News

Sophos Firewall v22 is now available in early access

Bys s October 15, 2025

Secure by Design

News

GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages
Bys s April 22, 2025

Cybersecurity researchers have detailed a now-patched vulnerability in Google Cloud Platform (GCP) that could have enabled an attacker to elevate their privileges in the Cloud Composer workflow orchestration service that’s based on Apache Airflow. “This vulnerability lets attackers with edit permissions in Cloud Composer to escalate their access to the default Cloud Build service account,…

Read More GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages
News

⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More
Bys s December 29, 2025

Last week’s cyber news in 2025 was not about one big incident. It was about many small cracks opening at the same time. Tools people trust every day behave in unexpected ways. Old flaws resurfaced. New ones were used almost immediately. A common theme ran through it all in 2025. Attackers moved faster than fixes….

Read More ⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More
News

North Dakota Enacts Financial Data Security and Data Breach Notification Requirements
Bys s June 3, 2025

Hunton Andrews Kurth writes: On April 11, 2025, the North Dakota governor signed H.B. 1127 (the “Act”), which establishes new data security measures and breach notification obligations for financial corporations. Covered entities include those that are regulated by the North Dakota Department of Financial Institutions and exclude financial institutions, such as banks, and credit unions. Key requirements,…

Read More North Dakota Enacts Financial Data Security and Data Breach Notification Requirements
News

A single compromised account gave hackers access to 1.2 million French banking records
Bys s February 20, 2026

Emma Woollacott reports: Credentials stolen from a single government official enabled threat actors to access a French national database containing data on more than 1.2 million bank accounts. The attackers were able to access the Fichier des Comptes Bancaires et Assimilés (FICOBA) database, which contains files on all bank accounts opened in France. Stolen credentials……

Read More A single compromised account gave hackers access to 1.2 million French banking records
News

Are Scattered Spider and ShinyHunters one group or two? And who did France arrest?
Bys s August 3, 2025

When DataBreaches was a kid, the “new math” they were experimenting with had us learning binary and other systems. It didn’t go over well with us, our teachers, or our parents back then. Now the “new math” for me is UNCs — specifically 6040, 5537, 3944, and 6240. 6040+5537+3944 +6240 = Scattered Spider + ShinyHunters…

Read More Are Scattered Spider and ShinyHunters one group or two? And who did France arrest?
News

Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
Bys s January 7, 2025

Cybersecurity researchers have uncovered firmware security vulnerabilities in the Illumina iSeq 100 DNA sequencing instrument that, if successfully exploited, could permit attackers to brick or plant persistent malware on susceptible devices. “The Illumina iSeq 100 used a very outdated implementation of BIOS firmware using CSM [Compatibility Support Mode] mode and without Secure Boot or standard

Read More Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers

Similar Posts