Author: Staff Writer

AXA XL is collaborating with FTI Consulting‘s Cybersecurity & Data Privacy Communications Team and Norton Rose Fulbright‘s Cyber practice to provide cyber insurance clients in North America with an innovative cybersecurity communications training program, Secure Your Seat. The unique training equips Chief Information Security Officers (CISOs) and other cybersecurity leaders with the skills to effectively communicate complex technology and cybersecurity concepts to leadership, improving strategic decision-making and promoting a culture of security within their organizations. Cyber Technology Insights : Seraphic Launches BrowserTotal: Free AI-Powered Browser Security Assessment According to Gwenn Cujdik, AXA XL’s Incident Response and Cyber Services Lead in the Americas, “Effective communication is essential for a…

Quick Takeaways Cyberattack Disruption: United Natural Foods, Inc. (UNFI), a major distributor for Amazon’s Whole Foods, experienced a cyberattack on June 5, leading to temporary disruptions in business operations and order fulfillment. Investigative Measures: The company is investigating the scope and impact of the incident while working to restore affected IT systems, acknowledging that unauthorized activity was detected in their network. Potential Ransomware Threat: Speculation exists that the attack may be linked to ransomware, though no group has claimed responsibility as of the latest updates. Context of Increased Attacks: This incident follows recent ransomware attacks on UK retailers, highlighting a…

Liongard, the global leader in Attack Surface Management (ASM), announced the acquisition of the Darklight Cyio platform, an AI-powered cyber risk solution that applies real-time threat intelligence and business context to risk prioritization. Darklight Cyio is a strong strategic fit, enhancing Liongard’s platform capabilities and strengthening its value proposition for customers and partners. The transaction is accretive, aligns with the company’s growth strategy, contributes positively to earnings, and supports Liongard’s commitment to maintaining a strong financial foundation. “We’re confident this transaction positions us well for sustained success,” said Mayank Singhvi, Chief Financial Officer at Liongard. “This acquisition supports our strategy to grow with purpose…

Welcome to your Daily CyberTech Highlights! Each day, we bring you the most essential news and insightful analysis from the world of Cybersecurity, Cloud security, Data protection, Data privacy and Technology. Stay informed on the latest trends, threats, and innovations shaping the digital landscape, so you can make informed decisions and stay ahead of the curve. Let’s dive into today’s top stories! Daily CyberTech Highlights Brand Covered: Akto Headline: Akto Launches Industry’s First MCP Security Platform Akto, a leader in API security, announced the launch of Akto MCP Security, the world’s first purpose-built solution designed to secure Model Context Protocol (MCP) servers. As AI agents like ChatGPT,…

ChatGPT and other Generative AI tools are revolutionising productivity across industries. However, they pose significant data leakage risks that organisations must address. Research indicates that 15% of enterprise employees paste data into GenAI tools, with one in three unknowingly sharing sensitive information. This leads to data leakage, compliance violations, and security breaches. It’s a real risk, happening more often than you think. Many security solutions offer only blunt “allow all” or “block all” approaches to GenAI. This puts organisations in a tough spot—how to safeguard against data leaks while still leveraging GenAI’s benefits? Don’t let data security concerns hold back…

Quick Takeaways False Alarm: The Arkana Security gang falsely claimed to have stolen new Ticketmaster data; instead, they listed data from the 2024 Snowflake data theft attacks, causing confusion and concern. Previous Breach Confirmation: BleepingComputer verified that the files shown in Arkana’s post matched previously leaked Ticketmaster data from the Snowflake incident, where several organizations were targeted using compromised credentials. Extortion Tactics: The threat actors ramped up their extortion attempts by showcasing stolen ticket information and leveraging the notoriety of past breaches, including those linked to ShinyHunters and the PowerSchool data breach. Unclear Origins: The origin and ownership of the…

GARTNER SECURITY & RISK MANAGEMENT SUMMIT — Washington, DC — Hype can be a detriment or an opportunity to improve one’s security posture, according to the opening keynote at Gartner’s Security & Risk Management Summit today.The keynote, entitled “Harness the Hype: Turning Disruption Into Cybersecurity Opportunity,” was hosted by Gartner distinguished vice president analysts Leigh McMullen and Katell Thielemann. The talk concerned the waves of hype that can take over the cyber industry, either through optimism for emerging technologies like AI or preoccupation with certain threats and risks.McMullen referenced major changes to the public sector in the past six months, involving executive orders, budget…

Essential Insights Unauthorized Activity Investigation: United Natural Foods, Inc. (UNFI) is addressing "temporary disruptions" due to unauthorized activity affecting its IT systems, discovered during a recent regulatory filing. System Outages and Workarounds: Key systems were taken offline for investigation, but UNFI is implementing workarounds to continue service delivery where feasible. Collaboration with Experts: The company has engaged leading forensic experts and law enforcement in its investigation to assess the breach and restore operations securely. Industry Context: This incident follows a previous online attack on Ahold Delhaize’s systems, highlighting growing cybersecurity risks in the grocery sector. The Impact of Cyberattacks on…

Fast Facts Cyberespionage Threats: SentinelOne reported ongoing cyberespionage probes from Chinese threat actors targeting cybersecurity vendors, emphasizing that no breaches occurred within their network. Supply Chain Concerns: A third-party contractor responsible for employee laptop logistics was briefly compromised, raising supply chain security alarms during the attack attempts. Targeted Infrastructure: Between July 2024 and March 2025, over 70 organizations were targeted, utilizing the ShadowPad backdoor linked to APT41, with reconnaissance conducted on SentinelOne’s servers. High-Value Targets: The company warns that cybersecurity firms are increasingly attractive targets for threat actors due to their critical roles, creating potential risks for their many downstream…

Quick Takeaways Cyber Espionage Campaign: Between July 2024 and March 2025, over 70 organizations—including a South Asian government and a European media entity—were targeted in a series of cyber intrusions linked to Chinese threat actors, particularly the PurpleHaze cluster. Intrusion Timeline: The attacks include multiple activity clusters indicating a sophisticated operation: starting with a government entity in June 2024, followed by a global targeting initiative, and specific attacks on SentinelOne’s IT logistics company and a media organization. Malicious Tools and Methods: State-sponsored actors employed advanced tools, including ShadowPad and GoReShell, often utilizing vulnerabilities like CVE-2024-8963 and CVE-2024-8190 to gain unauthorized…