Enterprise Security Tech

In a daring escalation of credential-based social engineering, threat actors are now masquerading as security updates for widely used password managers to surreptitiously implant remote access tools on target machines. The scheme — currently attacking LastPass  and Bitwarden  users — represents a shift from credential-harvesting phish to full device hijack via trusted infrastructure. The Scam in Detail: Disguised as a Safe Update Beginning over the recent holiday weekend, use

By the time F5 Networks discovered that foreign hackers had been inside its systems for more than a year, the damage was already done. The attackers had stolen portions of the source code for BIG-IP , one of the world’s most widely deployed application delivery and security platforms—software that sits at the heart of countless enterprise and government networks. Now, investigators believe a Chinese espionage group , tracked as UNC5221 , is responsible. The malware used— Bric

Spanish fashion giant Mango  is the latest retailer to be caught in the crossfire of a third-party security breach—this time through a compromised marketing services provider that exposed customer data. The incident underscores a growing problem for global brands: even the best-defended companies remain exposed through their digital supply chains. A Data Leak Through the Back Door Founded in Barcelona in 1984, Mango operates more than 2,800 stores across 120 countries and rep

In late January 2025, SimonMed Imaging—one of the largest outpatient medical imaging providers in the U.S.—became the latest victim in a wave of ransomware-driven healthcare breaches, confirming that more than 1.2 million patients had their data exposed following a sophisticated cyberattack attributed to the Medusa ransomware group. The company said it detected “suspicious activity” on its network on January 28, one day after being alerted by a vendor about a separate securit

The FBI has seized the notorious BreachForums.hn  domain—an underground marketplace turned extortion hub used by the ShinyHunters and Scattered Lapsus$ Hunters groups to publish stolen data from this year’s widespread Salesforce breaches. The coordinated takedown, carried out with assistance from French authorities, marks one of the most significant blows yet to the cybercriminal ecosystem that once fueled data trading and ransomware operations across industries from tech to

Over the weekend, SimonMed Imaging  confirmed that more than 1.27 million individuals  were affected in a January cyberattack now attributed to the Medusa ransomware gang —a group notorious for high-impact double-extortion campaigns. The attackers reportedly demanded a $1 million ransom , making this the second-largest ransomware-related data breach in the U.S. healthcare sector  so far this year. A Breach Rooted in Vendor Compromise SimonMed disclosed that the breach origina