In a near replica of an August attack, ShinyHunters-linked hackers have breached Salesforce customers through the Gainsight integration. The threat actors stole OAuth tokens that could compromise hundreds of organizations’ Salesforce instances. Salesforce responded by revoking tokens and removing ap
Cloudflare’s massive outage this week knocked out major platforms globally, revealing the hidden risks of our over-reliance on centralized infrastructure providers. The incident caused a 3% stock drop and highlighted how 20% of web traffic depends on single points of failure. This isn’t just an inco
Security expert Mohammed Almunajam reveals attackers are targeting governance approvals and compliance workflows instead of technical vulnerabilities. His “6 Black Hat Laws” framework helps enterprises anticipate these logic-based attacks that bypass traditional detection. The approach will be discu
Google has confirmed hackers stole Salesforce data from more than 200 companies in a supply chain attack targeting Gainsight. The notorious Scattered Lapsus$ Hunters group, including ShinyHunters, claimed responsibility and plans to launch an extortion website next week. Major companies like Atlassi
Computer scientists in South Korea have developed an “AI Kill Switch” called AutoGuard that stops malicious AI agents in their tracks. The system uses sophisticated prompt injection to trigger built-in safety mechanisms in AI models. It achieved over 80% success rate against models like GPT-4o and C
Security researchers discovered Sturnus malware that can take full control of Android devices. The malware hides its activity while committing fraudulent transactions, making theft nearly undetectable by victims.
Modern security standards view data loss through a compliance lens rather than just operational recovery. SOC 2 requires demonstrating effectiveness across Trust Services Criteria, while ISO 27001 integrates backups into risk management systems. Auditors see missing data as control failures that can
Cisco is launching a “Resilient Infrastructure” initiative to address the growing risks of aging network equipment. Research shows the UK and US face the biggest threats from outdated technology in critical systems. The company plans new warnings and eventually removal of unsafe legacy configuration
Two-factor authentication adds crucial security but can feel burdensome. The comedy show Make Some Noise recently imagined the absurd extreme of 30-factor authentication. Fortunately, passkeys offer a promising alternative that’s both secure and convenient.
The manufacturing sector is leveraging big data for unprecedented efficiency and innovation. But this valuable data presents lucrative targets for cyberattackers who ransom or sell sensitive information.
