Recent reports from cybersecurity firm Field Effect have revealed that malicious actors are actively exploiting newly discovered vulnerabilities in SimpleHelp’s Remote Monitoring and Management (RMM) software, likely to pave the way for ransomware attacks. The vulnerabilities in question—CVE-2024-57726, CVE-2024-57727, and CVE-2024-57728—were uncovered by Horizon3.ai last month and patched in versions…
Strengthening Operational Technology Security with AI and Machine Learning As cyber threats targeting operational technology (OT) continue to escalate, organizations are grappling with the imperative of bolstering their cybersecurity measures. A recent article highlights that enhancing protection requires not only smarter threat intelligence but also accelerated capabilities for detection and…
Artificial Intelligence & Machine Learning, Governance & Risk Management, Next-Generation Technologies & Secure Development Pentesting Tools Reveal Vulnerabilities, Yet Demand Remains for White Hat Skills Brandy Harris • September 24, 2025 In the past, vulnerability management operated on a predictable schedule—quarterly scans, annual penetration tests, and slow remediation timelines. Ethical…
Cybersecurity experts have identified a prolonged software supply chain breach affecting the npm package registry, with the attack persisting for over a year. What initially appeared to be a benign library evolved into a tool embedding malicious code designed to siphon sensitive data and mine cryptocurrency from compromised systems. The…
Recent cyber activity has revealed significant vulnerabilities and breaches affecting U.S. federal agencies and corporations, highlighting the ongoing threats in the cybersecurity landscape. The Cybersecurity and Infrastructure Security Agency (CISA) reported that hackers exploited a known vulnerability in an open-source geospatial data server, leading to the deployment of a web…
Recent cybersecurity incidents underscore a harsh reality: even the most well-equipped organizations are susceptible to breaches. Despite investing in advanced security tools, comprehensive training for staff, and implementing robust defense mechanisms, many firms continue to fall victim to cyber attacks. The question arises: what factors contribute to these breaches? Attackers…
A kiosk offers LG Uplus and KT Corp. cell phone plans within an Army and Air Force Exchange Service location at Osan Air Base, South Korea, on September 23, 2025. (Trevares Johnson/Stars and Stripes) The South Korean government has initiated an investigation into a series of data breaches affecting three…
New Cyber Threat Campaign Targets European Healthcare Sector with Advanced Ransomware Techniques A newly identified threat actor has launched a campaign aimed at European organizations, particularly within the healthcare industry. This operation, dubbed “Green Nailao” by Orange Cyberdefense CERT, utilizes the PlugX and ShadowPad malware, with the final stage involving…
The recent discovery of a SIM farm operation in New York has highlighted a long-standing issue within the cybercrime landscape. SIM farms, which consist of large collections of SIM cards that can be remotely managed, have been exploited by criminals for various illicit activities, including spam distribution, swatting incidents, and…
