Recent cybersecurity findings have revealed two significant vulnerabilities within Google’s Vertex AI machine learning platform. These exploits could be leveraged by malicious entities to escalate user privileges and exfiltrate sensitive models directly from the cloud environment. According to an analysis released by researchers from Palo Alto Networks Unit 42, exploiting…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Researchers Uncover Covert Chinese Access to US Service Provider Infrastructure Chris Riotta (@chrisriotta) • September 24, 2025 Image: Visut Chaivithooanukul/Shutterstock In a significant cybersecurity revelation, researchers have elucidated a long-running Chinese-linked cyberespionage campaign that infiltrated U.S. infrastructure and various enterprise service providers…
Cisco Confirms Cyberattack Linked to Yanluowang Ransomware Gang On May 24, 2022, Cisco Systems, a leading networking equipment provider, confirmed it fell victim to a cyberattack that exploited vulnerabilities in its digital infrastructure. The breach occurred after an attacker compromised a Cisco employee’s personal Google account, which contained synchronized passwords…
Data Breach at Stellantis Exposes Customer Information Stellantis, a prominent multinational automaker with brands like Chrysler, Jeep, and Fiat, has reported a data breach that implicates customer information following unauthorized access to a third-party service provider. This incident raises significant concerns regarding data security practices within the automotive industry and…
A significant security vulnerability, identified as a cross-site scripting (XSS) flaw, has been exploited in a widely-used virtual tour framework, allowing cybercriminals to inject harmful scripts into hundreds of websites. This malicious activity aims to manipulate search results and promote spam advertising on a large scale. According to a report…
Recent investigations have unveiled a serious vulnerability within Google’s “Sign in with Google” authentication system, which can be exploited through a peculiar loophole in domain ownership. This flaw potentially allows unauthorized users to access sensitive data associated with former employees of defunct companies. Dylan Ayrey, co-founder and CEO of Truffle…
Google has published its March 2025 Android Security Bulletin, addressing a staggering total of 44 vulnerabilities. Among these, two high-severity vulnerabilities have been flagged as actively exploited in real-world settings. This ongoing risk emphasizes the necessity for business owners to maintain vigilance in their cybersecurity posture. The first vulnerability, identified…
In a groundbreaking development, a new artificial intelligence-powered clinical decision support system is being designed by Google and NASA to assist astronauts in diagnosing and treating medical issues during space missions, even when they cannot communicate in real time with Earth. Chris Hein, field Chief Technology Officer at Google Public…
The Austrian privacy advocacy organization None of Your Business (noyb) has filed formal complaints against several notable companies, including TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi, asserting that these firms have breached data protection regulations established by the European Union by inappropriately transferring user data to China. These complaints, lodged…
