Author: Staff Writer

Quick Takeaways Data Breach Incident: Lee Enterprises, a major U.S. newspaper publisher, is notifying nearly 40,000 individuals about the theft of their personal information during a ransomware attack in February 2025, which compromised names and Social Security numbers. Attack Details: The attack was confirmed on February 3, 2025, leading to significant disruptions in printing and delivery operations due to a systems outage caused by the ransomware, attributed to the Qilin group. Extent of the Breach: The Qilin ransomware gang claimed to have stolen 120,000 documents (350 GB) of sensitive data and threatened to release it publicly, which includes critical financial…

MIND, the upcoming leader in data loss prevention (DLP), announced $30M Series A funding, just seven months after emerging from stealth, led by Paladin Capital Group and Crosspoint Capital Partners with participation from Okta Ventures and existing investor YL Ventures. This round brings MIND’s total funding to over $40M and will fuel MIND’s strategic growth and enhance its data security platform capabilities. In the past seven months, MIND has achieved 500% customer growth, gained significant traction among Fortune 1000 companies, prevented sensitive data loss across hundreds of thousands of endpoints through its proprietary endpoint agent and delivered immediate value by protecting the sensitive data of…

Fast Facts Significant Breach Growth: The Play ransomware gang has breached approximately 900 organizations as of May 2025, tripling reported victims since October 2023, impacting businesses across multiple continents. Advanced Tactics: The gang employs recompiled malware, complicating detection efforts, and pressures victims through direct threats via phone calls to release stolen data unless ransom is paid. Exploitation of Vulnerabilities: Initial access brokers affiliated with Play are exploiting vulnerabilities in remote monitoring tools, paving the way for potential future ransomware attacks. Preventative Measures Recommended: Security agencies urge organizations to keep systems updated, implement multi-factor authentication (MFA), maintain offline backups, and develop…

Global IT services provider FPT has signed a Memorandum of Understanding (MOU) with Cymotive Technologies, an Israel-based leader in automotive cybersecurity. This agreement initiates a collaboration to introduce Cymotive’s proven cybersecurity solutions to FPT’s established automotive customer base, jointly develop and deliver next-generation cybersecurity solutions for Software-Defined Vehicles (SDVs), and advance safer, smarter, and more connected mobility. The MOU lays the groundwork for a strategic collaboration focused on the joint development and commercialization of advanced cybersecurity solutions tailored to the evolving demands of the automotive industry. The agreement focuses on leveraging and commercializing Cymotive’s pioneering cybersecurity solutions, extensive engineering experience, and…

Fast Facts VF Corporation notified over 2,800 individuals of a credential stuffing attack on The North Face website, where hackers accessed user accounts using previously compromised email addresses and passwords. The breach occurred on April 23, allowing attackers to obtain personal information like names, addresses, and purchase details, although no payment card information was compromised, as it is securely tokenized. VF Corporation promptly disabled passwords for the affected accounts and urged users to create strong, unique passwords to prevent similar incidents. Users are advised to be vigilant against phishing threats, as attackers may use the compromised data to impersonate the…

With more than $100 million raised and 300% revenue growth since its Series B, Zero Networks is shifting the balance of power in cybersecurity from attackers to defenders Zero Networks, the cybersecurity company reclaiming microsegmentation to finally deliver on its promise, announced it raised $55 million in Series C funding. The raise solidifies Zero Networks’ position at the forefront of the “Era of the Defender” – a paradigm shift in cybersecurity where the burden of effort no longer falls on defenders reacting to threats, but on attackers forced to confront proactive, identity- and network-driven controls. At the heart of Zero…

Top Highlights New European Security Program: Microsoft launched a European Security Program aimed at enhancing cybersecurity for EU governments, expanding its existing Government Security Program to all EU countries and allies. Focus on State-Sponsored Threats: The initiative targets cyberattacks from state-backed actors in Russia, Iran, China, and North Korea, addressing prominent espionage activities attempting to infiltrate European networks. AI-Driven Defense: The program emphasizes artificial intelligence to provide real-time threat insights and actionable intelligence, enhancing detection and response to sophisticated cyber threats. Strengthening Collaborations: Microsoft will renew partnerships with various organizations, including Europol, to develop defense measures, track new threats, and…

CompassMSP LLC (“Compass”), a leader in the IT and cybersecurity managed services industry, is pleased to announce the appointment of Michael Rapp as Chief Executive Officer. Rapp brings over 20 years of leadership experience in building high-growth platforms and winning cultures across the technology services sector—from startups to publicly traded, multi-billion-dollar companies. Rapp succeeds Ari Santiago, who is stepping back from the role while remaining a significant investor and continuing with the company as a Strategic Advisor, working with the Board and Rapp. Cyber Technology Insights : Fortinet Launches Cybersecurity Curriculum in Australia to Boost Digital Resilience in Schools After completing its…

Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.Over the past several months, the threat actor, whom Google’s threat intelligence group is tracking as UNC6040, has breached multiple organizations in this fashion and stolen large volumes of data from within their Salesforce platforms with a view to extort them later. Many of the victims have been within English-speaking branches at large multinational companies.No Hack Attacks”A prevalent tactic in UNC6040’s operations involves deceiving victims into authorizing a malicious connected app to their organization’s…

Summary Points DLP Ineffectiveness: Traditional Data Leakage Prevention (DLP) tools struggle to secure modern SaaS environments, where 70% of enterprise data leaks occur in-browser, making legacy systems obsolete. Invisible Data Risks: Over half of all data leaks involve covert actions, such as copying data into chat apps, which traditional DLP solutions fail to monitor or address. Browser as Control Point: With sensitive data primarily residing in browser sessions, transitioning to browser-centric DLP is essential for addressing security challenges associated with real-time interactions and unauthorized tools. Proactive Monitoring: A browser-centric approach continuously monitors user actions, distinguishing between personal and corporate activities,…