Topic: third-party vulnerabilities

Sort by: Relevance | Date
  • 2025's Most Devastating Cyberattacks Exposed
    December 30, 2025
    90%

    2025's Most Devastating Cyberattacks Exposed

    The cyber threat landscape has shifted towards sophisticated supply chain attacks, where breaches of third-party vendors like Gainsight and Salesloft led to widespread data exposure at major corporations including Cloudflare, Verizon, and Cisco. The Clop ransomware group exploited a critical vuln...

    Read More »
  • OpenAI Data Breach: Why a Password Change Won't Protect You
    December 12, 2025
    83%

    OpenAI Data Breach: Why a Password Change Won't Protect You

    The breach was a supply chain attack targeting a third-party analytics provider (Mixpanel), not OpenAI's core systems, highlighting a common tactic to exploit weaker links in interconnected software ecosystems. Compromised data was limited to OpenAI's developer portal, affecting developers' non-s...

    Read More »
  • UK Slaps LastPass With Fine for 2022 Data Breach Affecting Millions
    December 12, 2025
    80%

    UK Slaps LastPass With Fine for 2022 Data Breach Affecting Millions

    The UK's Information Commissioner's Office fined LastPass £1.2 million for failing to protect the personal data of up to 1.6 million users during a 2022 breach, where encrypted password vaults were stolen. The breach occurred in stages, starting with a compromised employee laptop and escalating w...

    Read More »
  • Cybersecurity Leaders Hide Cyber Incidents From Executives
    September 30, 2025
    79%

    Cybersecurity Leaders Hide Cyber Incidents From Executives

    Corporate cybersecurity leaders are increasingly concealing security incidents from their own executive leadership and boards, creating a dangerous gap in understanding the organization's true risk profile and leading to decisions based on incomplete information. Nation-state cyberattacks are a p...

    Read More »
  • Salesloft & Drift Breach Results, Malicious GitHub Installers Exposed
    September 15, 2025
    75%

    Salesloft & Drift Breach Results, Malicious GitHub Installers Exposed

    Major platforms like Salesloft and Drift were breached via unauthorized GitHub access, emphasizing the need for strong access controls and monitoring. A malvertising campaign in the EU is distributing fake GitHub Desktop installers to deliver malware, urging IT professionals to verify software so...

    Read More »
  • Rethink Network Visibility for Australia's Critical Infrastructure
    October 19, 2025
    70%

    Rethink Network Visibility for Australia's Critical Infrastructure

    Government agencies in Australia and the Asia Pacific face escalating cybersecurity threats due to the deep integration of digital and physical infrastructure, making public services like transportation and healthcare prime targets for sophisticated attacks. The convergence of IT and OT systems, ...

    Read More »
  • Salesforce's AI Agent 'Flight Simulator' Solves 95% Pilot Failure Rate
    August 29, 2025
    68%

    Salesforce's AI Agent 'Flight Simulator' Solves 95% Pilot Failure Rate

    Salesforce has launched CRMArena-Pro, a simulation platform that rigorously tests AI agents in realistic business scenarios to improve their reliability before deployment. The company introduced the Agentic Benchmark for CRM, evaluating AI agents on metrics including accuracy, cost, speed, trust,...

    Read More »
  • Microsoft Patches 6 Zero-Day Exploits in Critical October Update
    October 20, 2025
    50%

    Microsoft Patches 6 Zero-Day Exploits in Critical October Update

    Microsoft's October 2025 Patch Tuesday addresses 172 vulnerabilities, including six actively exploited zero-days and eight critical-rated flaws, with a focus on remote code execution and privilege escalation risks. Windows 10 has reached its end of support, requiring users to enroll in Extended S...

    Read More »

Related Topics

Geopolitical Tensions (2) cyber resilience (2) data breaches (2) patch management (1) public infrastructure (1) password security (1) ai-powered attacks (1) windows components (1)