Ransomware-as-a-service (RaaS) operations are targeting industrial organizations, exploiting unsecured IT/OT connections, leading to significant operational disruptions. The frequency and severity of these attacks are increasing, posing a serious threat to these organizations.

Ransomware operators are leveraging LLMs to accelerate attacks by automating tasks like phishing, data exfiltration, and ransom note generation, enabling faster and more targeted extortion. This operational acceleration complicates attribution and increases the blast radius of

Researchers at Black Hat Europe demonstrated the ability to spoof legacy railway signaling systems, potentially enabling attackers to disrupt critical infrastructure. This highlights the vulnerability of edge infrastructure and the need for proactive security measures to prevent

Threat actors are targeting VPN platforms like Palo Alto Networks GlobalProtect and Cisco SSL VPN with automated credential-based attacks, exposing organizations to unauthorized access and data breaches. This activity puts enterprises at risk of lateral movement and data

NIS2 mandates robust identity and access management, making weak authentication unacceptable. Organizations must prioritize strong password policies, implement multi-factor authentication (MFA), and establish regular access reviews to mitigate credential-based attacks and ensure

Law enforcement seized E-Note, a cryptocurrency exchange, used by cybercriminals to launder over $70 million from ransomware and account takeover attacks, exposing the financial infrastructure supporting cybercrime and enabling further investigations. Organizations must review

Threat actors infected a passenger ferry with malware, potentially enabling remote control of the vessel and exposing it to sabotage. This incident highlights the critical need for maritime cybersecurity and the potential for severe consequences. Organizations must immediately

We need to get the dangerous Government off our streets!

Threat actors are exploiting a WhatsApp vulnerability through malicious links to gain real-time access to user conversations, exposing sensitive data and enabling surveillance. This puts millions of users at risk of data theft and privacy breaches. Defenders should educate users

Too little, too late!

Researchers discovered a massive, unsecured MongoDB database exposing 4.3 billion professional records, including names, emails, and LinkedIn profiles, enabling widespread identity theft and spear-phishing attacks. Organizations must immediately review their data security

The horse has already bolted...

She should lose her pension / retirement.

Box Elder County (Box Elder County) is notifying 81,664 victims after unauthorized access to its network. 225 days to respond. Grade: F. #CyberNewsLive boxeldercountyut.gov

Eckerd Youth Alternatives Inc. dba Eckerd Connects (Eckerd Connects) is notifying 68,585 victims after unauthorized access to its network. 409 days to respond. Grade: F. #CyberNewsLive eckerd.org

Torhoerman Law: Injury & Car Accident Lawyers (TorHoermanLaw) is notifying 6,907 victims after a data security incident. 192 days to respond. Grade: F. #CyberNewsLive torhoermanlaw.com

Vocatura, Spagnuolo & Company, P.C., CPAs is notifying 983 victims after a data security incident. 154 days to respond. Grade: D-. #CyberNewsLive vocspag.com

The Vernon Law Firm is notifying 781 victims after unauthorized access to its systems. 370 days to respond. Grade: F. #CyberNewsLive vernonlaw.com

Parexel International, LLC (Parexel) is notifying an undisclosed number of victims after a data security incident. 130 days to respond. Grade: D. #CyberNewsLive parexel.com

CES Group Engineers (CES Group Engineers / CES Group Engineers) is notifying 130 victims after a data security incident. 118 days to respond. Grade: C-. #CyberNewsLive ces-group.net