Author: Staff Writer

Quick Takeaways Threat Actor and Tactics: The Initial Access Broker (IAB) Gold Melody exploits leaked ASP.NET machine keys to gain unauthorized access, selling this access to others. This group’s activities are tracked by Palo Alto Networks as TGR-CRI-0045, also known as Prophet Spider and UNC961, primarily targeting sectors like finance and manufacturing. Technique and Impact: The exploitation of ASP.NET machine keys allows attackers to sign malicious payloads for unauthorized server access and perform ViewState deserialization. This technique minimizes on-disk presence, evading detection by traditional security measures reliant on file system monitoring. Recent Activity: A surge in attacks occurred from late…

The company is recognized for pioneering innovation and customer-centric security solutions in the PAM industry Frost & Sullivan is pleased to announce that NTT TechnoCross Corporation has been awarded the 2025 Japan Company of the Year Recognition in the privileged access management (PAM) industry for its outstanding achievements in cybersecurity innovation, strategic execution, and ability to deliver measurable value to enterprise clients. This recognition highlights NTT TechnoCross’s role in advancing security technology and its ability to address modern cybersecurity challenges through real-time threat intelligence and customer-first design. Cyber Technology Insights : DataBahn.ai Appoints Preston Wood as Chief Security and Strategy Officer Frost & Sullivan evaluates…

Top Highlights Data Breach Notification: Bitcoin Depot has reported a data breach exposing sensitive information of nearly 27,000 customers, including full names, addresses, and driver’s license numbers. Investigation Timeline: The breach was first detected on June 23, 2023, with an internal investigation concluding on July 18, 2024, but public disclosure was delayed due to a federal investigation. Lack of Protection Services: Affected individuals were not offered identity monitoring services; instead, they are advised to remain vigilant against fraud and consider placing a security freeze on their credit reports. Previous Incident: A similar breach occurred at Byte Federal in December 2024,…

Annual Channel Partners MSP 501 Identifies Best of the Best in the Managed Services Industry Paranet Solutions has been named as one of the world’s top-performing managed service providers in the prestigious 2025 Channel Partners MSP 501 rankings. The annual Channel Partners MSP 501 list, a technology industry benchmark, ranks companies based on a wide range of metrics including above industry average revenue growth, recurring revenue, high-margin services and innovation including monetizing AI services. For the past 18 years, managed service providers around the globe have submitted applications for inclusion on this prestigious and definitive listing. It is a milestone…

Essential Insights Mandatory Reporting Proposal: M&S chairman Archie Norman advocates for the UK government to require companies to report major cyberattacks, citing intelligence deficits from lack of transparency. Impact of Cyberattacks: M&S faced significant operational disruptions and financial losses exceeding $400 million due to a recent hack attributed to ransomware group DragonForce. Security Disclosure Practices: The push for public disclosure parallels similar regulations in the U.S., where companies must announce material attacks within four days, though this remains controversial among business leaders. Broader Implications: Norman emphasized that enhanced reporting would strengthen the U.K.’s National Cyber Security Centre and improve overall…

Fast Facts The U.S. Treasury sanctioned Song Kum Hyok for links to North Korea’s Andariel hacking group, which conducts financially-motivated cyber operations including ransomware and cryptocurrency theft. Song facilitated a scheme providing fake U.S. identities to North Korean IT workers, allowing them to obtain remote jobs with U.S. companies and funnel income back to North Korea for its weapons programs. Associated with Song are five entities, including Russian nationals and companies, which employ DPRK IT workers, further entrenching North Korean cyber operations. Treasury sanctions include asset freezes and transaction bans, threatening foreign banks working with sanctioned entities, following a recent…

New Investment Aimed at Scaling Sales and Marketing Efforts to Meet Demand for AI SOC as a Service AirMDR, a leader in AI-native Managed Detection and Response (MDR), announced the company has closed a $15.5 million seed round that will fuel investment in research and development of the company’s flagship technology and increase the efficacy and expertise of AI Analysts. A new $10.5 million infusion investment has been added to an initial $5 million seed round that will be used to scale Sales and Marketing efforts to bring the benefits of AI SOC to enterprise and SMB organizations – a…

Quick Takeaways Ransomware Attack: Ingram Micro faced a massive ransomware attack from SafePay shortly before the July 4th holiday, leading to a global outage of their website and ordering systems. Gradual Recovery: The company has begun restoring systems and services, resuming order processing via phone and email in multiple countries, including the US and Canada, although limitations on hardware orders remain. Security Measures: Ingram Micro has reset passwords and implemented multi-factor authentication, while restoring VPN access for employees to enhance security during recovery. Data Theft Concerns: It remains unclear if any data was stolen, as the SafePay gang historically steals…

Appointment of In-Q-Tel’s Lead Investor Further Strengthens Kensington’s ONE9 Defence and Security Venture Capital Platform Kensington Capital Partners Limited announced the appointment of George Hoyem to the Investment Committee of its ONE9 defence and security venture capital platform. This strategic move further strengthens ONE9’s position as the Canadian market leader for investments in national security technologies, including cybersecurity, dual-use technologies and advanced defence innovations. Hoyem will also serve as Special Advisor to Kensington in this sector, assisting with the strategic growth and development of the ONE9 venture capital platform, which Kensington acquired in March 2025. Cyber Technology Insights : DataBahn.ai Appoints Preston Wood as Chief…

Summary Points Ransomware Investigation: Ingram Micro is investigating a ransomware attack after discovering suspicious activity on its internal network, prompting them to take certain systems offline. Order Processing Disruption: The cyberattack has significantly impacted the company’s ability to process and ship orders, leading to efforts to restore normal operations. SafePay Group Involvement: The SafePay ransomware group has claimed responsibility for the attack, marking an increase in their activities since May, with 18% of recent attacks attributed to them. Access Methods and Risks: SafePay has exploited vulnerabilities such as internet-exposed Remote Desktop Protocol and has been linked to breaches involving misconfigured…