A recent malware campaign has been uncovered, targeting South Korean organizations, specifically attributed to the North Korean hacking group Andariel. This development highlights the ongoing evolution of tactics employed by state-sponsored actors, particularly within the Lazarus Group, which has been consistently adapting its methodologies to enhance operational effectiveness. Kaspersky, a…
In a significant cybersecurity incident, the FBI has revealed that in 2023, an individual named Martin sought to align himself with the notorious BlackCat ransomware group. This group is known for providing a comprehensive malware service, including access to sophisticated ransomware code and a dark web infrastructure, in exchange for…
Shamis & Gentile P.A., a leading class action law firm focused on data breach litigation, has initiated an investigation into a significant data breach at Central Jersey Medical Center (CJMC). Individuals affected by this breach may find that their sensitive personal information has been compromised, potentially making them eligible for…
Fraud Management & Cybercrime, Government, Industry Specific Statewide Cyber Breach Affects 60 Agencies Before Ransomware Implementation Chris Riotta (@chrisriotta) • November 6, 2025 Image: Shutterstock/ISMG Recent analyses reveal that a ransomware threat actor compromised Nevada’s statewide government systems for several months prior to executing a ransomware attack. An after-action report…
In today’s rapidly evolving cybersecurity landscape, organizations face a multitude of threats that range from phishing attacks to sophisticated ransomware strategies. The constant evolution of these threats means that cybersecurity teams must remain vigilant, as adversarial groups relentlessly refine their methods to breach systems. Currently, numerous hacking groups are dedicated…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Governance & Risk Management Google Issues Warning on Emerging Cyber Threats Akshaya Asokan (asokan_akshaya), David Perera (@daveperera) • November 4, 2025 Image: Shutterstock/ISMG A recent report from Google highlights critical vulnerabilities in the virtualization technology that supports modern IT frameworks, calling attention…
The Office of the Australian Information Commissioner (OAIC) has unveiled its most recent Notifiable Data Breaches (NDB) report and dashboard for January to June 2025. This report reveals that the frequency of reported data breaches is persistently high across both public and private sectors in Australia. The updated dashboard highlights…
The U.S. government, along with critical allies such as the European Union, the United Kingdom, and NATO, has officially linked a substantial cyberattack on Microsoft Exchange email servers to state-sponsored hacking groups associated with China’s Ministry of State Security (MSS). The attack exploited zero-day vulnerabilities in Microsoft Exchange, which were…
In a recent 8-K filing with the U.S. Securities and Exchange Commission, healthcare technology provider Omnicell disclosed that its systems and services were subjected to a ransomware attack. This incident has significant implications, as it affects both the company’s operational integrity and the sensitive data it manages. Upon identifying the…
