cybersecurity threats
-
Commvault Reports Cyber Breach Linked to Nation-State Actor, Confirms No Unauthorized Data Access
Commvault has confirmed a breach in its Microsoft Azure environment by a nation-state actor exploiting CVE-2025-3928. The company, however, reassured clients that there has been no unauthorized access to backup data and has taken steps to enhance security.
-
China-Aligned Threat Actor Exploits IPv6 to Hijack Software Updates
TheWizards, a China-aligned APT group, has been exploiting IPv6 protocol vulnerabilities to hijack software updates, deploying malicious tools that facilitate ongoing access to infected systems.
-
EU’s NIS2 Directive Toughens Cybersecurity Standards Across Member States
The EU’s NIS2 Directive, which took effect on 17 October 2024, imposes stricter cybersecurity requirements on essential and important organizations across various sectors, aiming to enhance overall security in the region.
-
World Password Day Highlights Importance of Online Security
As World Password Day serves as a reminder of the importance of online security, experts like Kim Jones urge consumers to prioritize strong passwords, utilize advanced security measures, and maintain regular password hygiene.
-
Rising Threats in Supply Chain Security Demand Increased Vigilance and Strategy
As cyber adversaries infiltrate software and hardware supply chains, organizations must enhance their cybersecurity strategies, focusing on continuous monitoring and the use of advanced tools like Software Bill of Materials and artificial intelligence to combat emerging threats.
-
China Emerges as Major Cyber Threat to US, Experts Warn
At the RSA Conference, retired Rear Admiral Mark Montgomery warned that China has eclipsed Russia as the leading cyber threat to the US, exemplified by the Volt Typhoon attacks targeting critical infrastructure. The former national security official emphasized the urgent need for enhanced cybersecurity measures and military recruitment to counter this sophisticated adversary.
-
Data Breach at Blue Shield of California Sparks Concern Among Security Leaders
A recent data breach at Blue Shield of California has raised concerns among security leaders, emphasizing the increasing fragility of consumer data protection. Experts call for stronger security measures and a more proactive approach to prevent such incidents.
-
Increase in Government-Backed Zero-Day Hacks Targeting Enterprises Revealed
A recent report highlights a disturbing rise in government-backed zero-day hacks targeting enterprise systems, with the largest share of vulnerabilities aimed at significant corporations such as Microsoft and Google. Experts urge enterprises to improve security measures as attacks are expected to increase.
-
Cloudflare Reports Dramatic Rise in DDoS Attacks in Q1 2025
Cloudflare’s latest Q1 2025 DDoS report reveals an astonishing 358% increase in DDoS attacks compared to last year, with 20.5 million attacks mitigated. The report highlights significant trends in attack frequency, duration, and emerging methods of cyber threats.
-
Navigating Third-Party Vendor Risks: Strategies for CISOs
With third-party vendors becoming vital to business operations, Chief Information Security Officers must assess and mitigate associated risks to safeguard sensitive data. The strategies outlined emphasize the need for comprehensive vendor evaluations and collaborative relationships.
