News

Sophos ranked #1 overall for Firewall, MDR, and EDR in the G2 Spring 2025 Reports

Bys s March 27, 2025

Also ranked the top solution across 53 global reports.

News

Oracle Health breach compromises patient data at US hospitals
Bys s March 28, 2025

Oracle Health is becoming this year’s poster child for how NOT to respond to an incident. Lawrence Abrams reports: A breach at Oracle Health impacts multiple US healthcare organizations and hospitals after a threat actor stole patient data from legacy servers. Oracle Health has not yet publicly disclosed the incident, but in private communications sent to…

Read More Oracle Health breach compromises patient data at US hospitals
News

CISA Adds Erlang SSH and Roundcube Flaws to Known Exploited Vulnerabilities Catalog
Bys s June 10, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two critical security flaws impacting Erlang/Open Telecom Platform (OTP) SSH and Roundcube to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities in question are listed below – CVE-2025-32433 (CVSS score: 10.0) – A missing authentication for a critical

Read More CISA Adds Erlang SSH and Roundcube Flaws to Known Exploited Vulnerabilities Catalog
News

Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners
Bys s April 2, 2026

A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and cryptocurrency miners since November 2023. “Beyond cryptomining, the threat actor monetizes infections through CPA (Cost Per Action) fraud, directing victims to content locker pages under the guise of software registration,” Elastic

Read More Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners
News

Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks
Bys s August 27, 2025

The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments. “Unlike traditional on-premises ransomware, where the threat actor typically deploys malware to encrypt critical files across endpoints within the compromised network and then negotiates for a decryption key,

Read More Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks
News

The High-Stakes Disconnect For ICS/OT Security
Bys s January 15, 2025

Why does ICS/OT need specific controls and its own cybersecurity budget today? Because treating ICS/OT security with an IT security playbook isn’t just ineffective—it’s high risk. In the rapidly evolving domain of cybersecurity, the specific challenges and needs for Industrial Control Systems (ICS) and Operational Technology (OT) security distinctly stand out from traditional IT security….

Read More The High-Stakes Disconnect For ICS/OT Security
News

OpenAI to Show Ads in ChatGPT for Logged-In U.S. Adults on Free and Go Plans
Bys s January 17, 2026

OpenAI on Friday said it would start showing ads in ChatGPT to logged-in adult U.S. users in both the free and ChatGPT Go tiers in the coming weeks, as the artificial intelligence (AI) company expanded access to its low-cost subscription globally. “You need to know that your data and conversations are protected and never sold…

Read More OpenAI to Show Ads in ChatGPT for Logged-In U.S. Adults on Free and Go Plans

Similar Posts