News

What happens when a cybersecurity company gets phished?

Bys s September 22, 2025

A Sophos employee was phished, but we countered the threat with an end-to-end defense process

News

A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist
Bys s May 20, 2025

Another adversary picks up the email bombing / vishing Storm-1811 playbook, doing thorough reconnaissance to target specific employees with fake help desk call—this time, over the phone.

Read More A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist
News

Hackers Say They Have Personal Data of Thousands of NSA and Other Government Officials
Bys s October 20, 2025

Joseph Cox reports: A hacking group that recently doxed hundreds of government officials, including from the Department of Homeland Security (DHS) and Immigration and Customs Enforcement (ICE), has now built dossiers on tens of thousands of U.S. government officials, including NSA employees, a member of the group told 404 Media. The member said the group……

Read More Hackers Say They Have Personal Data of Thousands of NSA and Other Government Officials
News

Texas Doctor Who Falsely Diagnosed Patients as Part of Insurance Fraud Scheme Sentenced to 10 Years’ Imprisonment
Bys s May 22, 2025

How often have you read concerns that patient information can be used for fraudulent purposes or that patient records can be altered by wrongdoers? Here’s a case where the wrongdoer is a doctor who altered patient records and inserted false diagnoses to defraud insurers — to the tune of over $118 million in false claims….

Read More Texas Doctor Who Falsely Diagnosed Patients as Part of Insurance Fraud Scheme Sentenced to 10 Years’ Imprisonment
News

Researchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution
Bys s August 29, 2025

Three new security vulnerabilities have been disclosed in the Sitecore Experience Platform that could be exploited to achieve information disclosure and remote code execution. The flaws, per watchTowr Labs, are listed below – CVE-2025-53693 – HTML cache poisoning through unsafe reflections CVE-2025-53691 – Remote code execution (RCE) through insecure deserialization CVE-2025-53694 –

Read More Researchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution
News

RINA Accountants & Advisors is creating $400K settlement fund to settle lawsuit over 2022 data breach
Bys s January 31, 2026

Mark Emem reports: A US accounting firm has agreed to pay hundreds of thousands of dollars to settle a class action lawsuit filed over a data breach. According to the settlement administrator’s portal, RINA Accountants & Advisors will set up a $400,000 settlement fund to compensate victims of the data security incident that occurred nearly four……

Read More RINA Accountants & Advisors is creating $400K settlement fund to settle lawsuit over 2022 data breach
News

Korea imposes 343 million won penalty on HAESUNG DS for data breach of 70,000 shareholders
Bys s July 24, 2025

Kim Su-jeong reports: The Personal Information Protection Commission announced on the 24th that it imposed a penalty surcharge of 343 million won [USD $250,136.73] on HAESUNG DS, a semiconductor parts company, after it left vulnerabilities in its network security equipment unattended, resulting in a hacker attack that leaked personal information of over 70,000 shareholders. According…

Read More Korea imposes 343 million won penalty on HAESUNG DS for data breach of 70,000 shareholders

Similar Posts