Attackers Exploit Cryptographic Keys for Malware Deployment. Prajeet Nair • February 7, 2025 . Threat actors are using publicly exposed cryptographic keys - ASP.NET machine keys - to manipulate authentication tokens, decrypt protected information, and insert harmful code into susceptible web servers, creating opportunities for unauthorized control and long-term access.

Next-Generation Technologies & Secure Development SolarWinds to Be Purchased By Turn/River Capital for $4.4B. Michael Novinson • February 7, 2025. SolarWinds agreed to be bought by Turn/River Capital for $4.4 billion just six years after the observability and IT management software firm went public.

Artificial Intelligence & Machine Learning ISMG Editors: DeepSeek's AI Disruption and Security Risks. Anna Delaney • January 31, 2025. In this week's update, ISMG editors discussed two major stories shaking the tech and cybersecurity worlds - China's AI leap with DeepSeek, a new open-source bot that wiped $600 billion off of Nvidia's value, and an update on the massive UnitedHealth breach ...

Dec 22, 2011 · Information Security Media Group (ISMG) announces the launch of DataBreachToday, a multimedia website providing news, insights and education on data breach detection, notification and prevention.. Designed for information security leaders and other senior executives across all business sectors, DataBreachToday debuts at a time when major data breaches are grabbing headlines on an almost daily ...

Dec 20, 2011 · A string of data breaches in recent months has put the spotlight on the need to take adequate precautions to protect sensitive information. From hackers issuing phony digital certificates to million of patients having their records potentially exposed as a result of lost or stolen backup files, breaches point to the value of preventive measures, ranging from encryption to intrusion detection.

Jan 28, 2025 · The number of U.S. organizations year-over-year falling victim to a data breach appears to be holding steady, a number that masks a growing number of victims affected by mega-breaches. See Also: 57 Tips to Secure Your Organization An annual tally of breach data printed Tuesday by the nonprofit ...

Jan 27, 2025 · SonicWall's Secure Mobile Access 1000 Series devices. (Image: SonicWall) Software vendors and national cybersecurity agencies are urging immediate patching of a critical SonicWall flaw days after the security device manufacturer disclosed that hackers are actively exploiting a zero-day.

Dec 11, 2024 · Image: Cleo. Update Dec. 12, 2024, 00:34 UTC: A Cleo spokesperson said the company has released a new patch to address active hacking of its file transfer software.

Latest news, including articles, interviews and blogs in on data security breach

Jan 22, 2025 · 57% of organizations reported at least one data breach caused by API exploitation in the past two years. Despite these breaches, organizations are still testing only 38% of their APIs for vulnerabilities on average, with a low confidence level—companies estimate they can only prevent 24% of API-related attacks.