CISA, NSA unveil best-practices guide to address ongoing Exchange Server risks
The Cybersecurity and Infrastructure Security Agency and the National Security Agency on Thursday unveiled a best-practices guide to help organizations address security issues with their on-premises Microsoft Exchange Servers. The agencies said they remain concerned about companies using misconfigured or unprotected versions of Exchange Server, particularly in situations where the server has reached end-of-life status. READ MORE...
Ransomware gang claims Conduent breach: what you should watch for next
New information confirms that Conduent's 2024 breach has impacted over 10.5 million people, based on notifications filed with multiple state attorneys general. The largest disclosure came from the Oregon government, which reported 10.5 million affected residents. Additional notices listed 4 million in Texas, 76,000 in Washington, and several hundred in Maine. Even if you've never heard of Conduent, you could be one of the many people caught up in its recent data breach. READ MORE...
Major telecom services provider Ribbon breached by state hackers
Ribbon Communications, a provider of telecommunications services to the U.S. government and telecom companies worldwide, revealed that nation-state hackers breached its IT network as early as December 2024. Ribbon provides networking solutions and secure cloud communications services to telecommunications companies and critical infrastructure organizations worldwide. As disclosed in a filing with the U.S. SEC on October 23, Ribbon detected the breach in September 2025. READ MORE...
Chinese APT Exploits Unpatched Windows Flaw in Recent Attacks
A Chinese threat actor has been exploiting an unpatched Windows shortcut vulnerability in fresh attacks targeting the diplomatic community in Europe, Arctic Wolf reports. The exploited flaw, tracked as CVE-2025-9491 (CVSS score of 7.0), is described as a UI misrepresentation issue, as Windows fails to show critical information (which can provide evidence of malicious activity) when the user inspects the file's properties. READ MORE...
AI chatbots are sliding toward a privacy crisis
AI chat tools are taking over offices, but at what cost to privacy? People often feel anonymous in chat interfaces and may share personal data without realizing the risks. Cybercriminals see the same opening, and it may only be a matter of time before information shared in an AI chatbot conversation ends up in a major data leak. Experts warn that users should stay alert when using platforms such as ChatGPT or Gemini, since what seems like a simple exchange can still leave a lasting data trail. READ MORE...
Update Chrome now: 20 security fixes just landed
Google has released an update for its Chrome browser that includes 20 security fixes, several of which are classed as high severity. Most of these flaws were found in Chrome's V8 engine-the part of Chrome (and other Chromium-based browsers) that runs JavaScript. Chrome is by far the world's most popular browser, used by an estimated 3.4 billion people. That scale means when Chrome has a security flaw, billions of users are potentially exposed until they update. READ MORE...
Ukrainian Man Extradited From Ireland to US Over Conti Ransomware Charges
A Ukrainian national who fled to Ireland following the Russian invasion has been extradited to the United States to face charges related to his alleged involvement in Conti ransomware attacks. The suspect, 43-year-old Oleksii Oleksiyovych Lytvynenko, along with his wife and child, was granted temporary protection in Ireland in 2022 after fleeing Ukraine due to the war. However, Lytvynenko, who has been described as a lawyer by Irish news outlets, was arrested by Irish authorities in July 2023. READ MORE...
Massive surge of NFC relay malware steals Europeans' credit cards
Near-Field Communication (NFC) relay malware has grown massively popular in Eastern Europe, with researchers discovering over 760 malicious Android apps using the technique to steal people's payment card information in the past few months. Contrary to the traditional banking trojans that use overlays to steal banking credentials or remote access tools to perform fraudulent transactions, NFC malware abuses Android's HCE to emulate or steal contactless credit card and payment data. READ MORE...
The human cost of the UK Government's Afghan data leak
49 people have reportedly lost family members or colleagues after the UK government leaked details of 19,000 Afghan citizens who helped the British military during the Afghan war. A spreadsheet containing the details of people who had worked for the UK government in Afghanistan was accidentally leaked from the Ministry of Defence in February 2022 - six months after the Taliban seized control of Kabul. READ MORE...
- ...in 1803, Congress ratifies the purchase of the entire Louisiana area in North America, adding territory to the U.S. which will eventually become 13 more states.
- ...in 1914, the University of Cincinnati adopts its mascot, the Bearcat, inspired by a nickname given to star UC fullback Leonard Baehr.
- ...in 1941, After 14 years of work, the Mount Rushmore National Memorial is completed.
- ...in 1998, Iraq announces it will no longer cooperate with United Nations weapons inspectors.
