News – Cyber Security News

Thu. Sep 18th, 2025

Visual summary of the 2025 Drift token breach affecting Tenable, Proofpoint, and CyberArk, featuring a bold headline and logos of GitHub and Salesforce on a red background.

News

Tenable, Proofpoint, CyberArk Among Dozens Hit by Drift Token Breach via Salesloft GitHub Hack

Dozens of leading cybersecurity vendors—including Tenable, Proofpoint, and CyberArk—have confirmed exposure in the ongoing Drift-Salesloft breach, triggered by a March…

News

Insider Threat at Coinbase: Data Breach Impacts Over 69,000 Users

Sep 2, 2025 G.C.Moresi

Coinbase disclosed a data breach affecting over 69,000 users due to insider misconduct by external contractors. While no crypto assets…

Image showing the text "WDAC BYPASSED" next to a security shield with a checkmark and a red "X" icon, symbolizing a policy-based EDR bypass.

Checklists News

How Threat Actors Are Turning Microsoft’s Application Control Against EDR

Sep 2, 2025 G.C.Moresi

Threat actors are abusing Windows Defender Application Control (WDAC) to block EDR agents at boot, creating stealthy blind spots. Malware…

Graphic with "SUPPLY CHAIN BREACH" text and broken chain icon on dark blue background, representing cybersecurity breach.

News

Supply Chain Breaches Continue: Zscaler – Salesloft Drift Incident

Sep 2, 2025 G.C.Moresi

Zscaler disclosed a supply chain breach via Salesloft Drift, exposing limited Salesforce data. No core systems were affected. The incident…

News

The Hidden Danger of SVG Files with Embedded JavaScript: Zero-Click Execution

Aug 18, 2025 G.C.Moresi

SVG files aren’t just images—they can execute JavaScript, load external scripts, and hide malicious code through encoding. In certain contexts,…

Cybersecurity illustration showing SVG file with embedded JavaScript code, warning icons, and phishing attack alerts in a dark red theme

Checklists News

Exploit of SVG Files: A Rising Cyber Threat Vector

Aug 11, 2025 G.C.Moresi

Cybercriminals are increasingly weaponizing SVG files to deliver hidden JavaScript and phishing payloads, bypassing traditional defenses and posing a serious…

Red digital background with bold white text reading “Cyberattack Affects Bouygues Telecom,” symbolizing the large-scale data breach.

News

Bouygues Telecom Confirms Massive Cyberattack Impacting 6.4 Million Customers

Aug 8, 2025 G.C.Moresi

Bouygues Telecom has confirmed a cyberattack exposing the personal and banking details of 6.4 million customers. The breach, reported to…

Salesforce-Related Data Breach Impacting Pandora and Chanel

News

The Salesforce Data Breach Tsunami: Pandora, Chanel, and the Rise of OAuth Phishing

Aug 7, 2025 G.C.Moresi

Pandora and Chanel hit by Salesforce-related data breaches. ShinyHunters used social engineering to steal customer data, sparking concerns over third-party…

Digital graphic of a cyber padlock with text highlighting SharePoint exploitation, ToolShell malware, and CVEs 2025-53770 and 2025-53771

News Whitepapers

ToolShell Exploitation of SharePoint Vulnerabilities: Threat Landscape, Detection, and Mitigation

Jul 25, 2025 G.C.Moresi

A critical zero-day exploit chain named ToolShell is actively targeting on-premises SharePoint servers, enabling remote code execution and persistent access.…

World map showing international cyber operation locations, red shield with padlock symbolizing cybersecurity enforcement.

News

Global Cybercrime Crackdown: Operation Eastwood Disrupts NoName057(16) Pro-Russian Network

Jul 18, 2025 G.C.Moresi

Operation Eastwood dismantled NoName057(16), a pro-Russian DDoS network targeting Ukraine and its allies. Coordinated by Europol and Eurojust, the global…

You missed

News

Category: News

You missed