Author: Staff Writer

Quick Takeaways Data Breach Notification: Johnson Controls disclosed a massive ransomware attack in September 2023, impacting its global operations and prompting notifications to affected individuals due to unauthorized access from February to September 2023. Ransomware Gang Involvement: The attack, attributed to the Dark Angels group, involved encryption of systems and theft of over 27 TB of corporate documents, with a ransom demand of $51 million. Operational Impact: The cyberattack forced the company to shut down significant portions of its IT infrastructure, severely affecting customer-facing systems and incurring initial response costs of $27 million. Ongoing Investigation: Johnson Controls engaged third-party cybersecurity…

Top Highlights Emergency Update: Google has released updates to address CVE-2025-6554, a high-severity zero-day vulnerability in Chrome, marking the fourth such flaw fixed in 2023. Exploitation Awareness: The vulnerability is actively exploited in the wild; however, Google has withheld detailed technical information pending widespread user updates. Rapid Response: The fix was deployed globally across platforms (Windows, Mac, Linux) within a day of discovery by Google’s Threat Analysis Group. Historical Context: This follows previous zero-day fixes in March, May, and June 2023, underscoring ongoing risks to users from state-sponsored cyberattacks targeting high-profile individuals. Key Challenge Google has undertaken critical emergency measures…

Essential Insights Massive Data Breach: Esse Health is notifying over 263,000 individuals about a cyberattack in April 2025 that compromised personal information, including Social Security numbers and health records. Incident Timeline: The cyberattack, discovered on April 21, severely disrupted access to the electronic medical record and phone systems. Certain services were restored by May 13, with full capabilities returning by early June. Data Security Measures: Despite no evidence of misuse, Esse Health is enhancing its security protocols and offering affected individuals 12 months of free identity protection services. Nature of Attack: While specifics on the cyberattack type remain unclear, the…

Essential Insights Increased Iranian Cyber Threats: US government agencies warn of heightened Iranian cyber threats against critical infrastructure, particularly following US air strikes on Iran’s nuclear sites, with a focus on industrial control systems (ICS) and operational technology (OT). Diverse Attack Methods: Iranian threat actors may utilize various attack methods, including ransomware, DDoS attacks, phishing, and specifically target organizations linked to Israeli defense firms, with known hacktivists, Cyber Av3ngers, attacking water facility PLCs. Vulnerable Systems Exposed: A Censys report reveals a concerning number of ICS products exposed on the internet, with many targeted using default credentials. Notably, the exposure of…

Ready to harness the power of zero trust security to minimize your organization’s attack surface? Join our insightful webinar with Zscaler to learn how to tackle an ever-evolving attack surface. Traditional castle-and-moat-based security architectures are ineffective at protecting enterprises against today’s sophisticated attacks, which increasingly leverage AI and as-a-service models to maximize speed and damage. Threat actors increasingly exploit the vulnerabilities stemming from software and infrastructure exposed to the internet. This ironically includes security tools, particularly firewalls and VPNs, which end up giving attackers direct network access to execute their attacks.  Zero trust security is the best way to minimize…

Top Highlights Urgent Cyber Threat: U.S. cyber agencies, including the FBI and NSA, have issued a warning about potential cyberattacks from Iranian-affiliated hackers targeting critical infrastructure, particularly Defense Industrial Base (DIB) companies linked to Israel. Increased Risk: Despite no current active campaigns detected, organizations in energy, water, and healthcare sectors are advised to bolster defenses due to previous attacks and ongoing Middle East unrest. Attack Methods: Iranian hackers exploit unpatched vulnerabilities and default passwords for system breaches, as seen in a 2023 attack on a Pennsylvania water facility; they also engage in politically motivated DDoS attacks and collaborate with ransomware…

Identity-based attacks are on the rise. Attacks in which malicious actors assume the identity of an entity to easily gain access to resources and sensitive data have been increasing in number and frequency over the last few years. Some recent reports estimate that 83% of attacks involve compromised secrets. According to reports such as the Verizon DBIR, attackers are more commonly using stolen credentials to gain their initial foothold, rather than exploiting a vulnerability or misconfiguration. Attackers are not just after human identities that they can assume, though. More commonly, they are after Non-Human Identities (NHIs), which outnumber human identities…

Quick Takeaways Platform Upgrades: Microsoft plans to implement significant Windows platform upgrades in July 2024 to enhance operational resilience and prevent disruption from software updates following a major outage caused by CrowdStrike. New Features: Updates will include quick machine recovery and tools for Microsoft 365 users to access cloud services securely, part of a broader overhaul for a more secure operational environment. Collaborative Efforts: Microsoft is collaborating with security firms and partners to share information transparently, enhancing customer resilience and improving the overall Windows endpoint security program. Impact of Previous Outage: The July 2024 outage affected 8.5 million Windows systems,…

THE HAGUE, Netherlands (AP) — The International Criminal Court has been targeted by a “sophisticated” cyberattack and is taking measures to limit any damage, the global tribunal announced Monday.The ICC, which also was hit by a cyberattack in 2023, said the latest incident had been contained but did not elaborate further on the impact or possible motive.“A Court-wide impact analysis is being carried out, and steps are already being taken to mitigate any effects of the incident,” the court said in a statement.The attack happened last week.“All necessary measures have been taken to ensure the business continuity,” court spokesman Fadi…

Jun 30, 2025Ravie LakshmananCyber Attack / Critical Infrastructure U.S. cybersecurity and intelligence agencies have issued a joint advisory warning of potential cyber-attacks from Iranian state-sponsored or affiliated threat actors. “Over the past several months, there has been increasing activity from hacktivists and Iranian government-affiliated actors, which is expected to escalate due to recent events,” the agencies said. “These cyber actors often exploit targets of opportunity based on the use of unpatched or outdated software with known Common Vulnerabilities and Exposures or the use of default or common passwords on internet-connected accounts and devices.” There is currently no evidence of a…