The latest Microsoft Digital Defense Report reveals that over 52% of cyberattacks are motivated by extortion and ransomware, with a significant focus on data theft. The report emphasizes the need for proactive cybersecurity measures and modernization in defense strategies.
Recent incidents in Australia highlight how poor oversight of AI tools can lead to costly errors and privacy violations. These failures in AI governance reveal significant risks for organizations, particularly in the tech and consultancy sectors.
AI technology is increasingly integrated into workplaces, shaping the labor market and HR practices. Employers and employees must adapt to effectively manage generative AI and other AI-powered systems.
SimonMed Imaging has reported a data breach impacting over 1.2 million patients, with unauthorized access occurring between January 21 and February 5. The breach was linked to the Medusa ransomware group, which claimed to have stolen 212 GB of sensitive data.
.png)
Trend Micro researchers have uncovered a serious vulnerability involving hardcoded Azure Storage Account credentials in an Axis Communications plugin for Autodesk Revit. This exposure could allow attackers to compromise storage content, raising significant supply chain risks.
Oracle has announced a high-severity vulnerability in its E-Business Suite, tracked as CVE-2025-61884, which allows remote, unauthenticated access to sensitive resources. This flaw has not yet been exploited in the wild, but it poses significant risks to corporate users.
.webp)
The Astaroth banking trojan has resurfaced, utilizing GitHub as a platform for malware configuration updates. This sophisticated malware employs targeted phishing tactics to steal banking and cryptocurrency credentials while evading detection through advanced techniques.
Oracle has issued an emergency fix for a critical information disclosure vulnerability in its E-Business Suite, tracked as CVE-2025-61884. The flaw allows remote unauthenticated access to sensitive resources, raising concerns about potential exploitation by threat actors.
A recent study by MIT reveals that 80% of ransomware attacks utilize artificial intelligence, highlighting the need for a multi-layered defense approach. The research outlines three essential pillars for effective AI defense in cybersecurity.
Major airlines Qantas, Air India, Air France, and KLM have suffered significant data breaches, exposing millions of customer records. The breaches, linked to third-party service providers, have raised serious security concerns across the airline and hospitality sectors.
The Clop Ransomware group has announced a breach of Harvard University, adding it to their Tor data leak site. They claim to have stolen sensitive data and will leak it soon, raising concerns about the potential impact on the prestigious institution.
Threat actors are increasingly using Discord webhooks as covert command-and-control channels within open-source packages, allowing for the stealthy exfiltration of sensitive data. This tactic leverages hard-coded webhook URLs to bypass security measures and exfiltrate secrets from developer environments.
Recent bank deregulation efforts are expected to significantly increase lending capacity on Wall Street, potentially unlocking $2.6 trillion. This move has sparked discussions about the implications for the financial sector and the economy at large.
The Beamglea campaign has exploited 175 malicious npm packages to conduct phishing attacks, primarily targeting tech and energy firms across Europe and APAC. Researchers discovered that these packages, which have over 26,000 downloads, redirect users to phishing sites designed to steal credentials.
