For providers

Critical dependency manager supply chain vulnerabilities have exposed millions and millions of devices to arbitrary malware for the better part of decade.

Major North American dairy cooperative Agropur has confirmed having been impacted by a data breach following the exposure of some of its shared online directories, reports BleepingComputer.

Chicago-based Lurie Children's Hospital had information from 791,784 individuals exposed following a January ransomware attack by the Rhysida ransomware gang, which claimed to earn over $3 million from the sales of stolen data, reports The Record, a news site by cybersecurity firm Recorded Future.

India-based IT consulting firm Infosys' U.S.-based subsidiary McCamish Systems had data from over 6.078 million individuals compromised following a November ransomware attack claimed by the LockBit ransomware operation that has cost the firm at least $30 million, Security Affairs reports.

Major U.S.-based customer relationship management and marketing automation software provider HubSpot has begun an investigation into a cyberattack after determining unauthorized access attempts against a "limited number" of its customers' accounts, according to TechCrunch.

Vulnerable Oracle WebLogic Servers impacted by old flaws, tracked as CVE-2017-3506, CVE-2017-10271, and CVE-2023-21839, have been targeted as part of a cryptocurrency operation by the threat operation 8220 Gang, also known as Water Sigbin, The Hacker News reports.

Hackread reports that outdated Zyxel network-attached storage devices are being subjected to intrusions by a Mirai-like botnet exploiting the critical Python code injection flaw, tracked as CVE-2024-29973.

Analysts say Apple's black-box approach provides a blueprint for rival chip makers and cloud providers.

To be effective, managing risk demands both fast responses and strategic thinking.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.