Aggregator

Ransomware Attack Update for the 18th of August 2025

Healthplex, Part of UnitedHealth Group, Lacked MFA on Compromised Email Account
New York State has fined a dental plan administrator owned by UnitedHealth Group $2 million for failing to protect data with multifactor authentication and other issues related to a phishing breach that affected 90,000 people. It's the state's second fine against Healthplex for the same breach.

Settlement Includes Corrective Action Plan Focused on Improving Risk Analysis
An investigation into a ransomware breach reported in 2020 as affecting the protected personal information of 170,000 people led to a $175,000 fine against a certified public accounting and consulting firm. Regulators also required the company to implement a corrective action plan in the settlement.

Fraud Expert Trace Fooshee on Regulatory Steps Needed to Curb Payment Scams
While the U.K. and Australia have mobilized multiple sectors to tackle payment scams, the United States faces complex hurdles. The U.S. can't replicate other regulatory models but it can pursue targeted actions such as regulating scam-prone ad platforms and creating a central fraud-fighting agency.

Cisco Secure Firewall Management Centers Connected to RADIUS Left Vulnerable
Networking equipment giant Cisco warned firewall customers to patch after discovering a maximum-severity vulnerability that could allow unauthenticated hackers to commandeer the server. The flaw rates a maximum score of 10 on the CVSS system.

Why every company needs a clear, enforceable AI policy — now.

Learn how Modern EDR leverages AI, automation, and proactive defense to outpace threats and empower efficient endpoint security.

Generative-AI systems are a dense web of non-human identities (NHIs)—APIs, services, agents, schedulers, model endpoints, data pipelines—talking to each other over Transport Layer Security (TLS). Attackers now target these NHIs to move laterally, hijack tools, exfiltrate models/data, and impersonate trusted workloads.

The post Securing Non-Human Identities and Workloads in the Generative-AI Era — TrustFour’s Role appeared first on TrustFour: Workload and Non-Human Identity Attack Surface Security.

The post Securing Non-Human Identities and Workloads in the Generative-AI Era — TrustFour’s Role appeared first on Security Boulevard.

Cybersecurity researchers have uncovered a sophisticated campaign where threat actors leverage pirated game downloads to distribute HijackLoader, a modular malware loader, effectively bypassing common defenses like adblockers and Microsoft Defender SmartScreen. Sites such as Dodi Repacks, often deemed “safe” on piracy forums when used with tools like uBlock Origin, serve as vectors for this malware. […]

The post Threat Actors Use Pirated Games to Bypass Microsoft Defender SmartScreen and Adblockers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Is There a Simple Way to Stay Calm in the Face of Rising Cyber Threats? It’s no secret that cyber threats are increasing at an alarming pace. From financial services and healthcare to travel and development operations, we all grapple with the constant worry – are our systems safe? While we can’t negate the rapid […]

The post How to Stay Relaxed in a World of Increasing Cyber Threats appeared first on Entro.

The post How to Stay Relaxed in a World of Increasing Cyber Threats appeared first on Security Boulevard.

The Importance of Secure Cloud-Native Identities Why is the management of Non-Human Identities (NHIs) and their associated secrets paramount to driving innovation while ensuring security? The answer lies in the need for high-level control and applying a strategic approach to cybersecurity protection. NHIs, essentially machine identities associated with encrypted passwords and tokens, play a pivotal […]

The post Driving Innovation with Secure Cloud-Native Identities appeared first on Entro.

The post Driving Innovation with Secure Cloud-Native Identities appeared first on Security Boulevard.

INOTIV, INC. Files Form 8-K Due to a Cybersecurity Incident

A vulnerability, which was classified as problematic, has been found in Nexter Blocks Plugin up to 4.5.4 on WordPress. The impacted element is an unknown function of the component Widget. This manipulation causes cross site scripting. This vulnerability appears as CVE-2025-8567. The attack may be initiated remotely. There is no available exploit.

A vulnerability classified as critical was found in Lenovo PC Manager 2.6.40.3154/2.8.90.11211/5.1.80.9023/5.1.110.5082. The affected element is an unknown function. The manipulation results in incorrect default permissions. This vulnerability is reported as CVE-2025-8098. The attack requires a local approach. No exploit exists. Upgrading the affected component is advised.

A vulnerability classified as critical has been found in Thermo Fisher Scientific ePort up to 3.0.0. Impacted is an unknown function. The manipulation leads to improper access controls. This vulnerability is documented as CVE-2025-32992. The attack requires being on the local network. There is not any exploit available.

A vulnerability described as critical has been identified in TOTOLINK A3002R 4.0.0-B20230531.1404. This issue affects some unknown processing of the file formMapDel. Executing manipulation of the argument devicemac can lead to command injection. This vulnerability is registered as CVE-2025-55591. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability marked as critical has been reported in TOTOLINK A3002R 4.0.0-B20230531.1404. This vulnerability affects unknown code of the file bupload.html. Performing manipulation results in command injection. This vulnerability is cataloged as CVE-2025-55590. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability labeled as problematic has been found in TOTOLINK A3002R 4.0.0-B20230531.1404. This affects the function eval. Such manipulation leads to injection. This vulnerability is listed as CVE-2025-55585. The attack may be performed from a remote location. In addition, an exploit is available.

A vulnerability identified as critical has been detected in TOTOLINK A3002R 4.0.0-B20230531.1404. Affected by this issue is some unknown functionality of the component Telnet Service. This manipulation causes use of weak credentials. This vulnerability is tracked as CVE-2025-55584. The attack is possible to be carried out remotely. Moreover, an exploit is present.