Author: Staff Writer

Summary Points Collaboration for Clarity: Microsoft and CrowdStrike are aligning threat actor taxonomies to simplify the tracking of hacking groups, aiding security professionals in making informed decisions faster. Diverse Nomenclature: The joint effort addresses the myriad nicknames assigned to hacking groups, such as Midnight Blizzard (APT29) and Forest Blizzard (Fancy Bear), which have caused confusion in threat attribution. Impact on Analysis: By mapping these aliases, the initiative aims to improve analysis and response strategies, reducing complications that arise from inconsistent naming across cybersecurity vendors. Expanding Participation: The collaboration is expected to include contributions from other cybersecurity firms like Google’s Mandiant…

Let’s be real—how many of us learned more history from Hamilton than we ever did in school? Or know how to perform CPR thanks to The Office and the beat of ‘Staying Alive’? That’s the power of storytelling. Storytelling is an integral part of human nature; it’s proven to be one of the most effective tools for learning. So why not apply it to something as critical as cybersecurity?  In this webinar, we’ll showcase the power that storytelling can have in security awareness training to help users understand modern threats and how to identify them. We’ll cover:  Why storytelling…

Top Highlights Data Breach Notification: The North Face has alerted customers about personal information theft due to credential stuffing attacks on its website in April 2025, marking its fourth incident of this type since 2020. Exposed Information: Compromised data includes full names, purchase history, addresses, email addresses, dates of birth, and telephone numbers; however, payment information was secure. Cybersecurity Failures: The brand has faced persistent cybersecurity issues, with previous attacks affecting over 200,000 customers and a major ransomware incident in December 2023 that impacted 35 million customers. MFA Consideration: The absence of mandatory multi-factor authentication (MFA) on user accounts has…

Fast Facts Widespread Compromise: Over 9,000 ASUS routers have been hacked in a prolonged campaign, raising concerns about the potential formation of a botnet. Exploitation Methods: Attackers employ brute-force login attempts and a command injection vulnerability (CVE-2023-39780) to bypass authentication and execute system commands. Backdoor Residuals: Despite ASUS releasing a firmware patch, compromised routers may still harbor a backdoor unless secure shell access is explicitly disabled. Advanced Threat Links: The hacking tactics resemble those of advanced persistent threat (APT) groups, raising suspicions about the involvement of a threat actor known as ViciousTrap. The Implications of Compromised Routers Recently, researchers reported…

Fast Facts Data Breach Notification: Luxury brand Cartier has informed customers of a data breach exposing personal information, including names, email addresses, and countries of residence, but not sensitive data like passwords or credit card numbers. Security Measures Taken: Cartier has contained the breach and enhanced system protections, while warning customers to remain vigilant against potential phishing attacks due to the compromised information. Law Enforcement Involvement: The company has reported the incident to law enforcement and is collaborating with external cybersecurity experts to address the breach. Industry-Wide Concerns: This incident is part of a trend, with other fashion brands like…

Summary Points Cooperative Mapping: Microsoft and CrowdStrike, joined by Palo Alto Networks and Google Mandiant, are collaborating to unify naming conventions for hacker groups to reduce confusion in threat intelligence. Impact of Delays: Experts emphasize that inaccurate attributions and inconsistencies in naming can significantly delay responses to cyberattacks, potentially affecting their success. Initial Matrix Released: An initial threat actor matrix was published, showcasing discrepancies in how different companies track the same groups, like Scattered Spider versus Octo Tempest. Ongoing Efforts: Microsoft and CrowdStrike will maintain their individual naming systems while creating a focused group to enhance and update attribution mappings…

Essential Insights Data Breach Announcement: Cartier confirmed a data breach where unauthorized access led to the compromise of client information, including names, email addresses, and countries of residence, but no sensitive financial details were exposed. Investigation and Response: The luxury brand is working with external cybersecurity specialists and has notified relevant authorities to investigate the breach and enhance security measures. Context of Increased Cyber Threats: This incident follows recent cyberattacks on other major brands, including Victoria’s Secret and Adidas, amid a broader pattern of UK retailers facing ransomware threats from groups like DragonForce. Client Caution Advised: Cartier has advised clients…

Top Highlights Outage Duration and Impact: SentinelOne experienced a seven-hour global service disruption due to a software flaw affecting multiple customer-facing services, although customer endpoints remained protected. Root Cause Analysis: The outage was caused by an infrastructure control system flaw that deleted critical network routes and DNS resolver rules, not a cyberattack or security breach. Configuration Error: A misconfiguration in the control system mistakenly restored empty network settings, as it misidentified discrepancies in the configuration comparison function. Service Accessibility Issues: The outage hindered programmatic access and disrupted services like Unified Asset Management and Identity Management, preventing customers from viewing vulnerabilities…

Essential Insights Customer-Centric Recognition: Sophos has been named a Customers’ Choice vendor in both the 2025 Gartner Peer Insights reports for Endpoint Protection Platforms and Extended Detection and Response, showcasing its commitment to user satisfaction. High Ratings: In the Endpoint Protection Platforms category, Sophos achieved a 4.8/5.0 rating based on 361 reviews, marking its fourth consecutive recognition as a Customers’ Choice. In the inaugural Extended Detection and Response report, it maintained the highest rating of 4.8/5.0 from 257 reviews. Exceptional Performance Across Categories: Customers rated Sophos 4.9/5.0 in Product Capabilities, Sales Experience, and Deployment Experience, alongside a 4.8/5.0 in Support…

A whistleblower has apparently outed the leader behind Trickbot and the infamous Conti ransomware gang.The Conti ransomware gang gained infamy in recent years, in part due to large-scale attacks on victims that have included backup appliance supplier Exagrid, which paid a $2.6 million ransom to the group; a number of systems belonging to the Costa Rican government; and Ireland’s public healthcare system.In early 2022, shortly after Russia began its invasion of Ukraine, the group pledged support to Russia and threatened the US, should it target Russian critical infrastructure. This, a $15 million reward from the US State Department, and some…