Author: Staff Writer

Quick Takeaways Guilty Plea: Nicholas Michael Kloster, 32, admitted to hacking multiple organizations to promote his cybersecurity services, targeting a health club and a Missouri nonprofit in 2024. Hacking Tactics: Kloster breached security systems, accessed sensitive data, offered his services via email, and manipulated his gym membership as part of his scheme. Unauthorized Actions: He installed a VPN, changed passwords, and stole sensitive information, exploiting a former employer’s stolen credit card to purchase hacking tools. Potential Sentencing: Kloster faces up to five years in federal prison, a $250,000 fine, and restitution if convicted. The Issue In a striking case of…

Essential Insights Guilty Plea and Charges: Nicholas Michael Kloster, 32, from Kansas City, has pleaded guilty to hacking multiple organizations to promote his cybersecurity services, facing charges including unauthorized computer access and reckless damage. Bold, Not Sophisticated Attacks: Kloster executed bold hacking incidents, such as accessing a gym’s security cameras after gaining physical entry and altering membership fees, then advertising his skills to the owners. Unauthorized Actions: He gained access to a non-profit organization’s computer using a boot disk to change passwords and install VPN software for future access, demonstrating a blatant disregard for security protocols. Potential Sentencing: Kloster could…

Quick Takeaways SaaS Convenience vs. Resilience: While SaaS platforms enhance operational efficiency, they often lack comprehensive data protection, placing the onus of data security on users amid increasing cyber threats and regulatory pressures. Inadequate Backup Solutions: Many organizations depend on outdated or simplistic data recovery tools that fail to meet the complexity of modern SaaS environments, leading to severe repercussions from human errors and compliance failures. Ransomware and Internal Threats: Evolving cyber threats, including sophisticated ransomware attacks, coupled with underestimated internal risks, pose significant dangers to data integrity, which native SaaS solutions are poorly equipped to handle. Importance of Rapid…

Essential Insights Arrest and Charges: Kai West, a 25-year-old British man suspected of being hacker IntelBroker, was arrested in February 2025 in France and faces extradition to the U.S. on multiple charges, including conspiracy to commit computer intrusions and wire fraud. Cybercrime and Impact: IntelBroker is linked to data theft from over 40 companies, including major names like HPE and Cisco, with damages exceeding $25 million. He offered stolen data for sale, with a combined asking price of over $2 million. Operational Mistakes: Investigators identified West through cryptocurrency transactions and IP addresses that connected him to IntelBroker, alongside his missteps…

Jun 26, 2025Ravie LakshmananThreat Intelligence / Ransomware Cybersecurity researchers are calling attention to a series of cyber attacks targeting financial organizations across Africa since at least July 2023 using a mix of open-source and publicly available tools to maintain access. Palo Alto Networks Unit 42 is tracking the activity under the moniker CL-CRI-1014, where “CL” refers to “cluster” and “CRI” stands for “criminal motivation.” It’s suspected that the end goal of the attacks is to obtain initial access and then sell it to other criminal actors on underground forums, making the threat actor an initial access broker (IAB). “The threat…

Essential Insights Data Breach Notification: Central Kentucky Radiology (CKR) is informing approximately 167,000 individuals about a data breach that occurred between October 16 and 18, 2024, compromising personal information. Compromised Information: The breached data includes names, addresses, dates of birth, Social Security numbers, medical service dates, and service charges, as reviewed and confirmed by CKR on May 7, 2025. Response and Support: CKR has notified law enforcement and the US Department of Health and Human Services, offering affected individuals 12 months of free credit monitoring and guidance on preventing identity theft. Cyberattack Nature: While the specific type of cyberattack remains…

Essential Insights Active Exploitation: CISA has confirmed that a severe authentication bypass vulnerability (CVE-2024-54085) in AMI’s MegaRAC BMC software is actively being exploited, allowing remote attackers to control servers without user interaction. Broad Impact: The vulnerability affects multiple vendors, including HPE, Asus, and ASRock, due to AMI’s central role in the BIOS supply chain, potentially compromising a wide range of equipment in data centers. Serious Risks: Exploitation can lead to drastic outcomes like malware deployment, firmware tampering, server bricking, and creating unresolvable reboot loops, significantly harming operational integrity. Urgent Action Required: Federal agencies have until July 16 to patch affected…

Essential Insights Critical Vulnerabilities Identified: CISA has added three serious vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, affecting AMI MegaRAC, D-Link DIR-859, and Fortinet FortiOS, with evidence of active exploitation. Severe Exploitation Risk: The highest-risk vulnerability, CVE-2024-54085 (CVSS 10.0), allows remote control of devices, while D-Link’s unpatched CVE-2024-0769 and FortiOS’s CVE-2019-6693 enable privilege escalation and sensitive data decryption, respectively. D-Link Products EOL: D-Link DIR-859 routers are past their end-of-life (EoL) and will remain unpatched, making it crucial for users to replace these devices to avoid exploitation. Federal Response Required: Federal agencies must implement mitigations by July 16, 2025, to…

An Iranian state-backed hacking group is spear-phishing cybersecurity and computer science experts in Israel.Charming Kitten (aka APT42, Educated Manticore, Mint Sandstorm) is a decade-plus-old advanced persistent threat (APT) associated with Iran’s Islamic Revolutionary Guard Corps (IRGC), a military organization designed to protect the Iranian regime, which reports directly to the Ayatollah.As part of its mandate, IRGC is known to deploy hacker groups to spy on governments both friendly and unfriendly to the Islamic Republic, as well as individuals outside and inside of Iran. In recent days, for example, Charming Kitten has been playing its role in the regime’s war with…

Remember the days of simply patching vulnerabilities in your SaaS applications? The threat landscape has shifted, and identities are now the new battleground.  Hackers are increasingly targeting the identity fabric of SaaS apps, exploiting human users, service accounts, API keys, and more. This can lead to devastating consequences for your organization, including data breaches, compliance violations, and financial losses. Don’t let your identities be the weak link. You can proactively defend your SaaS environment by implementing a strong identity security posture. Join Maor Bin, CEO & Co-Founder of Adaptive Shield, as he dives deep into the world of SaaS identity security. In…