Compumedics USA says the breach impacted more than 318,000 individuals across nearly a dozen healthcare organizations in the United States.
Posted inCybersecurity News

Compumedics USA says the breach impacted more than 318,000 individuals across nearly a dozen healthcare organizations in the United States.

A ransomware attack targeting Compumedics USA Inc., a medical technology provider specializing in sleep diagnostics and neurological monitoring systems, has resulted in a significant data breach affecting more than 318,000 individuals across multiple healthcare organizations in the United States.
Amazon AWS unveils new AI-powered tools as part of expanded AI Agents and Tools platform.
Posted inCybersecurity News

Amazon AWS unveils new AI-powered tools as part of expanded AI Agents and Tools platform.

Amazon Web Services (AWS) has unveiled a new AI-powered search tool within its recently expanded “AI Agents and Tools” platform, designed to simplify how businesses discover and deploy AI-driven automation solutions. Harnessing the capabilities of Amazon Bedrock, this innovative search functionality allows users to input natural language descriptions of their automation needs and receive tailored recommendations on AI agents and complementary technologies.
Episource healthcare analytics and billing services confirms data breach affecting more than 5.4 million individuals across the United States.
Posted inCybersecurity News

Episource healthcare analytics and billing services confirms data breach affecting more than 5.4 million individuals across the United States.

In one of the largest healthcare cybersecurity incidents of 2025, Episource, a major healthcare analytics and billing services provider, has confirmed a data breach affecting more than 5.4 million individuals across the United States. The breach, which occurred between January 27 and February 6, 2025, was the result of unauthorized access to Episource’s IT network, during which attackers exfiltrated sensitive personal and medical data.
Threat actors are using Microsoft Teams to distribute sophisticated Mantanbuchus 3.0 malware loaders.
Posted inCybersecurity News

Threat actors are using Microsoft Teams to distribute sophisticated Mantanbuchus 3.0 malware loaders.

Security researchers have uncovered a new wave of targeted cyberattacks in which threat actors are leveraging Microsoft Teams to distribute Matanbuchus 3.0, a sophisticated malware loader. These attacks exploit the growing reliance on Microsoft Teams as a trusted internal communication tool, using it as a vector to bypass traditional email-based security controls and deceive victims through social engineering.
Alarms sound as Hong Kong financial institutions hit by new wave of SquidLoader backdoor deploying Cobalt Strike Beacon.
Posted inCybersecurity News

Alarms sound as Hong Kong financial institutions hit by new wave of SquidLoader backdoor deploying Cobalt Strike Beacon.

A sophisticated malware campaign involving the SquidLoader backdoor has been actively targeting financial institutions in Hong Kong, raising significant cybersecurity concerns within the region’s critical financial sector. Security researchers report the threat actors employ a highly stealthy, multi-stage infection chain designed to deploy the widely known Cobalt Strike Beacon for persistent remote access.
UNC6148 rolls out new rootkit, OVERSTEP, in suspected zero-day campaign against SonicWall Secure Mobile Access 100 series appliances. Leaked data has already surfaced on World Leaks.
Posted inCybersecurity News

UNC6148 rolls out new rootkit, OVERSTEP, in suspected zero-day campaign against SonicWall Secure Mobile Access 100 series appliances. Leaked data has already surfaced on World Leaks.

A newly discovered malware campaign is targeting legacy SonicWall Secure Mobile Access (SMA) 100 series appliances, deploying a sophisticated user-mode rootkit known as OVERSTEP. The campaign, attributed to the financially motivated threat group UNC6148, has enabled persistent access to enterprise networks, credential theft, and facilitated follow-on extortion activities linked to ransomware operators.
Fortinet’s FortiWeb, a widely deployed web application firewall (WAF) solution, is currently under active exploitation following release of proof-of-concept exploits.
Posted inCybersecurity News

Fortinet’s FortiWeb, a widely deployed web application firewall (WAF) solution, is currently under active exploitation following release of proof-of-concept exploits.

Fortinet’s FortiWeb, a widely deployed web application firewall (WAF) solution, is currently under active exploitation after attackers began targeting a recently disclosed critical vulnerability. Tracked as CVE-2025-25257, the flaw enables unauthenticated remote code execution (RCE) and has been weaponized by threat actors following the public release of proof-of-concept (PoC) exploits on July 11, 2025.
Operation Eastwood takes down more than 100 DDoS servers used to support Russia’s invasion of Ukraine.
Posted inCybersecurity News

Operation Eastwood takes down more than 100 DDoS servers used to support Russia’s invasion of Ukraine.

In a major international effort, law enforcement agencies across 19 countries have successfully disrupted a vast network of servers used to carry out cyberattacks in support of Russia’s invasion of Ukraine. The coordinated action, codenamed Operation Eastwood, targeted the pro-Russian hacktivist group NoName057(16), known for orchestrating large-scale distributed denial-of-service (DDoS) attacks against Ukraine and its allies.