Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Researchers Uncover Covert Chinese Access to US Service Provider Infrastructure Chris Riotta (@chrisriotta) • September 24, 2025 Image: Visut Chaivithooanukul/Shutterstock In a significant cybersecurity revelation, researchers have elucidated a long-running Chinese-linked cyberespionage campaign that infiltrated U.S. infrastructure and various enterprise service providers…
Cisco Confirms Cyberattack Linked to Yanluowang Ransomware Gang On May 24, 2022, Cisco Systems, a leading networking equipment provider, confirmed it fell victim to a cyberattack that exploited vulnerabilities in its digital infrastructure. The breach occurred after an attacker compromised a Cisco employee’s personal Google account, which contained synchronized passwords…
Data Breach at Stellantis Exposes Customer Information Stellantis, a prominent multinational automaker with brands like Chrysler, Jeep, and Fiat, has reported a data breach that implicates customer information following unauthorized access to a third-party service provider. This incident raises significant concerns regarding data security practices within the automotive industry and…
A significant security vulnerability, identified as a cross-site scripting (XSS) flaw, has been exploited in a widely-used virtual tour framework, allowing cybercriminals to inject harmful scripts into hundreds of websites. This malicious activity aims to manipulate search results and promote spam advertising on a large scale. According to a report…
Recent investigations have unveiled a serious vulnerability within Google’s “Sign in with Google” authentication system, which can be exploited through a peculiar loophole in domain ownership. This flaw potentially allows unauthorized users to access sensitive data associated with former employees of defunct companies. Dylan Ayrey, co-founder and CEO of Truffle…
Google has published its March 2025 Android Security Bulletin, addressing a staggering total of 44 vulnerabilities. Among these, two high-severity vulnerabilities have been flagged as actively exploited in real-world settings. This ongoing risk emphasizes the necessity for business owners to maintain vigilance in their cybersecurity posture. The first vulnerability, identified…
In a groundbreaking development, a new artificial intelligence-powered clinical decision support system is being designed by Google and NASA to assist astronauts in diagnosing and treating medical issues during space missions, even when they cannot communicate in real time with Earth. Chris Hein, field Chief Technology Officer at Google Public…
The Austrian privacy advocacy organization None of Your Business (noyb) has filed formal complaints against several notable companies, including TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi, asserting that these firms have breached data protection regulations established by the European Union by inappropriately transferring user data to China. These complaints, lodged…
Recent investigations have uncovered the involvement of former Conti cybercrime group members in multiple campaigns targeting Ukraine from April through August 2022. According to Google’s Threat Analysis Group (TAG), these cyber operations reflect a strategic continuation of prior attacks against the Eastern European nation amidst the ongoing Russo-Ukrainian conflict. The…
