NICKEL TAPESTRY expands fraudulent worker operations

Microsoft throws a farewell party for Win10, Office 2016, and Office 2019… a very big party

Google has released security updates to address a vulnerability in its Chrome browser for which an exploit exists in the wild. The zero-day vulnerability, tracked as CVE-2025-6554 (CVSS score: N/A), has been described as a type confusing flaw in the V8 JavaScript and WebAssembly engine. “Type confusion in V8 in Google Chrome prior to 138.0.7204.96…

In December 2024, SAG-AFTRA notified members of a phishing incident in September 2024 that may have resulted in unauthorized access to their name and Social Security number, and may also have contained information associated with claims and health insurance information, such as health plan participant identification number, if applicable. The incident was reported to HHS……

Cyber threats are growing more sophisticated, and traditional security approaches struggle to keep up. Organizations can no longer rely on periodic assessments or static vulnerability lists to stay secure. Instead, they need a dynamic approach that provides real-time insights into how attackers move through their environment. This is where attack graphs come in. By mapping…

On January 17, Behavioral Health Resources (“BHR”) notified the U.S. Department of Health and Human Services (HHS)  of a reportable breach, but not yet having determined the number affected, they used “501” as a placeholder. They also published a preliminary notice on their website. That notice indicated that on or about November 20, 2024, they…

Secure by Design