Author: Staff Writer

Fast Facts Workiva notified customers of a third-party CRM breach, where attackers exfiltrated limited business contact data, but the company’s core platform remains secure. The incident is linked to the recent wave of Salesforce data breaches orchestrated by the ShinyHunters group, targeting high-profile companies via OAuth token theft and vishing scams. ShinyHunters has expanded their attack vector to include stolen OAuth tokens for Salesforce integrations, gaining access to sensitive customer information across multiple organizations. This ongoing cyberattack wave underscores increased risks, as nearly half of tested environments had passwords cracked, highlighting the importance of robust security measures. Underlying Problem Workiva,…

Essential Insights Hacker groups are now utilizing HexStrike-AI, an AI-powered offensive tool, to automate exploits of newly disclosed vulnerabilities like CVE-2025-7775, significantly decreasing attack times. HexStrike-AI, originally a legitimate cybersecurity tool created for testing, has been weaponized in real attacks within hours of Vulnerability disclosures, enabling automation from scanning to payload delivery. As of September 2025, around 8,000 endpoints remain vulnerable, with attackers leveraging HexStrike-AI to exploit these flaws rapidly, increasing the urgency for swift patching. Cybersecurity experts warn that AI-powered frameworks like HexStrike-AI could reduce the window for patch application from days to minutes, emphasizing the need for proactive…

Top Highlights Complex Migration Ahead: Organizations face a challenging journey to adopt post-quantum cryptography (PQC), requiring substantial upgrades and validations across numerous systems, particularly in regulated industries. Hybrid Cloud Vulnerability: Financial, healthcare, and government sectors must address vulnerabilities in TLS communications within hybrid cloud setups by ensuring both ends support quantum-resistant algorithms. OpenSSL as a Solution: Upgrading to OpenSSL 3.5 allows organizations to adopt quantum-safe TLS without extensive application rewrites or architectural changes, though cloud vendor support varies. Immediate Action Recommended: Organizations can enhance data security against quantum threats this year through TLS hardening, while taking proactive steps ensures preparedness…

Top Highlights Streameast, the largest illicit sports streaming network, was shut down by Egyptian authorities, seizing infrastructure and arresting two operators. The platform operated 80 domains, receiving over 1.6 billion visits in a year, providing pirated streams for major sports leagues worldwide. The law enforcement action involved confiscating devices and funds, highlighting ongoing efforts to combat global digital piracy, which causes $29.2 billion in U.S. economic losses annually. Despite takedowns, piracy networks often regenerate with new sites, with ACE and Egyptian authorities continuing to monitor and target such operations globally. What’s the Problem? Recently, Egyptian authorities, working in partnership with…

Quick Takeaways Significant Security Updates: Google has addressed 120 vulnerabilities in the September 2025 Android update, including two critical ones actively exploited in targeted attacks. Major Vulnerabilities Identified: The updates include CVE-2025-38352 and CVE-2025-48543, both privilege escalation flaws that allow attackers to gain local privileges without user interaction. Targeted Exploitation Confirmed: Google indicates "limited, targeted exploitation" of the identified vulnerabilities for potential spyware attacks, with Benoît Sevens from Google’s Threat Analysis Group credited for the discovery. Patch Levels Introduced: Two new security patch levels were released (2025-09-01 and 2025-09-05) to expedite the mitigation of similar vulnerabilities across Android devices, urging…

Quick Takeaways The U.S. Department of State is offering up to $10 million for information on three Russian FSB officers involved in cyberattacks targeting U.S. critical infrastructure and over 500 foreign energy firms across 135 countries. These officers, linked to FSB’s Center 16 (also known as Berserk Bear and other names), were charged in 2022 for cyber campaigns from 2012 to 2017 aimed at U.S. government agencies and nuclear facilities. Russian state-sponsored hackers exploited the CVE-2018-0171 vulnerability in Cisco devices to breach critical infrastructure globally, with an emphasis on unpatched devices in North America, Europe, Asia, and Africa. In June,…

Fast Facts In January 2025, Chinese AI firm DeepSeek experienced a data leak exposing over 1 million log streams, including chat history and secret keys, highlighting risks of insecure data handling. Data leakage can be both intentional (e.g., hacking, insider threats) and unintentional (e.g., human error, misconfiguration), with common vectors including cloud misconfigurations and email mistakes. Consequences of data leaks are severe, risking regulatory fines, loss of intellectual property, financial fraud, and substantial damage to reputation and business value. Organizations can mitigate risks through strategies like least-privilege access, data loss prevention solutions, sensitive data classification, audits, and comprehensive employee training.…

Top Highlights In August, diverse sectors—including pharma, healthcare, and smart home devices—were targeted in cyberattacks, highlighting the widespread nature of modern threats. Threat actors are increasingly exploiting zero-day vulnerabilities and deploying botnets, indicating a shift toward more sophisticated attack strategies. The evolving cyber threat landscape shows attackers adapting quickly, often causing disruptions like hospital system freezes and operational halts. The latest threat trends underscore the need for robust, proactive cybersecurity measures as cybercriminals continue rewriting their attack playbook. What’s the Problem? In August, a series of sophisticated cyberattacks targeted diverse sectors, including a pharmaceutical company, a hospital service provider, and…

Essential Insights AI Adoption in Cybersecurity: 73% of organizations have integrated AI into their cybersecurity programs, with financial services (82%) leading the way, while energy and transportation sectors lag behind due to safety concerns. Geographic Variability: U.S. companies are more likely (82%) to deploy AI for cyber defense compared to Nordic countries (59%), highlighting regional disparities in technology adoption. Anticipated AI Uses: 73% of respondents plan to utilize AI in security operations centers, aiming for enhancements in threat prediction (72%) and detection (70%), despite recognizing the need for human oversight in nuanced tasks. Concerns Impacting Deployment: Organizations face challenges such…

Essential Insights Effective cybersecurity management requires quantifying and communicating risks in relatable terms, especially to non-technical executives, to promote informed decision-making. Healthcare faces high costs from data breaches, averaging $7.42 million per incident, with longer detection times, emphasizing the need for robust security practices. Strong partnerships between CIOs and CISOs, sharing a common language and strategic collaboration, are crucial for aligning security with organizational growth and innovation. Proactive CISO involvement in vendor selection, contract negotiation, and risk mitigation significantly reduces third-party vulnerabilities and enhances overall enterprise security posture. Problem Explained During a recent virtual event, cybersecurity leaders at Tampa General…