Author: Staff Writer

Threat hunting is an essential component of any modern cybersecurity strategy. By proactively searching for and identifying potential threats, organizations can better prepare to defend against even the most advanced and persistent cyberattacks. However, dangerous gaps often exist between understanding and addressing security vulnerabilities within the software supply chain. Join Rhys Arkins, VP of Product, and Jeffrey Martin, VP of Product Marketing, as they delve into the intricacies of hunting supply chain threats. This webinar will unveil tactics for effectively hunting five high-profile supply chain threats and analyze real-life examples of our hunting methodology in action. In this webinar, we…

Jun 21, 2025Ravie LakshmananCyber Attack / Critical Infrastructure The April 2025 cyber attacks targeting U.K. retailers Marks & Spencer and Co-op have been classified as a “single combined cyber event.” That’s according to an assessment from the Cyber Monitoring Centre (CMC), a U.K.-based independent, non-profit body set up by the insurance industry to categorize major cyber events. “Given that one threat actor claimed responsibility for both M&S and Co-op, the close timing, and the similar tactics, techniques, and procedures (TTPs), CMC has assessed the incidents as a single combined cyber event,” the CMC said. The organization has categorized the disruption…

Summary Points Cyber Intrusion Alert: Aflac detected suspicious activity on its U.S. network potentially affecting Social Security numbers and personal information, identifying it as part of a broader cybercrime campaign against the insurance sector. Rapid Response: The company contained the intrusion within hours and continues to operate normally, assuring customers of ongoing support for policies and claims amid the incident review. Compromised Data: Affected files may include claims, health information, and Social Security numbers of customers, employees, and agents, although the total number of impacted individuals is still uncertain. Support Measures: Aflac will provide free credit monitoring, identity theft protection,…

In today’s digital age, maintaining a strong online presence is key to business success. However, the threat of Distributed Denial of Service (DDoS) attacks has become more significant than ever, with the potential to bring your business operations to its knees. DDoS attacks are evolving. Hackers now have more advanced techniques, putting your business at risk of serious online problems and expensive downtime. We’re excited to present our upcoming webinar, “Uncovering Contemporary DDoS Attack Tactics,” featuring Andrey Slastenov, a renowned cybersecurity expert and the Head of Security at Gcore. Andrey will explore the latest attack methods, such as IoT botnets…

Quick Takeaways Cyberattack Attribution: Taiwanese cryptocurrency exchange BitoPro attributes a $11 million theft on May 8, 2025, to the North Korean hacking group Lazarus, citing similarities in attack patterns to previous incidents involving major financial institutions and crypto exchanges. Attack Methodology: The attackers executed unauthorized withdrawals during a hot wallet system update by hijacking AWS session tokens through social engineering and malware, bypassing multi-factor authentication to gain control of BitoPro’s cloud infrastructure. Delayed Response: BitoPro initially delayed public acknowledgment of the incident until June 2, 2025, claiming that all operations remained unaffected while hot wallets were replenished from reserves; however,…

Essential Insights Qilin Ransomware Expansion: The Qilin ransomware group is enhancing its services by offering legal counsel to affiliates, intensifying pressure on victims to pay ransoms amidst the decline of its rivals. Increased Activity and Victims: Qilin has gained prominence, reportedly behind 72 attacks in April 2025 and 304 total victims since January, suggesting an influx of former affiliates from other defunct ransomware groups. Advanced Features and Infrastructure: The group provides a sophisticated ecosystem, including custom-built malware, spamming services, and a newly integrated "Call Lawyer" feature designed to intimidate victims during negotiations. Law Enforcement Actions: Recent law enforcement activities have…

Top Highlights Breach Disclosure: Aflac reported a cyber incident on Friday, revealing a breach affecting personal and health information in a wider campaign against U.S. insurance companies, although no ransomware was confirmed. Rapid Response: The company activated its cyber incident response protocols, halting the intrusion within hours, and ensuring that business operations and customer services continued uninterrupted. Sensitive Data Exposed: The breach may have exposed a range of sensitive information, including claims data, health records, and social security numbers, prompting Aflac to hire external cybersecurity experts for investigation. Scattered Spider Threat: Analysts link the breach to the Scattered Spider group,…

Fast Facts Cyberattack on Aflac: Aflac Inc. experienced a cyberattack on June 12, linked to a broader crime wave targeting the insurance industry by a group known as Scattered Spider. Quick Containment and Operational Stability: The company contained the incident within hours and confirmed that its systems remain operational, continuing to serve customers without disruption. Data Compromise Investigation: Aflac is reviewing potentially accessed files that include sensitive personal data, with plans to notify impacted individuals and regulators. Industry-Wide Threat: Researchers indicate the same hackers have shifted focus from retail to insurance, with similar tactics used in past attacks against notable…

Essential Insights Enduring Use of Passwords: Despite the growth of passwordless alternatives, passwords remain the primary defense for online services, leading to significant management burdens, with 40% of service desk calls tied to password issues. Cost Savings with SSPR: Implementing self-service password reset (SSPR) solutions can save organizations an average of $65K per year by allowing users to securely handle their own password resets, reducing IT support workload. Security Measures are Essential: Robust identity verification is critical for SSPR systems to prevent exploitation; methods such as multi-factor authentication (MFA) and dynamic challenge-response questions enhance security against social engineering attacks. User…

VulnCheck for Vulnerability Response and VulnCheck for SBOM Response Now Available in ServiceNow Store; Delivering Prioritized, Actionable Intelligence to Power Threat Response VulnCheck, the exploit intelligence company, announced the launch of VulnCheck for Vulnerability Response and VulnCheck for SBOM Response, certified ServiceNow integrations available today in the ServiceNow Store. Both new VulnCheck apps help customers minimize exploit risk with unmatched visibility and centralized oversight of the vulnerability management and supply chain lifecycles. VulnCheck for Vulnerability Response enables enhanced, organization-wide vulnerability and exploit management to power response workflows within ServiceNow instances. VulnCheck for SBOM Response helps teams defend against software supply chain attacks that introduce…