Scott MacDonald: Leader in Cybersecurity and Risk Management at PwC Principal, Cyber, Risk and Regulatory Scott MacDonald serves as a Principal in PwC’s Cybersecurity practice, boasting two decades of expertise in large-scale Identity and Access Management (IAM) initiatives, particularly within the healthcare sector. His career has been marked by the…
Recent findings have uncovered multiple security vulnerabilities within the open-source Netgate pfSense firewall solution. These vulnerabilities could potentially be combined by an attacker, allowing them to execute arbitrary commands on affected devices. The identified issues involve two reflected cross-site scripting (XSS) issues alongside a command injection vulnerability, as reported by…
Recent findings have revealed two security vulnerabilities in Microsoft Windows that have since been patched but could have been exploited by attackers to carry out remote code execution (RCE) on Outlook email clients without any user intervention. This information was disclosed by Akamai researcher Ben Barnea, who discovered the flaws…
Artificial Intelligence & Machine Learning, General Data Protection Regulation (GDPR), Next-Generation Technologies & Secure Development Europe’s Challenges Extend Beyond Regulatory Revisions Pam Baker • December 19, 2025 Image: Shutterstock A key assumption driving a proposed overhaul of European technology regulations is the belief that excessive bureaucracy hinders the region’s progress…
Facebook has faced scrutiny following revelations about its data sharing practices, including the inappropriate sharing of user data with over 60 device manufacturers such as Amazon, Apple, Microsoft, BlackBerry, and Samsung. A detailed report published by The New York Times outlined these partnerships, which aimed to incorporate Facebook features like…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Cisco Talos Links Ongoing Attacks to UAT-9686 Akshaya Asokan (asokan_akshaya) • December 18, 2025 Image: Anucha Cheechang/Shutterstock Recent reports indicate that likely state-sponsored hackers from China are taking advantage of an unpatched vulnerability in Cisco email appliances,…
Recent disclosures from US intelligence agencies reveal an alarming resurgence of a 12-year-old strain of malware, known as “Taidoor.” This variant is believed to be employed by state-sponsored actors from China, targeting a wide array of institutions, including government bodies, corporations, and think tanks. The malware, which has been active…
In a troubling revelation, Facebook has acknowledged that it provided various technology companies and app developers with continued access to user data, despite its public assertions in 2015 that such access had been curtailed. This admission offers a rare glimpse into how the social media giant manages personal information within…
Microsoft Phases Out Vulnerable RC4 Encryption Standard Amid Rising Security Concerns In a significant move towards bolstering cybersecurity, Microsoft has announced the discontinuation of the outdated and insecure RC4 encryption cipher, which has been a default feature in Windows for over 26 years. This decision comes in the wake of…
