Strengthening cyber resilience: Introducing Internal Attack Surface Management (IASM) for Sophos Managed Risk
Enhanced vulnerability management delivered as a managed service.
Similar Posts
EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets
Bys sDetails have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab SDK that could have put millions of cryptocurrency wallet users at risk. “This flaw allows apps on the same device to bypass Android security sandbox and gain unauthorized access to private data,” the Microsoft Defender
Researchers Identify PassiveNeuron APT Using Neursite and NeuralExecutor Malware
Bys sGovernment, financial, and industrial organizations located in Asia, Africa, and Latin America are the target of a new campaign dubbed PassiveNeuron, according to findings from Kaspersky. The cyber espionage activity was first flagged by the Russian cybersecurity vendor in November 2024, when it disclosed a set of attacks aimed at government entities in Latin America…
Resource: Insider Threat reports
Bys sOn a daily or weekly basis, DataBreaches highlights insider wrongdoing incidents and the harm they can cause. For more comprehensive compilation and analysis of the topic, readers may be interested in the Insider Threat Incidents For May 2025 report produced by the National Insider Threat Special Interest Group and Insider Threat Defense Group. Their previous…
Philippine Commision on Audit notes dearth of data privacy officers despite law
Kathleen de Villa reports: The Commission on Audit (COA) has called out the National Privacy Commission (NPC) for its “inadequate” information dissemination efforts, as shown by the dismal number of data privacy officers and systems in both the government and the private sector. Despite being compulsory under the law, only 7.7 percent, or 164 of…
Google Reports 75 Zero-Days Exploited in 2024 — 44% Targeted Enterprise Security Products
Bys sGoogle has revealed that it observed 75 zero-day vulnerabilities exploited in the wild in 2024, down from 98 in 2023. Of the 75 zero-days, 44% of them targeted enterprise products. As many as 20 flaws were identified in security software and appliances. “Zero-day exploitation of browsers and mobile devices fell drastically, decreasing by about a…
HHS OCR comments on its 2026 priorities
Bys sIn a recent interview with Rachel Klugman Seeger of North Country Communications, she raised the question of how the current administration’s closures of six HHS regional offices would affect HHS OCR’s investigations into HIPAA breaches. It was a great question, so DataBreaches put the following questions to HHS OCR: (1) How many breach investigators have……