Author: Staff Writer
Staff Writer
John Marcelli is a staff writer for the CISO Brief, with a passion for exploring and writing about the ever-evolving world of technology. From emerging trends to in-depth reviews of the latest gadgets, John stays at the forefront of innovation, delivering engaging content that informs and inspires readers. When he's not writing, he enjoys experimenting with new tech tools and diving into the digital landscape.
KELA, ULTRA RED and SLING build resilience against cyber threats with industry-leading prioritization, triaging and proactive defenses KELA, a global leader in cyber threat and exposure intelligence solutions, announced that Sysmex, a trusted global leader in healthcare solutions, has selected the KELA Group as its primary provider of external threat exposure management solutions. In addition to KELA’s leading threat intelligence platform, Sysmex has implemented the full KELA Group suite, including ULTRA RED for Continuous Threat Exposure Management (CTEM) and SLING for Third-Party Cyber Risk Management, to bolster its cybersecurity capabilities. KELA’s solutions help Sysmex enhance its global cybersecurity operations, building…
Operational Technology (OT) Infrastructure Gets Simple, Effective Zero Trust Protection in Live Exercise Zentera Systems, the leader in critical asset protection, will demonstrate live Zero Trust defenses against cyberattacks during the Defend the Airport 2025 Collaborative in Columbia, MD (June 17-18). Using the Technology Advancement Center’s (TAC) Adega Airport Cyber Range, the exercise will show aviation stakeholders how Virtual Chambers block ransomware, insider threats, and lateral movement attacks in real time for brownfield applications and networks. Cyber Technology Insights : BigID Introduces First Data-Driven Assessment for AI Governance and Third-Party AI Use What Attendees Will See Virtual Chambers render high-value airport systems invisible to attackers…
New hands-on Ozobot and CYBER.ORG robotics lessons empower educators to teach foundational cybersecurity skills Ozobot, a global leader in programmable robotics and STEAM-based learning solutions, announced a new partnership with CYBER.ORG, the academic initiative of the Cyber Innovation Center and a national leader in K–12 cybersecurity education. Together, the organizations have developed eight hands-on lessons that use Ozobot’s award-winning Evo coding robot to introduce cybersecurity concepts to students in grades K–5. Aligned to CYBER.ORG’s K–12 Cybersecurity Learning Standards, the new lessons are designed to make cybersecurity instruction accessible, engaging, and age-appropriate. Educators can access the lessons for free on both the CYBER.ORG learning platform and Ozobot Classroom,…
National managed IT services provider advances vision for differentiated service offerings and organizational growth with expanded footprint Integris, a national leader in future-ready managed services, backed by OMERS Private Equity, announces the acquisition of premier managed service provider, TechMD along with its security division, 1nteger Security. This strategic acquisition is its largest to date and signifies the next pivotal milestone in Integris’ continued evolution by expanding the company’s innovative solutions and services that drive digital maturity for small to midsize businesses. Cyber Technology Insights : BigID Introduces First Data-Driven Assessment for AI Governance and Third-Party AI Use “Every acquisition we make is a strategic step toward our…
Welcome to your Daily CyberTech Highlights! Each day, we bring you the most essential news and insightful analysis from the world of Cybersecurity, Cloud security, Data protection, Data privacy and Technology. Stay informed on the latest trends, threats, and innovations shaping the digital landscape, so you can make informed decisions and stay ahead of the curve. Let’s dive into today’s top stories! Daily CyberTech Highlights Brand Covered: Atos Headline: Atos Launches AI-Powered Security Operations Center in Qatar to Strengthen Cyber Resilience Atos, a global leader in digital transformation and cybersecurity, unveiled its cutting-edge Security Operations Center (SOC) in Qatar, expanding its global network of interconnected SOCs.…
Quick Takeaways Critical Vulnerability: A newly identified flaw in Microsoft’s Copilot AI tool, named EchoLeak (CVE-2025-32711), could have allowed remote attackers to steal sensitive data via a zero-click attack simply by sending an email. Zero-Click Attack: This vulnerability marks the first known zero-click attack on an AI agent, enabling attackers to exfiltrate sensitive Microsoft 365 data without user interaction. Wide-Ranging Impact: Potentially exposed data included chat histories, OneDrive documents, and other organizational content, leaving many organizations at risk until recently. Mitigation and Response: Microsoft has addressed the issue and updated its products, emphasizing collaboration with researchers to enhance security measures…
Quick Takeaways Data Breach Impact: Zoomcar Holdings disclosed a data breach affecting 8.4 million users, with sensitive information like names, phone numbers, and addresses exposed, though financial data remains secure. Incident Discovery: The breach was detected on June 9, 2025, after employees were alerted by a threat actor claiming unauthorized access to company data. Regulatory Compliance: As a U.S.-listed company, Zoomcar is obligated to report this cybersecurity incident to the U.S. Securities and Exchange Commission (SEC). Past Breach: This incident follows a previous breach in 2018 that compromised data for 3.5 million users, highlighting ongoing cybersecurity challenges for the company.…
Quick Takeaways Target Shift: Hackers linked to recent attacks on U.K. and U.S. retailers are now focusing on the insurance industry, with multiple confirmed incidents reported. Attack Group: The attackers, known as Scattered Spider, have a history of targeting specific sectors and use sophisticated social engineering tactics to exploit vulnerabilities in IT help desks. Increased Vigilance: Google warns that the insurance sector should be on high alert for social engineering schemes, especially in light of recent targeting activity. Incident Under Investigation: Erie Insurance is currently investigating a suspected cyberattack related to unusual network activity, although no specific threat actors have…
There’s a war raging in the heart of every developer. On one side, you have the id: the impulse-driven creative force that wants to code at the speed of thought and would prefer to deploy first and ask questions later. On the other side, there’s the superego, which wants to test every line of code and would push a release by a month if it meant catching one extra bug. Experienced developers know how to act as a referee between these two forces and find the right balance between speed and security. But inexperienced or overworked devs often put their…
Top Highlights Emerging Threat: Hackers, part of the Scattered Spider group, are breaching U.S. insurance companies, employing sophisticated social engineering tactics previously seen in their attacks on U.K. retailers. Focus on Social Engineering: Organizations must enhance defenses against social engineering, particularly in help desks and call centers, and train employees to recognize impersonation attempts across various communication channels. Key Recommendations: Google Threat Intelligence Group advises comprehensive visibility across infrastructure, strong authentication practices, and rigorous controls for identity management to counter these threats. Learning from Past Breaches: Following similar attacks on retailers, the U.K.’s National Cyber Security Centre recommends activating multi-factor…