Browsing: Security

Crocodilus Goes Global: New Android Banking Trojan Expands Campaigns and Capabilities

Kirsten DoyleJune 4, 20255 Mins Read

A new player in the Android malware arena is making waves, and not in a good way. First detected in…

“It Won’t Happen To Us” Isn’t A Cybersecurity Strategy: IAM and PAM Is

Jerry ChapmanJune 3, 20254 Mins Read

On February 24th, 2024, Change Healthcare was crippled by an 8.842 billion dollar (and growing) data breach. Due to the…

CVE-2025-20188: Maximum Severity Arbitrary File Upload Flaw Threatens Enterprise Wi-Fi Networks

Kirsten DoyleJune 3, 20254 Mins Read

Technical details for a critical Cisco IOS XE Wireless LAN Controller (WLC) vulnerability, tracked as CVE-2025-20188, have now been publicly…

Regretsy: 1.6 Million Customer Files Exposed from Unprotected Cloud Storage

Kirsten DoyleJune 2, 20255 Mins Read

Cybersecurity researchers from Cybernews have uncovered two misconfigured Azure Blob Storage containers containing more than 1.6 million files, primarily shipping…

Penetration Testing Is Essential for Higher Ed Institutions

Zac AmosJune 2, 20255 Mins Read

IT professionals in higher education oversee massive repositories for sensitive data, such as student records, tuition payments and faculty credentials.…

New Russian-Linked Hacker Group ‘Void Blizzard’ Targets Western Critical Infrastructure

Kirsten DoyleMay 29, 20255 Mins Read

A newly identified threat actor, Void Blizzard, is emerging as a major player in Russian-linked cyberespionage, according to a detailed…

Malicious Attack Method on Hosted ML Models is Targeting PyPI

Kirsten DoyleMay 28, 20253 Mins Read

A recent investigation by ReversingLabs (RL) has uncovered a new malicious attack method targeting machine learning (ML) models distributed via…

“We Were Prepared for This”: Cellcom CEO Addresses Cyber Outage

Kirsten DoyleMay 28, 20252 Mins Read

Cellcom, a regional telecom provider that serves Michigan and Wisconsin has confirmed that a cyberattack was the cause of text…

60 malicious nmp packages collect network and host data

Kirsten DoyleMay 27, 20253 Mins Read

A fresh supply chain attack is quietly unfolding in the JavaScript ecosystem, and it’s already compromising developer environments and enterprise…

New NIST Metric Could Help Organizations Zero In on Exploited Vulnerabilities

Kirsten DoyleMay 27, 20255 Mins Read

Let’s face it: most companies are drowning in vulnerabilities and struggling to patch even a fraction of them. The question…