Author: Staff Writer

Combining AI and behavioral science, Fable sets fire to old playbook with human risk platform that actually delivers results Fable Security, the modern human risk management platform, announced its launch with $31 million in funding from Greylock Partners and Redpoint Ventures. The company is already protecting enterprises and their knowledge workers across critical industries like financial services, healthcare, logistics, technology, and more. Fable directly shapes employee behavior by deploying highly targeted, risk-based interventions to people automatically, in real time, right where they work. Fable was founded by Nicole Jiang (CEO) and Dr. Sanny Liao (CPO), founding team members of Abnormal…

Top Highlights Aeroflot, Russia’s largest airline, faced a significant cyberattack, resulting in over 60 flight cancellations and severe delays, with ongoing operational issues indicating a breach. Ukrainian and Belarusian hacktivist groups, ‘Silent Crow’ and ‘Cyberpartisans BY,’ claimed responsibility, stating they infiltrated Aeroflot’s IT infrastructure for over a year and destroyed vital systems. The hackers asserted they accessed and wiped substantial data from Aeroflot’s servers, including sensitive flight history, employee information, and personal data of passengers, threatening future data leaks. This incident follows previous successful cyberattacks on Russia’s aviation sector, highlighting ongoing vulnerabilities exacerbated by geopolitical tensions and international sanctions. What’s…

New funding fuels the development of autonomous AI SOC agents, set to turn the tide on the losing cybersecurity battle Dropzone AI, the leading provider of AI SOC analysts, has raised $37 million in Series B funding, led by Theory Ventures and joined by Madrona, Decibel Ventures, Pioneer Square Labs, and IQT. This infusion of funding validates Dropzone AI’s unique solution as it leads the market for AI SOC agents, delivering measurable and transformative security outcomes for clients like UiPath, Zapier, Pipe, Assala Energy, and over 100 other enterprises. Their AI-native approach equips security teams with a superior defense – reducing security risks, operational costs, and analyst…

Quick Takeaways Rising Threat: The FBI and CISA warn that the cybercrime group Scattered Spider is expanding its attacks globally, targeting various industries, particularly in the U.K. and U.S., but also affecting entities in Canada and Australia. Sophisticated Tactics: Scattered Spider employs advanced social engineering techniques, including phishing, “push bombing,” and SIM-swapping, allowing them to bypass security measures and gain unauthorized access to systems. Ransomware Focus: The group has utilized various ransomware variants like Dragonforce, encrypting data of targeted networks, including VMWare ESXi servers, and demanding ransoms for data recovery. Security Implications: Recent arrests of individuals linked to Scattered Spider…

Essential Insights Cyberattack Detection: On July 25, Orange identified a cyberattack affecting its network, leading to disruptions mainly for French customers, with operations expected to resume by July 30. Service Isolation & Impact: Orange Cyberdefense isolated the breached system, resulting in service disruptions for some business and consumer clients, although no customer data theft has yet been confirmed. Potential Attribution: While no specific hacking group has been linked to the attack, similarities with previous breaches attributed to China’s Salt Typhoon cyber-espionage group have been noted. Previous Incidents & Scale: This recent attack follows Orange’s Romanian branch breach in February, highlighting…

Strategic deployment enables customers to leverage Pega’s industry leading capabilities while supporting data residency within the Kingdom’s borders. Pegasystems Inc., the Enterprise Transformation Company, announced that Pega Cloud is now available as a service hosted on Google Cloud in the Kingdom of Saudi Arabia. This strategic deployment enables customers in the Kingdom to leverage Pega’s industry-leading capabilities while supporting data residency requirements within Saudi Arabia’s borders. This will directly support the government’s Vision 2030 initiative to establish the Kingdom as a regional technology hub. The availability of Pega Cloud on Google Cloud in Saudi Arabia addresses the growing demand for cloud-based software solutions as part of the…

Top Highlights Critical Vulnerability Exploited: Hackers leveraged CVE-2025-31324, a severe SAP NetWeaver vulnerability, to deploy the sophisticated Auto-Color Linux malware, targeting a U.S. chemicals company in April 2025. Advanced Evasion Tactics: Auto-Color malware utilizes advanced evasion techniques such as adapting its behavior based on user privileges and employing stealthy persistence methods, making detection and eradication extremely challenging. Wide Impact and Exploitation Growth: By May 2025, exploitation of CVE-2025-31324 attracted a range of threat actors, including ransomware groups and state-sponsored hackers, indicating a significant expansion of the threat landscape. Critical Response Required: Security updates from SAP released in April 2025 are…

Aeries Technology, Inc., a global leader in AI-enabled value creation, business transformation, and Global Capability Center (GCC) delivery for private equity portfolio companies, has announced a strategic partnership with Skydda.ai, a next-generation AI SOC Analyst platform provider. This collaboration strengthens Aeries’ ability to deliver intelligent, proactive cybersecurity operations through its network of GCCs in India and Mexico. Skydda.ai brings autonomous threat detection and AI-powered analyst workflows to Security Operations Centers (SOC), enabling faster triage, reduced false positives, and scalable 24/7 operations. By integrating Skydda.ai into its delivery model, Aeries will help clients rapidly stand up SOC capabilities that are not…

Quick Takeaways Nomination Confirmation: Sean Plankey, nominated by Trump to lead the Cybersecurity and Infrastructure Security Agency (CISA), faced scrutiny over election security and an expiring information-sharing law during his Senate confirmation hearing. Workforce and Budget Concerns: Plankey acknowledged significant workforce cuts and budget reductions for CISA in Trump’s 2026 spending proposal, emphasizing the need for reorganization and support. Election Security Stance: Under questioning, Plankey stated he hadn’t reviewed cybersecurity aspects of the 2020 election, leading to criticism from Sen. Blumenthal for undermining the credibility of election security. Focus on Cybersecurity Initiatives: Plankey expressed support for the Cybersecurity Information Sharing…

Summary Points Large-Scale Malware Campaign: Cybersecurity researchers have uncovered SarangTrap, a significant mobile malware campaign targeting Android and iOS users with fake apps mimicking dating, social networking, and cloud storage services, primarily affecting users in South Korea. Data Exfiltration Tactics: Over 250 malicious Android apps and 80 fraudulent domains lure users into installing software that steals sensitive data, including contacts and personal images, facilitated by the clever use of invitation codes to bypass security measures. Cultural Targeting: Criminals exploit targeted cultural and social vulnerabilities through deceptive apps posing as financial services, especially targeting Indian and Bangladeshi users overseas, emphasizing the…