26360. Unidentified cyber actors are reportedly leveraging this flaw to gain unauthorized access to government servers. This vulnerability is categorized as an improper access control…
Iranian Cyber Espionage Campaign Targeting Kuwait and Saudi Arabia’s Critical Infrastructure Recent reports from cybersecurity researchers have unveiled a sophisticated Iranian cyber espionage operation aimed at critical infrastructures in Kuwait and Saudi Arabia. The campaign, attributed to the Chafer APT (also referred to as APT39 or Remix Kitten), has been…
Network Firewalls, Network Access Control, Security Operations 117,000 Unpatched Firewalls Vulnerable to Exploitation Mathew J. Schwartz (euroinfosec) • December 22, 2025 Image: Shutterstock In a concerning development, a zero-day vulnerability affecting WatchGuard Firebox firewalls is under active exploitation by cybercriminals aiming to execute remote code. A patch has been released…
Human beings are intricate entities characterized by consciousness and emotion, capable of thought-driven actions. In the dynamic field of cybersecurity, humans remain a primary target for malicious actors. Over time, attackers have honed their abilities to exploit various aspects of human psychology, manipulating emotional triggers and biases to influence behaviors…
In a significant cybersecurity breach, hackers have compromised a large portion of Norway’s healthcare system, potentially affecting over half of the nation’s population. The attack targeted the Health South-East Regional Health Authority (RHF), resulting in the theft of personal information and medical records belonging to approximately 2.9 million individuals out…
Orbitz Data Breach Exposes Nearly 880,000 Payment Card Numbers Orbitz, a Chicago-based online travel agency and a subsidiary of Expedia, has disclosed a significant data breach affecting its legacy website. Approximately 880,000 payment card numbers have been compromised, potentially exposing customers’ sensitive financial information. Founded as a travel fare aggregator,…
The U.S. government has filed a superseding indictment against Julian Assange, the founder of WikiLeaks, alleging his involvement with hacking groups such as LulzSec and Anonymous. This updated indictment expands on the previous 18-count charges, initially levied in May 2019, though it does not introduce new allegations. The Department of…
A significant development in the cybersecurity landscape has emerged with the arraignment of Yevgeniy Aleksandrovich Nikulin, a 30-year-old Russian national accused of orchestrating major data breaches affecting LinkedIn, Dropbox, and Formspring in 2012. The breaches allegedly compromised the personal information of over 100 million users, raising substantial concerns about cybersecurity…
On Wednesday, Facebook disclosed a significant cybersecurity breach impacting its massive user base of 2.2 billion individuals. CEO Mark Zuckerberg announced that cybercriminals exploited the platform’s “Search” functionality, enabling them to access and scrape the public profile information of nearly all users. This troubling revelation highlights Facebook’s ongoing struggle to…
