When St. Paul, Minnesota, announced it was investigating a “digital security incident,” the news quickly drew attention — not just from residents, but from cybersecurity professionals across the country. Municipalities operate critical infrastructure and deliver public services, making them a prime target for cyber attacks. Ransomware activity has reached historically high levels, with Check Point...Read More
Aug 18, 2025Ravie LakshmananVulnerability / Cloud Security Cybersecurity researchers have lifted the lid on the threat actors’ exploitation of a now-patched security flaw in Microsoft Windows to deploy the PipeMagic malware in RansomExx ransomware attacks. The attacks involve the exploitation of CVE-2025-29824, a privilege escalation vulnerability impacting the Windows Common Log File System (CLFS) that...Read More
Microsoft Teams is adding two new security features to protect users against malicious links and dangerous files. Starting next month, the messaging app will be able to “detect and warn users [about] malicious URLs sent in Teams chat and channels,” Microsoft says in an update to the Microsoft 365 Roadmap. It will also block “messages...Read More
CRM Breach May Be Tied to Ongoing Scattered Spider and ShinyHunters Campaign Mathew J. Schwartz (euroinfosec) • August 18, 2025 Image: Shutterstock Human resources and finance software giant Workday said hackers breached its customer relationship management software and stole customer data. See Also: What Manufacturing Leaders Are Learning About Cloud Security – from...Read More
SEOUL, Aug. 18 (Yonhap) — A money lending unit under Welcome Financial Group has recently been hit by a ransomware attack in the latest in a series of cyberattacks against South Korean companies, officials said Monday. Welrix I&F is currently checking for possible leaks of customer data after detecting the cyberattack early this month. An...Read More
“Colt are being extorted by Warlock ransomware group, they have been for over a week, Colt are trying to cover it up,” Beaumont wrote on Mastodon on Friday, Aug 15. “Entry likely via sharehelp.colt.net via CVE-2025-53770 as they were interacting with it.” Beaumont added that the group has stolen a few hundred gigabytes of customer...Read More
“Firing the CISO might seem like a necessary reset for CIOs or boards, but it’s not always a strategic move. If the incident response plan was followed, the detection tools worked, and recovery was within SLAs, then replacing the CISO often sends the wrong message internally,” Avakian maintains. “It shows that the security role is...Read More
Colt Technology Services pulls services offline, confirms this was due to a cyberattack A ransomware group called WarLock claimed responsibility Independent researchers believe the attackers struck the company’s SharePoint servers Colt Technology Services has suffered a cyberattack which forced it to pull parts of its IT network offline for several days, thought to be a...Read More
Manufacturing remains prime ransomware target in Q2 as new groups, state-aligned actors reshape industrial threat landscape Industrial Cyber Source link .........................Read More
Korean firms YES24, SGI, Welcome Finance endure ransomware attacks and data breaches – CHOSUNBIZ Chosun Biz Source link .........................Read More
