Author: Staff Writer

Robin has launched a new Legal Intelligence Platform designed to change the way large companies handle their legal documents. Instead of treating contracts as files to store and forget, the platform helps legal teams turn them into tools that drive business decisions.The idea is simple: help organisations truly understand what’s inside their agreements. Unlike most Contract Lifecycle Management (CLM) systems that focus on storing and tracking documents, Robin’s platform uses artificial intelligence to read and analyse contracts in detail.“Legal teams are drowning in documents but starving for insights,” said Richard Robinson, CEO and Founder of Robin. “Many executives don’t actually…

Summary Points Repurposing of Shellter: Hackers have weaponized the legitimate red teaming tool Shellter, initially used by security professionals, to distribute stealer malware after a leaked copy was exploited for infostealer campaigns. Recent Exploits: The abuse of Shellter, particularly its Elite version 11.0, has led to multiple infostealer campaigns, including Lumma Stealer and Rhadamanthys Stealer, since April 2025, leveraging self-modifying shellcode for evasion. Propagation via Misleading Lures: Attackers have utilized tactics such as sponsorship lures targeting content creators and deceptive YouTube videos claiming to offer gaming mods to distribute malware linked to Shellter. Criticism and Response: The Shellter Project criticized…

DataBahn.ai has welcomed Preston Wood as its new Chief Security and Strategy Officer. The company, which builds security-focused data pipeline platforms for modern enterprises, sees his appointment as a key step in strengthening its leadership team while it continues to grow and serve businesses around the world. Wood brings over 25 years of experience in cybersecurity and technology leadership. He has held senior roles at major banks, including Zions Bancorporation, Bank of the West, and City National Bank, serving as Chief Information Security Officer three times and Chief Technology Officer twice. Throughout his career, he has been recognised for building…

Summary Points Exploitation of Shellter: Hackers have begun using the legitimate evasion framework Shellter, particularly its Elite version 11.0, for infostealer campaigns, bypassing antimalware defenses since late April 2025. Safeguards and Breach: Although Shellter’s developers implemented safeguards to prevent misuse and vet buyers rigorously, a leaked copy from a customer enabled malicious actors to exploit the tool. Detection and Response: Elastic Security Labs discovered the compromised use of Shellter, prompting the framework’s developers to delay a new release while they patched the vulnerabilities identified in the malware samples. Controversy Over Communication: Shellter criticized Elastic for not notifying them promptly about…

Essential Insights Ahold Delhaize USA’s late 2024 cyberattack may have compromised sensitive information for over 2.2 million individuals, including Social Security numbers and health records. The breach primarily affected current and former employees and their dependents, but did not impact customer payment or pharmacy systems. The company has offered two years of credit monitoring as the only remedy and acknowledges the seriousness of the issue, promising to enhance system security. The incident, claimed by the threat group Inc Ransom, follows a similar attack on United Natural Foods, which disrupted their operations as well. The Scope of the Breach In late…

Fast Facts Spyware Threat: U.S. Senator Ron Wyden criticizes the FBI for inadequate cybersecurity guidance against the rising threat of commercial spyware used by foreign adversaries. Insufficient Advice: Wyden claims that the FBI’s basic security tips are ineffective against sophisticated cyber tools, including ‘zero-click’ spyware that can infiltrate devices without user action. Targeted Surveillance: Foreign governments have utilized such spyware to monitor U.S. diplomats, officials, and journalists, prompting concerns about national security and privacy. Proposed Measures: Wyden urges the FBI to improve defenses by enabling anti-spyware on devices, blocking malicious ads, disabling tracking IDs, and opting out of data broker…

Top Highlights Ransomware Impact: Ingram Micro confirmed its recent operational disruptions were due to a ransomware attack by the group SafePay, impacting order processing capabilities. Restoration Progress: The company is making strides in restoring its transactional business, allowing global subscription orders to be processed and support channels to operate in various countries. Ongoing Limitations: While subscription orders resume, limitations persist on hardware and tech orders, with specifics to be clarified during the ordering process. Public Apology: Ingram Micro has publicly apologized to customers and vendors for the disruptions, though it has not determined the attack’s material impact on operations. Restoration…

Essential Insights Critical Need for Security: As remote and hybrid work increases, virtualization strategies face significant security risks, including RDP attacks and session hijacking, making robust solutions like Zero Trust architecture and Multi-Factor Authentication essential. TruGrid SecureRDP Advantages: TruGrid SecureRDP enhances security by minimizing attack surfaces—no open firewall ports, built-in MFA, and geo-blocking—while optimizing network performance with a global fiber optics mesh to reduce latency. Simplified Management: TruGrid addresses scalability challenges by enabling dynamic scaling, centralized management of user access and policies, and easy integration with existing systems, thereby reducing IT workload and complexity. User Experience Focus: Enhancements in user…

Summary Points Qantas confirmed an extortion attempt related to a June 30 cyberattack, where hackers accessed a third-party contact center platform, compromising data for 6 million customers, including personal details. The airline’s operations were unaffected, and it reported no compromised credit card, passport, or financial data, while actively monitoring for potential data leaks. Qantas has engaged the Australian Federal Police for the criminal matter and is validating claims made by the hackers, stating there’s no evidence of data being publicly released. The airline warned customers of scammers impersonating Qantas to obtain sensitive information, advising vigilance against unusual communications. The Issue…

From overprivileged admin roles to long-forgotten vendor tokens, these attackers are slipping through the cracks of trust and access. Here’s how five retail breaches unfolded, and what they reveal about… In recent months, major retailers like Adidas, The North Face, Dior, Victoria’s Secret, Cartier, Marks & Spencer, and Co‑op have all been breached. These attacks weren’t sophisticated malware or zero-day exploits. They were identity-driven, exploiting overprivileged access and unmonitored service accounts, and used the human layer through tactics like social engineering. Attackers didn’t need to break in. They logged in. They moved through SaaS apps unnoticed, often using real credentials and legitimate…