Risk
-
Air Serbia Battles Cyberattack Amid Payroll Delays
Air Serbia is facing a significant cyberattack that has delayed payslips for employees while raising concerns over data security. The airline’s IT department continues to battle the breach amid a flurry of internal security measures.
-
Louis Vuitton Investigates Data Breach Affecting UK Customers Amid Ongoing Cybersecurity Concerns
Luxury fashion house Louis Vuitton is investigating a data breach that has exposed customer information tied to its UK operations. This breach is the third linked to LVMH brands in recent months, raising concerns about security practices across the luxury retail sector.
-
Critical SQL Injection Vulnerability Uncovered in Fortinet FortiWeb
Cybersecurity researchers have uncovered a critical SQL injection vulnerability in Fortinet’s FortiWeb Fabric Connector, allowing unauthenticated remote code execution. Organizations are urged to update their systems immediately to mitigate the risk of full system compromise.
-
Security Flaw in McDonald’s AI Hiring Tool Exposes Personal Data of 64 Million Job Seekers
A security flaw in McDonald’s AI hiring tool, McHire, has led to the exposure of personal data for over 64 million job seekers. Researchers discovered that default credentials and an Insecure Direct Object Reference vulnerability allowed unauthorized access to sensitive information.
-
Nippon Steel Solutions Reports Data Breach Amid Cybersecurity Investigation
Nippon Steel Solutions has reported a data breach following a zero-day vulnerability exploitation, impacting customer and employee data. The company is investigating the incident while implementing stricter security measures.
-
New Vulnerability in ServiceNow Exposes Sensitive Data to Low-Privileged Users
A newly identified vulnerability in ServiceNow, known as Count(er) Strike, allows low-privileged users to access sensitive data improperly, prompting urgent calls for enhanced security measures from enterprises using the platform.
-
DoNot APT Expands Cyber Espionage Attacks in Europe
Recent cyber espionage activities attributed to the DoNot APT group highlight an alarming expansion of their operations targeting European foreign affairs ministries and other government entities, utilizing sophisticated malware to harvest sensitive information.
-
CISA Identifies Four Critical Vulnerabilities Under Active Exploitation
CISA has identified four critical vulnerabilities under active exploitation, urging organizations to take immediate action to update their systems to protect against potential threats.
-
Ingram Micro Confirms Ransomware Attack Amid Ongoing IT Outage
Ingram Micro is facing a significant cybersecurity crisis due to a ransomware attack that has resulted in a multi-day IT outage, seriously disrupting services for customers and partners globally. The company is working with cybersecurity experts to manage the breach and restore operations.
-
Employee Arrested Following Major Cyber Heist at Brazilian Financial Software Firm
Following a cyberattack that resulted in the theft of $140 million from Brazilian financial institutions, authorities have arrested an employee of C&M Software, alleging he sold login credentials to hackers who exploited the system.
