Author: Staff Writer

Summary Points Data Breach Announcement: Sensata Technologies, a global industrial tech firm with over $4 billion in annual revenue, informed former and current employees of a data breach stemming from an April ransomware attack. Incident Timeline: The ransomware actors breached Sensata’s network from March 28 to April 6, 2025, leading to unauthorized access and data theft, though the exact scope and type of stolen data was initially unclear. Exposed Information: The stolen data includes sensitive personal details such as names, addresses, Social Security Numbers, financial account information, and medical records, affecting both current and former employees and their dependents. Support…

Summary Points Vulnerability Discovery: A security firm found nearly 400 critical human-machine interfaces (HMIs) in U.S. water utilities exposed to the internet, with 40 devices fully unauthenticated, allowing anyone to control them. Rapid Remediation: Following intervention from the security firm and the EPA, utilities secured their systems swiftly, reducing online unauthenticated access to fewer than 6% by May, with nearly 60% fixing issues within weeks. Sector’s Cybersecurity Challenges: The water sector, facing significant cyber threats from state-linked groups and ransomware, remains particularly vulnerable due to limited funding and expertise for cybersecurity defenses. Federal Awareness and Action: In response to the…

Top Highlights Cyberattack Impact: United Natural Foods (UNFI), the largest wholesale distributor in North America, shut down some systems due to a cyberattack discovered on June 5, disrupting customer orders across its network of 53 distribution centers. Operational Measures: In response to the breach, UNFI activated its incident response plan, implemented containment measures, and engaged external cybersecurity experts while notifying law enforcement to investigate the incident. Business Continuity: UNFI has established workarounds to maintain customer service despite system outages, although the company has not disclosed the nature of the attack or confirmed any data theft. Industry Context: This incident marks…

Top Highlights Vulnerability Exposure: Nearly 35,000 solar power devices, crucial for energy infrastructure, are openly accessible online, heightening cybersecurity risks according to Forescout. Geographic Distribution: Most exposed devices are concentrated in Europe (75%) and Asia (17%), with Germany and Greece housing significant numbers. Outdated Equipment Risks: Discontinued equipment like SMA’s Sunny WebBox continues to be a security liability despite known vulnerabilities, making them prime targets for cyber threats. Urgent Need for Security: The report highlights the critical need for robust cybersecurity practices and visibility in managing infrastructure to mitigate the risks of digitalization in the energy sector. Rising Risks in…

For businesses, compliance with regulations can often appear to be restrictive, and costly and reduce the speed of business. It’s still necessary to create an environment that protects not only internal data but also external constituents like partners and customers. Highly regulated industries, such as healthcare and finance, are often faced with a variety of regulations that vary by geography and can carry steep penalties and consequences for noncompliance. Most companies struggle to comply with regulations. In fact, Business Wire estimates that “71% of companies could potentially fail a cyber audit, which often includes identity management aspects”. What are some…

Top Highlights Failed Breaches by China-Linked Hackers: SentinelOne reported attempts by China-backed hackers to breach their security by targeting an IT vendor and conducting server reconnaissance. Extensive Targeting of Global Organizations: The attackers focused on a wide variety of entities, including government, finance, and media organizations, revealing security firms as prime targets. Identified Attack Clusters: The report identified two main activity clusters, PurpleHaze and ShadowPad, linked to Chinese cyber espionage, with significant overlaps in infrastructure and tactics. Highlighting Cybersecurity Vulnerabilities: SentinelOne emphasizes the vulnerability of cybersecurity companies to attacks due to their sensitive roles and visibility into client systems, urging…

Quick Takeaways Critical Vulnerabilities: Google has released urgent patches for a high-severity Chrome 0-day vulnerability exploited in the wild, highlighting the importance of timely updates to protect against potential attacks. New Malware Attacks: Notable cyber threats include PathWiper malware targeting Ukrainian infrastructure and the BladedFeline group attacking Iraqi officials, indicating rising regional cyber hostilities and the increasing sophistication of threat actors. Exploited Trust: New tactics like vishing, involving fake IT support impersonation to breach Salesforce, and bogus WordPress plugins to harvest credentials, show attackers are increasingly manipulating user trust rather than exploiting software vulnerabilities directly. Global Cybersecurity Alerts: Alerts on…

Essential Insights Kingsley Uchelue Utulu, a Nigerian national, has been sentenced to 63 months in prison for participating in a hacking scheme targeting US tax preparation companies since 2019, resulting in identity theft and fraudulent tax returns. The cybercriminals stole personal information from thousands of individuals, leading to attempted fraudulent tax returns valued at approximately $8.4 million, of which at least $2.5 million was successfully obtained. The stolen identities were also exploited to file deceptive claims with the SBA’s Economic Injury Disaster Loan program, yielding around $819,000 for the fraudsters. In addition to his prison sentence, Utulu must pay over…

Fast Facts Malware Development and Security Breaches: OpenAI banned ChatGPT accounts linked to Russian-speaking threat actors and Chinese hacking groups that used AI to enhance malware capabilities, including developing Windows malware and automating social media. ScopeCreep Campaign: The Russian threat actor’s malware campaign, dubbed ScopeCreep, involved creating trojanized software that escalates privileges, avoids detection, and exfiltrates sensitive data, using techniques like PowerShell obfuscation and DLL side-loading. Chinese Hacking Activities: Accounts associated with Chinese groups engaged in activities like open-source research, FTP server brute-forcing, and developing scripts for social media automation, exploiting AI for infrastructure setup and penetration testing. Wider Global…

Traditional incident response plans are no longer enough. Cybercriminals are relentlessly targeting identities, exploiting stolen credentials and weak access points to wreak havoc. While there’s a well-trodden path for handling malware and network breaches, the identity piece of the puzzle is often missing. Organizations lack the clear procedures to quickly identify compromised accounts and stop attackers from spreading like wildfire. That’s where a robust Identity Incident Response (IR) Playbook comes in. It’s the essential tool for fortifying your defenses and protecting your organization’s most valuable assets. In this webinar, you’ll discover: Why identity is the new frontline in the…