Security Operations Center

gurushyam.mony
September 14, 2022
No Comments

Network Intrusion & Detection

Thousands of Driver’s Licenses, Bank Records, and PII Exposed in Australian Fintech Data Leak March 28, 2025
Cybersecurity analyst Jeremiah Fowler has discovered an unprotected Amazon S3 database that wasn’t encrypted or password protected and contained some 27,000 records. The records included highly personal information such as driver’s licenses, Medicaid cards, work statements, and bank statements that held account numbers and partial credit card numbers. The name of the database and the […]
Kirsten Doyle
WoW! A Ransomware Gang Just Took Over One of America’s Largest ISPs March 28, 2025
A new ransomware gang, Arkana Security, is claiming responsibility for an enormous breach at WideOpenWest (WoW), one of the largest cable operators and ISPs in the US. The malicious actors boasted they had full backend control and even put a music video montage together to illustrate exactly how much access they had. Threat researchers from […]
Kirsten Doyle
The EU AI Act: A Critical Overview of a Necessary Act? March 28, 2025
The EU AI Act represents a crucial step towards responsible AI development, deployment, and use of AI in the European Union. However, Lamprini Gyftokosta, Director of Artificial Intelligence and Human Rights at Homo Digitalis, raises serious questions about its effectiveness and implementation. Ultimately, Gytfokosta believes that the EU AI Act is necessary but flawed. I […]
Josh Breaker Rolfe
AppSOC Research Labs Delivers Damning Verdict on DeepSeek-R1 March 28, 2025
Silicon Valley security provider AppSOC has branded DeepSeek-R1, one of the latest highly advanced artificial intelligence (AI) models to emerge from China, a “high-risk model unsuitable for enterprise use.” They strongly recommend that enterprises not use the DeepSeek-R1 model provided on Azure for “any AI applications, especially those involving personal information, sensitive data or IP.” High […]
Adam Parlett
Oracle’s Data Breach Denial Unravels as Leaked Info Checks Out March 28, 2025
Despite Oracle’s denial of a breach affecting its Oracle Cloud federated SSO login servers, Bleeping Computer has confirmed with multiple companies that data samples shared by the threat actor are authentic. Recently, a threat actor, “rose87168,” claimed to be selling six million records, including sensitive account data, on dark web forums. CloudSEK’s investigation suggests […]
Kirsten Doyle
Fortra Report Reveals How Breaches Are Fueling Hyper-Personalized Email Attacks March 27, 2025
The latest email threat landscape report from cybersecurity solutions provider Fortra identifies how stolen personal data is being leveraged to curate very detailed email attacks. Almost all these attacks are social engineering or phishing attacks, often across multiple channels, with the misuse of legitimate tools adding to the obfuscation targeted victims must contend with. For […]
Adam Parlett
New Cybercrime Tool ‘Atlantis AIO’ Amps Up Credential Stuffing Attacks March 27, 2025
A powerful new attack tool, Atlantis AIO, is making it easier than ever for cybercrooks to access online accounts. Designed to perform credential stuffing attacks automatically, Atlantis AIO enables hackers to test millions of stolen usernames and passwords in rapid succession. In new research, Abnormal Security has described how, by offering pre-configured modules to target […]
Kirsten Doyle
The Cost of Delay: Privacy Risks from Post-Quantum Cryptography Inaction March 27, 2025
The cybersecurity landscape is facing a critical turning point as quantum computing (QC) rapidly advances. Delaying the implementation of post-quantum cryptography (PQC) solutions could have devastating consequences for data privacy. Traditional encryption methods, including RSA and ECC, are on the verge of obsolescence, as quantum breakthroughs will soon enable adversaries to decrypt sensitive communications with […]
Norman Willox
Critical Flaws in Appsmith Exposed Systems to Full Takeover March 27, 2025
Rhino Security researchers have identified multiple critical vulnerabilities in Appsmith, an open-source developer platform commonly used for building internal applications. The most severe of these is CVE-2024-55963, which enables unauthenticated attackers to execute arbitrary system commands on servers running default installations of Appsmith versions 1.20 through 1.51. Remote Code Execution as PostgreSQL User Appsmith ships […]
Kirsten Doyle
IngressNightmare: Critical Kubernetes Flaws Put 6,500+ Clusters at Risk March 27, 2025
Five critical security vulnerabilities have been found in the Ingress NGINX Controller for Kubernetes, potentially enabling unauthenticated remote code execution. This exposure puts over 6,500 clusters at immediate risk by making the component accessible via the public internet. The vulnerabilities, CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 and CVE-2025-1974, are a series of unauthenticated Remote Code Execution vulnerabilities in […]
Kirsten Doyle

Service Categories: Security Operations Center

Network Intrusion & Detection

[email protected]