Microsoft has recently escalated the severity rating of a previously patched security vulnerability from September 2022, now classifying it as “Critical.” This update follows findings that the vulnerability poses risks of remote code execution, significantly heightening its threat level. Identified as CVE-2022-37958 with a CVSS score of 8.1, the issue…
Fraud Management & Cybercrime, Governance & Risk Management, Remote Workforce Encouraging Thorough Verification of Candidates’ Identities Greg Sirico • February 20, 2026 An AI-manipulated image showcasing the deceptive capabilities used by certain North Korean workers. (Image: KnowBe4) Remote IT workers from North Korea present an intricate challenge for employers. Known…
Cybersecurity Alert: CCleaner Hack Targets Major Tech Firms A group of unidentified hackers recently compromised the download server of CCleaner, a widely used system optimization application, to distribute a harmful version of the software. This malicious version affected at least 20 significant technology companies, functioning as a conduit for a…
Cryptocurrency Fraud, Fraud Management & Cybercrime, Next-Generation Technologies & Secure Development Insights from Ruchin Kumar at Futurex on CBDC Adoption and HSM Security for Transactions Brian Pereira (creed_digital) • February 13, 2026 Ruchin Kumar, Vice President – South Asia, Futurex Central Bank Digital Currencies (CBDCs) are increasingly being recognized as…
In its March 2023 Patch Tuesday update, Microsoft disclosed fixes for 80 security vulnerabilities, two of which have been actively exploited in the wild. These vulnerabilities target critical components within the Microsoft ecosystem, with eight categorized as Critical, 71 as Important, and one as Moderate in severity. This update continues…
Cybersecurity Incident Roundup: Key Developments in Data Breaches and Cyber-attacks Recent weeks have seen significant cybersecurity incidents impacting various sectors, with agencies and organizations navigating the evolving landscape of cyber threats. Among the most pressing events, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued warnings following a cyberattack…
In 2022, a total of 55 zero-day vulnerabilities were actively exploited in the wild, primarily affecting software developed by major tech companies including Microsoft, Google, and Apple. This figure shows a decrease from the previous year’s alarming count of 81 zero-day exploits, yet it highlights an ongoing trend where threat…
Microsoft recently released important guidance for its users following the discovery of a significant vulnerability in Outlook, designated as CVE-2023-23397, which carries a high CVSS score of 9.8. This critical flaw primarily involves privilege escalation, enabling attackers to exploit it for the theft of NT LAN Manager (NTLM) hashes, potentially…
Chinese Cybercrime Group Targets Database Servers Globally Recent investigations by security firm GuardiCore Labs have uncovered a series of extensive cyber-attack campaigns spearheaded by a prominent Chinese criminal organization. These attacks, which utilize multiple innovative techniques, are primarily aimed at database servers for the illicit purposes of mining cryptocurrencies, extracting…
