Category: Cybersecurity Insiders

Learn why enterprise secrets management is a key component to building a robust non-human identity governance model and is required for securing the whole organization. When you think of identity and access management (IAM), you traditionally think of humans. We’ve…

Read more →

Launch of COGNNA at RSA 2025 Security teams today face an unstoppable challenge—one that isn’t just about technology but about operational endurance. For years, SOC analysts have been inundated with alerts, struggling with fragmented tools and siloed systems that require…

Read more →

The Fog Ransomware gang, which has been making headlines over the past week due to its increasingly audacious demands, is now requesting a staggering $1 trillion from its victims. However, this isn’t a straightforward ransom demand like we typically see…

Read more →

Tel Aviv, Israel, 23rd April 2025, CyberNewsWire The post Lattica Emerges from Stealth to Solve AI’s Biggest Privacy Challenge with FHE first appeared on Cybersecurity Insiders. The post Lattica Emerges from Stealth to Solve AI’s Biggest Privacy Challenge with FHE…

Read more →

On April 21, 2025, British retail giant Mark and Spencer (M&S) confirmed that it was the victim of a cyberattack that disrupted its contactless payment terminals in over 1,400 of its UK stores. The company reassured customers that both its…

Read more →

In this increasingly digital world, cybersecurity has become more than just an IT concern; it’s a critical aspect of every business’s strategy and operations. With the rise of cyber threats—ranging from ransomware and phishing to insider threats and advanced persistent…

Read more →

In the past two to three years, law enforcement agencies around the world have made significant strides in combating ransomware attacks. These malicious attacks, often involving file-encrypting malware, have wreaked havoc on individuals, businesses, and even entire governments.  However, authorities…

Read more →

Many small and medium-sized businesses (SMBs) operate under the assumption that cybercriminals won’t target them, believing their data or systems lack the value to entice hackers. After all, these businesses often can’t afford the hefty ransoms that typically interest cyber…

Read more →

In today’s digital age, cyberattacks are becoming increasingly sophisticated, with hackers targeting not only financial information or personal identities but also more intimate and sensitive data—genetic data. While we have long been aware of the risks to personal information like…

Read more →

In 2024, financial institutions around the globe suffered an average loss of $6.08 million due to ransomware attacks. This marked a 10% increase compared to the previous year, signaling a disturbing trend of rising cybercrime targeting the financial sector. The…

Read more →

The ongoing trade dispute between China and the United States, commonly referred to as the “tariff war,” has created far-reaching effects beyond economics and politics. One of the often overlooked consequences of this prolonged conflict is its growing impact on…

Read more →

The next time you’re looking for a budget-friendly smartphone, particularly one from a Chinese brand, you might want to proceed with caution. A recent warning from cybersecurity experts at Dr. Web, an anti-virus software company, suggests that purchasing low-cost smartphones…

Read more →

What is the most valuable asset a company has? It’s not just its intellectual property, brand recognition, or even its technology – it is its customers. And in today’s digital-first world, how do companies connect with their customers? Through mobile…

Read more →

As part of growing concerns over mobile security and potential espionage, the European Union has issued a cautionary advisory to its members and staff attending the upcoming International Monetary Fund (IMF) and World Bank events in the United States next…

Read more →

The traditional “castle-and-moat” model of cybersecurity is outdated. Firewalls, endpoint protection and segmentation are all still important. But if you think they’re enough to stop today’s threats, think again. From where I sit, the biggest risks aren’t storming the gates.…

Read more →

In the cybersecurity industry, we’ve become obsessed with complexity. Every conference showcase features dazzling new AI-infused solutions, quantum-resistant algorithms, and blockchain-secured systems promising to revolutionize our defenses. Vendors pitch increasingly sophisticated tools with astronomical price tags, and leadership teams eagerly…

Read more →

I love my job This isn’t said sarcastically or trying to convince myself. I genuinely love my job. I love my company and coworkers and the ability to help clients. I think I have the best job out there and…

Read more →

In 2024, businesses paid $813 million to cyber criminals as the result of ransomware. That’s an astronomical sum, highlighting the immense financial burden cybercrime places on organizations. Rhode Island’s cyberattack of December 2024, where state officials paid out a $5…

Read more →

High-profile cyberattacks involving ransomware, malware, zero-day exploits, and nation-state intrusions dominate headlines. These attacks are bold, disruptive, and external, commanding attention from security teams to detect and stop these threats. Amid the noise, a quieter danger is gaining momentum from…

Read more →

Ransomware attacks have become a significant threat to businesses, often leaving them financially devastated and struggling to stay afloat. Many affected companies find it nearly impossible to recover, eventually teetering on the edge of closure due to the financial burden…

Read more →

Data breaches are no occasional crisis – they are a persistent, costly epidemic wreaking global havoc on businesses. While organizations leverage the latest technological advancements in perimeter defense, access management, and cloud and application security, one area that is overlooked…

Read more →

If your business is based in Australia and becomes the victim of a ransomware attack, there’s a crucial change in the law that you need to be aware of. Starting from May 30, 2025, if you decide to pay a…

Read more →

Zoom, the widely popular video conferencing platform used by millions of IT professionals, educators, and businesses worldwide, has recently experienced a significant outage. The disruption, which affected users trying to access the service via the app and website, has sparked…

Read more →

Quantum Threat Readiness: Cybersecurity professionals must prepare for quantum computing’s ability to break encryption, accelerating the need for quantum-resistant security measures. AI’s Dual Impact: AI is enhancing both cyber defense and cyberattacks, making it essential for professionals to master AI-driven…

Read more →

Over the years, ransomware attacks have become a staple of cybercrime, primarily involving hackers encrypting critical databases and demanding a ransom in exchange for a decryption key. This traditional model of cyber extortion has already caused significant disruption across industries. …

Read more →

Google, the global search giant and a subsidiary of Alphabet Inc., is rolling out a new security feature dubbed “Auto Restart” to enhance data protection on Android devices. The feature is designed to prevent unauthorized access to sensitive information in…

Read more →

In the ever-evolving cybersecurity landscape, one age-old vulnerability continues to haunt individuals and organizations alike: passwords. From weak or reused credentials to phishing and brute-force attacks, traditional password-based authentication has proven to be a persistent weak link in the digital…

Read more →

The number of dark web marketplaces, also known as darknet markets, continues to grow year-on-year, despite law enforcement’s efforts to close the networks down. Cybercriminals use these illicit platforms to trade hacking tools, services, stolen data and other sensitive information…

Read more →

In a significant move to bolster email security and user trust in emails, Microsoft has announced new requirements for high-volume email senders targeting Outlook.com, Hotmail.com, and Live.com users. This initiative aligns with similar measures introduced by Google and Yahoo in…

Read more →

Palo Alto, California, 16th April 2025, CyberNewsWire The post SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions first appeared on Cybersecurity Insiders. The post SquareX to Uncover Data…

Read more →

With the rise of worldwide data threats and attacks, data privacy acts are springing up across the globe. It may be relatively unknown, but India for one has established a data privacy regulation called the Digital Personal Data Protection (DPDP)…

Read more →

Board members worldwide are turning their attention toward the cyber risk landscape and questioning the extent to which it might impact their organization’s value. Their rising concern is well-warranted, given the escalating cost of cyber incidents, both in the long…

Read more →

In an era where data drives strategy and personalized outreach is key to consumer engagement, marketing teams face mounting pressure to deliver results, especially in healthcare. However, when marketing initiatives intersect with protected health information (PHI), the stakes are significantly…

Read more →

Ever feel like phishing scams are on a never-ending quest for supreme deception? From fake delivery notifications to impersonated CEOs, it’s like picking from a basket of tricks – each one meticulously crafted to catch people and organizations off guard.…

Read more →

Over the past few years, the cybersecurity landscape has been increasingly dominated by ransomware attacks. These threats have grown more complex, evolving from simple file-encryption schemes to multi-layered extortion tactics. Notably, we’ve seen the rise of double extortion—where attackers not…

Read more →

In 2023, the Federal Trade Commission (FTC) released a warning to five of the most popular tax preparation companies, stating they could face civil penalties if they used confidential data collected from consumers – for unrelated purposes.  Two years after…

Read more →

Just days after the United States was implicated in launching a series of cyberattacks on the telecom sector under the guise of the “Volt Typhoon” campaign, China has leveled direct accusations against the U.S. National Security Agency (NSA) for conducting…

Read more →

In the wake of a cyberattack, many organizations instinctively believe that shutting down their systems is the quickest and most effective way to minimize damage. While this response may seem logical, it can, in fact, complicate recovery efforts and lead…

Read more →

The Rise of Zero-Click Spyware Recent revelations about a zero-click exploit targeting WhatsApp users underscore the growing threat of sophisticated spyware campaigns. Unlike traditional cyberattacks that require user interaction – such as clicking a malicious link or downloading a compromised…

Read more →

DaVita, a major player in the kidney dialysis industry, has recently fallen victim to a ransomware attack. Fortunately, there have been no reports of the breach affecting patient-related services as of now. However, the situation could become more concerning if…

Read more →

In recent years, we’ve witnessed a range of cyberattacks targeting critical infrastructure and both public and private sector entities. These cyber breaches have often disrupted operations, compromised sensitive data, and caused significant economic damage. However, attacks targeting healthcare infrastructure have…

Read more →

In today’s digital age, personal and professional data are constantly being stored, transferred, and backed up across various devices. Among these devices, hard drives and smartphones often contain an immense amount of sensitive information—data that, if left unprotected or improperly…

Read more →

In a chilling reminder of the growing cyber threats to the healthcare industry, Laboratory Services Cooperative (LSC), a U.S. lab testing provider, confirmed a major data breach that compromised the personal and medical data of 1.6 million individuals. The October…

Read more →

In an era where cybersecurity teams face overwhelming alert volumes, staff shortages, and ever-evolving threats, Radiant Security has introduced a transformative solution: the Adaptive AI SOC platform. This innovation promises to revolutionize how security operations centers (SOCs) operate, offering not…

Read more →

In today’s digital world, passwords alone are not enough to keep our online accounts safe. Cybercriminals are constantly finding ways to steal login credentials, whether through phishing scams, data breaches or malware. This is where multifactor authentication (MFA) comes in.…

Read more →

In a troubling development for enterprise cloud users, federal authorities are investigating a major data breach involving Oracle—one of the world’s leading cloud infrastructure providers. Hackers reportedly gained unauthorized access to Oracle systems, stealing sensitive client login credentials including usernames,…

Read more →

In recent years, we’ve become familiar with ransomware attacks, where hackers infiltrate computer networks, encrypt files, and demand payment in exchange for restoring access. As these cybercriminal tactics evolved, attackers began stealing sensitive data in addition to encrypting it—using the…

Read more →

Now that the March Madness tournament has concluded with thrilling games and memorable moments, fans are reflecting on their brackets and the champions crowned. While the excitement of the tournament may have subsided, the cybersecurity risks tied to major events…

Read more →

Seven Schools Have Confirmed Event Dates for April and May BCR Cyber, a leading provider of comprehensive cybersecurity training and job placement services, and the Maryland Association of Community Colleges (MACC), the advocate and unified voice for Maryland’s 16 community…

Read more →

Ransomware attacks have been on the rise in recent months, likely due to the ease with which hackers can generate substantial earnings through increasingly aggressive tactics, including double and triple extortion. These methods force victims to not only pay a…

Read more →

Ransomware attacks are known to frequently occur over weekends, and Sensata Technologies, a prominent manufacturer of sensors and electrical components for critical applications, recently became a victim of such an attack. According to a filing with the U.S. Securities and…

Read more →

Cybersecurity discussions often spotlight phishing scams, ransomware attacks and other external threats. But there’s a foundational risk that quietly underpins many of these issues: poor handling of file uploads and delivery. In 2024, malicious file detections rose 14% over the previous year,…

Read more →

For years, global cybersecurity alerts have been issued to safeguard a variety of devices—ranging from personal computers and smartphones to servers and Internet of Things (IoT) devices. Yet, there is a new and unsettling warning gaining traction within tech and…

Read more →

Clop Ransomware Targets WK Kellogg Co. in Cyber Attack WK Kellogg Co., now operating as a separate entity from the Kellogg Company, has fallen victim to a cyber-attack, believed to be a ransomware attack. After conducting a technical investigation, the…

Read more →

In what has become a significant and concerning information security incident, the Office of the Comptroller of the Currency (OCC), a key branch of the United States Treasury Department tasked with overseeing currency transactions within the nation’s banking system, has…

Read more →

In today’s increasingly digital world, concerns about the safety and security of personal and corporate data are paramount. With high-profile incidents in the media, terms like “data breach” and “data leak” are often used interchangeably. However, there are significant differences…

Read more →

Robert Cottrill, Technology Director at digital transformation company ANS, explores the balance between the benefits of AI and the risks it poses to data security and privacy, particularly for large enterprises. With the UK Government ramping up investment through its…

Read more →

Most internet users are familiar with PDF files and the role they play in delivering essential documents in a transferable and readable format across various devices, such as smartphones and computers. Whether it’s a telecom bill, an image, or even…

Read more →

Alex Quilici CEO of YouMail   This Identity Management Day, be skeptical, not scared. By now, your identity is already out there. Your phone number, job title, connections, even your social security number — all publicly available. The genie is out…

Read more →

The beginning of 2025 has introduced some key complexities that CISOs will need to navigate going forward. With digitalization taking hold of almost every industry in some form or another, telemetry pipelines are emerging as essential tools. By facilitating the…

Read more →

Cybercriminals are always finding new ways to trick people, and one of the latest scams on the rise is called vishing, short for voice phishing. Unlike email scams (known as phishing), vishing happens over the phone. Recent studies have highlighted…

Read more →

It comes once a year.  No, it’s not Christmas, a birthday, or an anniversary.  This is tax season. The time of year when Americans compile their most confidential personal and financial information to file taxes with the federal and state…

Read more →

In the world of digitization, cyberattacks have become an increasingly common form of warfare, with Distributed Denial of Service (DDoS) attacks standing out as one of the most prominent and disruptive methods. While often perceived as a technical nuisance that…

Read more →

Cyberattacks are a persistent and growing threat that cause significant financial strain to victims, whether public or private organizations. However, recent research by Vodafone has revealed a particularly alarming trend: every year, small and medium-sized enterprises (SMEs) are losing nearly…

Read more →

For years, businesses have relied on software solutions to help defend against the growing threat of cyber-attacks. However, a new development in the cybersecurity space may soon revolutionize how these threats are mitigated. Google, the technology giant and subsidiary of…

Read more →

The recent cyberattack attributed to the “Holy League Coalition” hacking group has raised significant concerns about cybersecurity, as key British institutions fall victim to a highly sophisticated assault. This group, reportedly a collaboration between Russian cyber operatives and Pro-Palestinian hackers,…

Read more →

In recent years, the rise of AI-generated art and animation has sparked a revolution in how creative content is produced. Among the most notable examples is the trend of creating artworks inspired by Studio Ghibli’s iconic animation style. With its…

Read more →

Kubernetes has become the backbone of modern cloud native applications, and as adoption grows, organizations increasingly seek to consolidate workloads and resources by running multiple tenants within the same Kubernetes infrastructure. These tenants could be internal teams, or departments within…

Read more →

Too Many Organizations Look to Scheduled Audits to Dictate Patching Efforts Though it may seem obvious that patches to critical vulnerabilities in IT systems need to be implemented right away, the fact remains that huge numbers of today’s enterprises tend…

Read more →

Ransomware gangs are notorious for first stealing data from servers before encrypting it, holding it hostage until a ransom is paid. The act of siphoning off data intensifies the pressure on victims, as they are faced with the dual threat…

Read more →

Cloud services have revolutionized the way businesses operate, delivering instant access to data, applications and resources at the touch of a mouse. Accessibility through a mix of public cloud services, SaaS applications, private clouds, and on-premises infrastructure has become the…

Read more →

Maintaining robust network security in today’s threat climate is a challenge. Adhering to best practices is just as difficult. However, both are necessary to ensure that organizations can continue running efficiently and securely with minimal interruption or downtime to the…

Read more →

AI innovation is moving at a scale we haven’t seen before. Hyperscalers like Salesforce, Microsoft, and Google are racing to make agentic AI available to the wider public. And the appetite is there! A recent survey showed that 82% of…

Read more →

While organizations have spent years fortifying human identity security, a critical vulnerability has been growing in our digital infrastructure. For every human identity in today’s enterprise, there are now approximately 50 machine identities operating in the shadows. These non-human identities…

Read more →

Global investment in edge computing is expected to rise to close to US$400bn by 2028, meaning this market will have almost doubled in just five years. For sectors where secure, reliable data processing is vital to critical decision-making harnessing the…

Read more →

Introduction The evolution of Security Service Edge (SSE) adoption from 2024 to 2025 reflects significant shifts in enterprise security strategies, cloud adoption, and Zero Trust implementations.  The 2024 SSE Adoption Report outlined the growing demand for SSE as hybrid work…

Read more →

A cyberattack targeting five of Australia’s leading superannuation providers has reportedly resulted in significant financial theft and widespread account disruptions. The breach, which affected several prominent organizations, has seen one of the providers lose over $500,000 in funds. Additionally, accounts…

Read more →

A new and potentially devastating alliance has emerged in the world of cybercrime. EvilCorp, an infamous cybercriminal group suspected to be led by an ex-FSB officer from Russia, has partnered with RansomHub, a notorious ransomware-as-a-service (RaaS) provider. This collaboration has…

Read more →

For those unfamiliar with World Cloud Security Day, here’s a brief yet essential overview. Celebrated annually on April 3rd, this day serves as a crucial reminder of the importance of implementing strong security measures to combat the rising cyber threats…

Read more →

Google Calendar is a widely used tool for scheduling online events, meetings, and sending reminders. However, a concerning new trend has emerged where cybercriminals are exploiting this platform to target unsuspecting victims with phishing scams and attempts to steal sensitive…

Read more →

Managing secrets, the API keys, authentication tokens, and encryption credentials that keep our applications securely running is a critical yet increasingly complex challenge in modern enterprises. Organizations use secret management tools like AWS Secrets Manager, HashiCorp Vault, and Azure Key…

Read more →

The platform where people forget their passwords the most is YouTube, leading with the highest number of password-related searches. Video streaming users forget their login details the most, with the top platform’s users requesting new passwords over four times a…

Read more →

Royal Mail Data Breach: 144GB of Sensitive Information Now Available for Sale Royal Mail has recently made headlines after falling victim to a sophisticated cyber-attack, resulting in the theft of a large amount of sensitive data. The breach has now…

Read more →

With the rapid advancement of artificial intelligence (AI), deepfake technology has emerged as a significant cybersecurity threat. Deepfakes, which use AI to manipulate images and videos, are increasingly being used for malicious purposes, such as misinformation campaigns, identity fraud, and…

Read more →

As anticipated, Russian Railways became the target of a large-scale Distributed Denial of Service (DDoS) attack, significantly impacting both its website and mobile application. The cyberattack disrupted online services, rendering them inaccessible to users for an extended period. However, despite…

Read more →

Introduction The rise of Agentic AI has become one of the most talked about trends in the AI world. The move to autonomous AI Agents promises to be as big a leap forward as Generative AI was over traditional AI…

Read more →

New Jersey passed a new cybersecurity regulation in January 2025. This makes the state the latest to implement strong rules regarding people’s data and how it is protected. The new law is going to affect every company that handles personal…

Read more →

We live in a time where technology is changing fast, and artificial intelligence is becoming part of everything we do. It’s showing up in how we work, live, and connect with each other. It is essential that people understand what…

Read more →

Quantum sensors offer dramatically increased sensitivity compared to their classical incumbents or even enable new sensing capabilities altogether. Multiple industries are expected to benefit from quantum sensing innovations, including atomic clocks, quantum magnetometers, quantum gyroscopes, and more. However, bringing quantum…

Read more →

In what can be described as a significant security breach, over 1.5 million personal photographs have been exposed and are now accessible online, all due to a human error that led to the leak of sensitive information. This incident has…

Read more →

In recent years, cyber threats have become one of the most significant security concerns for nations around the world. Among the most notable players in this growing arena is China, whose cyber capabilities have made it a major threat to…

Read more →

For years, businesses have relied on email as their primary communication tool, trusting legacy security systems to keep sensitive information safe. But cyber threats have changed. The simple spam filters and antivirus tools that once seemed sufficient now fail against…

Read more →

Cloud adoption is continuing to transform the IT infrastructure and security landscapes by delivering unmatched scalability and flexibility. Multi-cloud strategies further enhance these advantages but introduce unique challenges, prompting organizations to implement innovative solutions to safeguard their critical assets effectively.…

Read more →

Zoom, the popular video conferencing software widely used by businesses across the globe for meetings and virtual collaboration, has recently made headlines—but not for the reasons you might expect. The company has found itself linked to an alarming rise in…

Read more →

In a rapidly evolving and increasingly intelligent threat landscape, the cybersecurity industry grapples with a staggering gap between overworked security teams and the protection modern enterprises require, leaving space for cyber attacks to creep in through the cracks. Threat actors…

Read more →

Major sporting events like the Super Bowl, the World Series or March Madness can be prime time for cybercriminals to try to prey on people. Whether it’s by using URLs that look like real sports betting and news sites or…

Read more →

In today’s digital landscape, APIs (Application Programming Interfaces) are essential for modern business operations. They facilitate seamless connectivity and data exchange across diverse platforms and services, driving innovation and efficiency. However, this interconnectedness also brings significant security and privacy challenges.…

Read more →

The year 2025 is critical for cybersecurity as cyber threats are advancing unprecedentedly. AI-driven attacks, deepfake scams, and state-of-the-art ransomware schemes have become more prevalent. Businesses and individuals must remain vigilant against these emerging dangers. Implementing various security measures, adopting…

Read more →

New Malware Crocodilus Targets Crypto Wallet Credentials Malware gangs are continually evolving their tactics to steal sensitive information, especially in the ever-growing world of cryptocurrency. Recently, a new malware variant called Crocodilus has emerged, specifically targeting mobile users in Spain…

Read more →

In today’s increasingly digital world, ransomware attacks have become one of the most pervasive threats to businesses and individuals alike. Ransomware is a type of malicious software that locks a victim’s files or entire system, demanding a ransom to restore…

Read more →