In today’s interconnected world, smartphones have become indispensable tools, playing critical roles in various daily activities, from food delivery to medical appointments. However, the increasing reliance on these devices raises urgent concerns about their security vulnerabilities. Recent findings from Oversecured, a cybersecurity startup, underscore the profound risks associated with mobile…
Iranian Cyber Espionage Group Targets Aerospace Defense Sector with Social Engineering Tactics An Iranian cyber espionage group has been implicated in a sophisticated attack designed to plant malware on the systems of an employee at an aerospace defense contractor. This operation, which has transpired over several years, underscores the evolving…
Professional Certifications & Continuous Training, Recruitment & Reskilling Strategy, Training & Security Leadership Midsize Businesses Require Skilled Cybersecurity Professionals as Threat Dynamics Evolve Brandy Harris • October 29, 2025 Image: Shutterstock As larger corporations fortify their cybersecurity defenses and minimize ransom payouts, ransomware attackers are increasingly targeting midsize organizations. These…
In recent years, the proliferation of compromised credentials on various platforms has reached alarming levels, affecting organizations globally. Reports indicate that these credentials are frequently found on the dark web, clear web, paste sites, or in data dumps shared among cybercriminals. Such information is often exploited for account takeover attacks,…
Healthcare, Industry Specific, Litigation HCA Healthcare Reaches Multimillion-Dollar Settlement Following 2023 Data Breach Marianne Kolbasuk McGee (HealthInfoSec) • October 31, 2025 HCA Healthcare has agreed to settle a class action lawsuit stemming from a 2023 email breach impacting approximately 11.3 million patients. (Image: HCA) This week, a federal court in…
In a significant shift in policy, the Federal Communications Commission (FCC) plans to vote in November on the repeal of a key ruling that mandates telecom providers to bolster the security of their networks. This move responds to lobbying efforts from major Internet service providers, raising concerns among cybersecurity experts…
Governance & Risk Management, Operational Technology (OT), Video NAV Canada CISO Tom Bornais Discusses the Importance of Maintaining IT and OT Operations Joshua Cunningham-Marsh • October 31, 2025 Tom Bornais, CISO, NAV Canada As cyber threats evolve in sophistication, ensuring the security of vital infrastructure such as aviation systems necessitates…
Governance & Risk Management, Regulation, Standards, Regulations & Compliance Ed Parsons from Integrity Discusses the Impact of Regulations on Security Approaches Akshaya Asokan (asokan_akshaya) • October 30, 2025 Ed Parsons, Chief Operations Officer, Integrity The Network and Information Systems Directive 2 (NIS2 Directive) is catalyzing significant advancements in vulnerability management…
Businesses concerned about cybersecurity may already be familiar with Have I Been Pwned, a site dedicated to notifying users about data breaches. Recently, Proton, the company behind ProtonMail, launched its own data breach alert service named the Data Breach Observatory. This platform aims to provide near real-time notifications to individuals…
