In a recent development, cybersecurity researchers uncovered an ongoing surveillance initiative targeting Colombian government institutions and private enterprises within the energy and metallurgical sectors. This attack campaign, referred to as “Operation Spalax,” was detailed in a report released Tuesday by ESET, a Slovak cybersecurity firm. The operation first began in…
Flipboard Faces Data Breach, Users’ Accounts Compromised Flipboard, a widely-used social sharing and news aggregation platform with a user base exceeding 150 million, has reported a significant data breach affecting its user accounts. The incident came to light following a public notification issued by the company, revealing that unauthorized access…
Critical Infrastructure Security, Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Industry Advocates for Voluntary Measures Amid Security Concerns Chris Riotta (@chrisriotta) • December 2, 2025 Image: Shutterstock During a recent Senate hearing, experts highlighted that U.S. telecommunications networks remain susceptible to foreign threats, primarily from nation-states like China. Concerns…
Nigeria Sees Unprecedented Spike in Cyber Threats Amid Evolving Attack Strategies In the third quarter of this year, Nigeria faced an alarming surge in cyber threats, with data breaches impacting local entities increasing by a staggering 1,047% compared to the previous quarter. This dramatic rise was highlighted in the newly…
Recent findings by cybersecurity researchers have unveiled vulnerabilities in the Hugging Face Safetensors conversion service, potentially allowing adversaries to hijack user-submitted machine learning models, effectively leveraging them for supply chain attacks. The implications of this discovery raise significant concerns for businesses relying on the Hugging Face platform for their machine…
Recent revelations by cybersecurity experts have uncovered a series of sophisticated cyberattacks orchestrated by a Chinese threat actor, targeting various organizations in Russia and Hong Kong. This campaign has been noted for the deployment of an undocumented backdoor, showcasing the evolving nature of threats in today’s digital landscape. Researchers from…
Recent Security Flaw Uncovered in LiteSpeed Cache Plugin for WordPress A significant security vulnerability has been identified in the LiteSpeed Cache plugin for WordPress, which could enable unauthorized users to escalate their privileges on affected sites. This flaw, designated as CVE-2023-40000, was discovered in October 2023 during an update to…
Recent investigations have uncovered two distinct cyber espionage groups allegedly linked to China: UNC5325 and UNC3886, both exploiting vulnerabilities in Ivanti Connect Secure VPN appliances. UNC5325 is reported to have utilized the critical vulnerability tracked as CVE-2024-21893, distributing various malware strains, including LITTLELAMB.WOOLTEA and PITDOG, among others. According to Mandiant,…
Massive Data Breach at Coupang Sparks Urgent Call for Digital Privacy Reform in South Korea In a significant turn of events, South Korean President Lee Jae Myung has urged immediate reforms to enhance digital privacy standards following a devastating data breach that compromised the information of over 33 million customers…
