News

The State of Ransomware 2025

Bys s June 24, 2025

Explore the causes and consequences of ransomware in 2025 based on findings from a vendor-agnostic survey of 3,400 organizations hit by ransomware in the last year.

News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation
Bys s December 6, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC) to its Known Exploited Vulnerabilities (KEV) catalog following reports of active exploitation in the wild. The vulnerability, CVE-2025-55182 (CVSS score: 10.0), relates to a case of remote code execution that could be triggered by…

Read More Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation
News

Update: ALN Medical Management’s Data Breach Total Soars to More than 1.8 Million Patients Affected
Bys s May 29, 2025

Marianne Kolbasuk McGee reports: The number of people affected by a March 2024 hack on a healthcare revenue cycle management and billing services provider has soared in recent weeks to more than 1.82 million, as the company continues to file updated breach reports to state and federal regulators. ALN Medical Management, which court documents indicate…

Read More Update: ALN Medical Management’s Data Breach Total Soars to More than 1.8 Million Patients Affected
News

Australia Bans Kaspersky Software Over National Security and Espionage Concerns
Bys s February 24, 2025

Australia has become the latest country to ban the installation of security software from Russian company Kaspersky, citing national security concerns. “After considering threat and risk analysis, I have determined that the use of Kaspersky Lab, Inc. products and web services by Australian Government entities poses an unacceptable security risk to Australian Government, networks and…

Read More Australia Bans Kaspersky Software Over National Security and Espionage Concerns
News

Sweet 16: Sophos named a Leader (again) in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms
Bys s July 15, 2025

For the 16th consecutive report, Sophos has been recognized by Gartner as a Leader in the Endpoint Protection Platforms (EPP) category.

Read More Sweet 16: Sophos named a Leader (again) in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms
News

NightEagle APT Exploits Microsoft Exchange Flaw to Target China’s Military and Tech Sectors
Bys s July 4, 2025

Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit chain designed to target government, defense, and technology sectors in China. According to QiAnXin’s RedDrip Team, the threat actor has been active since 2023 and…

Read More NightEagle APT Exploits Microsoft Exchange Flaw to Target China’s Military and Tech Sectors
News

MirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on Japan
Bys s January 9, 2025

Japan’s National Police Agency (NPA) and National Center of Incident Readiness and Strategy for Cybersecurity (NCSC) accused a China-linked threat actor named MirrorFace of orchestrating a persistent attack campaign targeting organizations, businesses, and individuals in the country since 2019. The primary objective of the attack campaign is to steal information related to Japan’s national

Read More MirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on Japan

Similar Posts