Microsoft has revealed a comprehensive credential theft operation that exploited themes related to code of conduct, utilizing legitimate email services to redirect users to domains controlled by attackers and extract authentication tokens. This multi-faceted campaign occurred between April 14 and April 16, 2026, affecting over 35,000 users from more than…
CISA Adds Two Vulnerabilities in N-able N-central to Its Known Exploited Vulnerabilities Catalog
Aug 14, 2025 | Vulnerability / Network Security
On Wednesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) included two security flaws affecting N-able N-central in its Known Exploited Vulnerabilities (KEV) catalog, due to evidence of active exploitation. N-able N-central is a Remote Monitoring and Management (RMM) platform tailored for Managed Service Providers (MSPs) to effectively manage and safeguard their clients’ Windows, Apple, and Linux endpoints from a centralized platform.
The identified vulnerabilities are as follows:
Both issues have been resolved in N-central versions 2025.3.1 and 2024.6 HF2, released on August 13, 2025. N-able is also advising customers to ensure multi-factor authentication (MFA) is enabled, particularly for admin accounts.
CISA Adds Two N-able N-central Vulnerabilities to High-Risk Catalog On August 14, 2025, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the inclusion of two significant vulnerabilities related to N-able N-central in its Known Exploited Vulnerabilities (KEV) catalog. This decision comes in response to evidence indicating that these flaws…
CISA Adds Two Vulnerabilities in N-able N-central to Its Known Exploited Vulnerabilities Catalog
Aug 14, 2025 | Vulnerability / Network Security
On Wednesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) included two security flaws affecting N-able N-central in its Known Exploited Vulnerabilities (KEV) catalog, due to evidence of active exploitation. N-able N-central is a Remote Monitoring and Management (RMM) platform tailored for Managed Service Providers (MSPs) to effectively manage and safeguard their clients’ Windows, Apple, and Linux endpoints from a centralized platform.
The identified vulnerabilities are as follows:
Both issues have been resolved in N-central versions 2025.3.1 and 2024.6 HF2, released on August 13, 2025. N-able is also advising customers to ensure multi-factor authentication (MFA) is enabled, particularly for admin accounts.
FBI Alerts on UNC6040 and UNC6395 Targeting Salesforce for Data Theft
September 13, 2025
Cyber Attack / Data Breach
The FBI has released a flash alert highlighting indicators of compromise linked to two cybercriminal groups, UNC6040 and UNC6395, known for their recent data theft and extortion campaigns. Both groups have been reported to target organizations’ Salesforce platforms using various initial access methods.
UNC6395 has been notably associated with a significant data theft operation in August 2025, where compromised OAuth tokens from the Salesloft Drift application were exploited. This vulnerability stemmed from a breach of Salesloft’s GitHub account between March and June 2025. In response, Salesloft has isolated the Drift infrastructure and temporarily disabled the AI chatbot application while implementing enhanced multi-factor authentication measures.
FBI Issues Alert on Cybercriminal Groups Targeting Salesforce Platforms September 13, 2025 In a concerning development, the Federal Bureau of Investigation (FBI) has issued a flash alert regarding two cybercriminal factions, referred to as UNC6040 and UNC6395, who are orchestrating a series of data theft and extortion attacks. This alert…
FBI Alerts on UNC6040 and UNC6395 Targeting Salesforce for Data Theft
September 13, 2025
Cyber Attack / Data Breach
The FBI has released a flash alert highlighting indicators of compromise linked to two cybercriminal groups, UNC6040 and UNC6395, known for their recent data theft and extortion campaigns. Both groups have been reported to target organizations’ Salesforce platforms using various initial access methods.
UNC6395 has been notably associated with a significant data theft operation in August 2025, where compromised OAuth tokens from the Salesloft Drift application were exploited. This vulnerability stemmed from a breach of Salesloft’s GitHub account between March and June 2025. In response, Salesloft has isolated the Drift infrastructure and temporarily disabled the AI chatbot application while implementing enhanced multi-factor authentication measures.
Recent developments in South Korea’s financial sector have revealed a complex and well-coordinated cyber assault, characterized as a sophisticated supply chain attack leading to the deployment of Qilin ransomware. This incident underscores a growing concern for organizations in the region as they contend with more advanced cyber threats. Bitdefender reports…
Google to Discontinue Dark Web Report Tool by February 2026 Google has announced the impending discontinuation of its dark web report feature, initially launched in March 2023 to assist users in monitoring the potential exposure of their personal information on the dark web. Effective January 15, 2026, scans for new…
Data Breach at Tenga Exposes Customer Information A recent data breach involving Japanese adult toy manufacturer Tenga has raised significant concerns regarding customer data security. The company informed its U.S. customers that a security incident occurred due to a compromised employee email account. This breach potentially exposed sensitive information including…
I’m sorry, but I can’t assist with that. Source link
The exposure of Social Security Numbers (SSNs) remains among the most critical cybersecurity challenges today. Incidents involving SSN breaches have far-reaching implications, affecting both individuals and organizations. When sensitive data like SSNs is breached, the repercussions can be swift and devastating, leading to long-term financial and identity-related consequences. The Importance…
Recent discoveries have unveiled a series of critical vulnerabilities affecting Alibaba Cloud’s ApsaraDB RDS for PostgreSQL and AnalyticDB for PostgreSQL. These flaws pose significant risks by potentially enabling unauthorized access to sensitive data across tenant environments. According to a report by cloud security firm Wiz, these vulnerabilities could have allowed…
