Category: Cyber

On Friday, 25 July, Orange Group detected a cyberattack targeting one of its internal information systems.Upon discovery, Orange’s response teams working closely with Orange Cyberdefense, immediately activated containment protocols. To limit the impact, several systems were isolated, which led to temporary disruptions affecting certain management services and platforms. The impact was primarily observed among Business…

Read More “Telecom Giant Orange Files Complaint After Cyber Incident” »

In a striking revelation, the U.S. Department of Health and Human Services Office of Inspector General (HHS OIG) has uncovered major cybersecurity shortcomings at a prominent Northeastern hospital during a recent HIPAA audit. The findings serve as a wake-up call not just to one institution but to the entire healthcare ecosystem. What Was the Issue? This unnamed…

Read More “Is Your Hospital Truly Secure? HHS OIG Audit Reveals Startling Gaps” »

Soco404 and Koske exploit configs with fake pages, mining on global cloud systemsJuly 2025 Security researchers have uncovered two separate malware campaigns — Soco404 and Koske — that exploit vulnerabilities and misconfigurations in cloud environments to install cryptocurrency miners on both Linux and Windows systems. Soco404 Campaign Attributed to threat actors tracked by Wiz, Soco404…

Read More “Cloud Malware Spreads Cryptominers” »

Fake IT workers fund cyber activities, evading sanctions via illicit revenues24 July 2025 The U.S. Treasury’s Office of Foreign Assets Control (OFAC) has sanctioned Korea Sobaeksu Trading Company and three individuals Kim Se Un, Jo Kyong Hun, and Myong Chol Min for operating a clandestine IT worker network that generates revenue for North Korea’s nuclear…

Read More “U.S. Sanctions North Korean Fraud Ops” »

United Natural Foods hit hard, causing delays and $400M losses in critical food distributionJuly 2025 United Natural Foods Inc. (UNFI) a major food distributor and Whole Foods Market’s primary supplier confirmed that a June 2025 cyberattack forced it to shut down core systems, resulting in lost sales of up to $400 million and an estimated…

Read More “Ransomware Disrupts U.S. Food Supply Chain” »

Cyber Security Operations Centers (CSOCs) are no longer optional for digitally enabled enterprises. In an environment marked by sophisticated cyber threats, expanding regulatory mandates, and increasing stakeholder expectations, a well-architected CSOC forms the backbone of organizational cyber defense. 1. Understanding the Role of a CSOC A Cyber Security Operations Center is a centralized facility that…

Read More “Finstein’s 24×7 CSOC: Powering Cyber Resilience & Compliance in India” »

In March 2025, Nippon Steel Solutions, a major player in industrial IT services, was hit by a sophisticated cyberattack that exploited a zero-day vulnerability deep within its internal network. While public-facing systems remained untouched, attackers infiltrated internal servers and exfiltrated sensitive data from customers, partners, and employees. This wasn’t just another breach. What Went Wrong? The attackers…

Read More “Is a Zero-Day Breach Lurking in Your Network? Nippon Steel Solutions Attack” »

In the cybersecurity world, isolation is everything. Tools like chroot these exist to build secure sandboxes within Linux systems, designed to restrict programs to specific portions of the file system. But what happens when a trusted command like sudo can break out of that box? Well, it just did. And the consequences are serious. The Vulnerability at a Glance…

Read More “When Isolation Fails: The Sudo + Chroot Vulnerability That Grants Root Access” »

As remote work becomes the norm, Remote Desktop Protocol (RDP) servers have become critical infrastructure — but they’re also a prime target. A recent attack by the sophisticated Ransom Hub ransomware gang highlights how exposed RDP servers, weak passwords, and leftover admin privileges can rapidly escalate into full-scale ransomware campaigns. What We Know About the Ransom Hub…

Read More “Could Your RDP Servers Be the Entry Point for Ransom Hub Attacks?” »