Salesforce Detects Unauthorized Activity Linked to Gainsight Applications On November 21, Salesforce informed its customers of unusual activity tied to applications developed by Gainsight, which are directly managed by users. The detection of this atypical behavior raised concerns regarding potential unauthorized access to sensitive Salesforce data through its connection with…
Government, Healthcare, Industry Specific Also: Akira Ransomware Targets Healthcare, AI’s Sycophancy Becomes a Security Risk Anna Delaney (annamadeline) • November 21, 2025 Clockwise, from top left: Anna Delaney, Tony Morbin, Chris Riotta, and Marianne Kolbasuk McGee This week’s ISMG Editors’ Panel convened a discussion among four seasoned editors, who addressed…
T-Mobile Data Breach Exposes Sensitive Information of Customers and Employees T-Mobile, the prominent US telecommunications provider, has recently reported a serious data breach that has compromised the personal and account-related information of its customers and employees. This incident raises significant concerns about cybersecurity vulnerabilities in the telecom sector, particularly for…
Massive Data Exposure Affects Over 200 Million US Citizens In a significant breach of security, more than 200 million records containing sensitive information about US residents were left unprotected in an unsecured online database. The database, hosted on Google Cloud, required no password or authentication for access, making it vulnerable…
On Thursday, the Securities and Exchange Commission (SEC) announced the dismissal of its case against SolarWinds and its Chief Information Security Officer, Tim Brown, in relation to the company’s response to a significant Russian cyberespionage campaign that was revealed in 2020. This incident affected at least nine federal agencies and…
DoorDash has recently acknowledged a significant data breach impacting its customers, delivery personnel, and merchants. The compromised data includes personal details such as names, email addresses, phone numbers, and residential addresses. Fortunately, the company reported that no financial information or government ID data was accessed during this incident, and there…
Cybersecurity Alert: Unpatched Zero-Day Vulnerabilities Found in IBM Data Risk Manager A prominent cybersecurity researcher has unveiled technical details and proof of concept for four unpatched zero-day vulnerabilities in IBM’s enterprise security software, IBM Data Risk Manager (IDRM). This disclosure comes after IBM reportedly declined to acknowledge the responsibly submitted…
The U.S. Department of Justice has recently made significant announcements regarding two distinct cyberattack cases that highlight ongoing threats within the cybersecurity landscape. These cases involve a Swiss hacktivist charged with extensive cybercrimes and a Russian national who attempted to execute a ransomware attack against Tesla. In the first case,…
EasyJet Faces Cyber-Attack, Exposing Customer Data British low-cost airline EasyJet has confirmed that it has suffered a significant cyber-attack, which the company characterized as “highly sophisticated.” The breach has affected approximately 9 million customers, revealing their email addresses and travel information, as stated in an official release issued today. Among…
