News

EEOC experienced security incident involving an Opexus employee’s ‘unauthorized’ access, email says

Bys s January 10, 2026

David DiMolfetta reports: The Equal Employment Opportunity Commission was impacted in an internal data security incident that occurred around a year ago, and involved a contractor’s employees mishandling sensitive information in one of the agency’s systems, according to a notification email obtained by Nextgov/FCW. The breach in the EEOC’s Public Portal system, which the agency was…

Source

News

Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools
Bys s November 26, 2025

If you’re using community tools like Chocolatey or Winget to keep systems updated, you’re not alone. These platforms are fast, flexible, and easy to work with—making them favorites for IT teams. But there’s a catch… The very tools that make your job easier might also be the reason your systems are at risk. These tools…

Read More Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools
News

Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware
Bys s October 7, 2025

Microsoft on Monday attributed a threat actor it tracks as Storm-1175 to the exploitation of a critical security flaw in Fortra GoAnywhere software to facilitate the deployment of Medusa ransomware. The vulnerability is CVE-2025-10035 (CVSS score: 10.0), a critical deserialization bug that could result in command injection without authentication. It was addressed in version 7.8.4,…

Read More Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware
News

Over 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and Cryptominers
Bys s March 4, 2025

Internet service providers (ISPs) in China and the West Coast of the United States have become the target of a mass exploitation campaign that deploys information stealers and cryptocurrency miners on compromised hosts. The findings come from the Splunk Threat Research Team, which said the activity also led to the delivery of various binaries that…

Read More Over 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and Cryptominers
News

Humboldt Independent Practice Association’s breach notification leaves questions unanswered
Bys s February 15, 2025

On November 11, 2024, Humboldt Independent Practice Association (Humboldt IPA) submitted a breach report to HHS that used a placeholder of 500 for the number of patients affected. All we knew from HHS’s entry was that it was some kind of hacking or IT incident involving protected health information located in email. The California entity’s…

Read More Humboldt Independent Practice Association’s breach notification leaves questions unanswered
News

PlayPraetor Android Trojan Infects 11,000+ Devices via Fake Google Play Pages and Meta Ads
Bys s August 4, 2025

Cybersecurity researchers have discovered a nascent Android remote access trojan (RAT) called PlayPraetor that has infected more than 11,000 devices, primarily across Portugal, Spain, France, Morocco, Peru, and Hong Kong. “The botnet’s rapid growth, which now exceeds 2,000 new infections per week, is driven by aggressive campaigns focusing on Spanish and French speakers, indicating a…

Read More PlayPraetor Android Trojan Infects 11,000+ Devices via Fake Google Play Pages and Meta Ads
News

Threat Intelligence Executive Report – Volume 2025, Number 6
Bys s February 10, 2026

This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during September and October Categories: Threat Research Tags: EDR killer, infostealer, Ransomware

Read More Threat Intelligence Executive Report – Volume 2025, Number 6

Similar Posts