Kazakhstan-Born Hacker Enters Guilty Plea in Massive Yahoo Data Breach Karim Baratov, a 22-year-old Canadian citizen originally from Kazakhstan, has pleaded guilty to charges stemming from a significant data breach that compromised all three billion Yahoo accounts in 2014. The U.S. Justice Department previously announced charges against Russian intelligence officers…
Coupang Data Breach Highlights Cybersecurity Shortcomings and Regulatory Challenges A significant data breach at Coupang, one of South Korea’s largest e-commerce platforms, has raised critical concerns about the company’s approach to cybersecurity and its accountability in safeguarding customer information. This incident is noteworthy not just as a cybersecurity issue but…
Shortly after cybersecurity researchers raised warnings about two significant vulnerabilities in the SaltStack configuration framework, an ongoing campaign has already begun exploiting these flaws, targeting organizations such as LineageOS, Ghost, and DigiCert. The vulnerabilities, identified as CVE-2020-11651 and CVE-2020-11652, permit attackers to execute arbitrary code on remote servers operating within…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development, The Future of AI & Cybersecurity Acquisition Streamlines Security Operations From Asset Discovery to Remediation Jennifer Lawinski • December 23, 2025 Image: Shutterstock ServiceNow, a leader in artificial intelligence software, has made a substantial move in the cybersecurity landscape by…
Data Breach at Consonus Healthcare Services Affects Thousands of Employees Consonus Healthcare Services has come under scrutiny following allegations in a recent lawsuit that the company delayed notifying current and former employees about a significant data breach affecting their personal information. The breach reportedly occurred in early August, but it…
PayPal Reports Data Breach Affecting 1.6 Million Customers of TIO Networks In a significant security incident, PayPal has revealed that a data breach may have compromised personally identifiable information for approximately 1.6 million customers associated with TIO Networks, a payment processing company it acquired in July 2017 for $233 million.…
Qualcomm Issues Security Advisory for High-Severity Flaws In recent developments, chipmaker Qualcomm has disclosed significant information regarding three critical security vulnerabilities that were reportedly exploited in targeted attacks as of October 2023. The company emphasized that these flaws were subjected to “limited, targeted exploitation,” raising alarms about their implications for…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding the active exploitation of a high-severity vulnerability in Adobe ColdFusion, identified as CVE-2023-26360. Unidentified cyber actors are reportedly leveraging this flaw to gain unauthorized access to government servers. This vulnerability is categorized as an improper access control…
Iranian Cyber Espionage Campaign Targeting Kuwait and Saudi Arabia’s Critical Infrastructure Recent reports from cybersecurity researchers have unveiled a sophisticated Iranian cyber espionage operation aimed at critical infrastructures in Kuwait and Saudi Arabia. The campaign, attributed to the Chafer APT (also referred to as APT39 or Remix Kitten), has been…
