G.C.Moresi – Page 3 – Cyber Security News

Salesforce-Related Data Breach Impacting Pandora and Chanel

News

The Salesforce Data Breach Tsunami: Pandora, Chanel, and the Rise of OAuth Phishing

Pandora and Chanel hit by Salesforce-related data breaches. ShinyHunters used social engineering to steal customer data, sparking concerns over third-party…

Digital graphic of a cyber padlock with text highlighting SharePoint exploitation, ToolShell malware, and CVEs 2025-53770 and 2025-53771

News Whitepapers

ToolShell Exploitation of SharePoint Vulnerabilities: Threat Landscape, Detection, and Mitigation

Jul 25, 2025 G.C.Moresi

A critical zero-day exploit chain named ToolShell is actively targeting on-premises SharePoint servers, enabling remote code execution and persistent access.…

World map showing international cyber operation locations, red shield with padlock symbolizing cybersecurity enforcement.

News

Global Cybercrime Crackdown: Operation Eastwood Disrupts NoName057(16) Pro-Russian Network

Jul 18, 2025 G.C.Moresi

Operation Eastwood dismantled NoName057(16), a pro-Russian DDoS network targeting Ukraine and its allies. Coordinated by Europol and Eurojust, the global…

News

Swiss Cyber AI Conference 2026 in Lugano

Jul 17, 2025 G.C.Moresi

Join us at Swiss Cyber AI 2026 in Lugano, where industry leaders will explore the intersection of artificial intelligence and…

Phishing page mimicking Microsoft Excel interface with a fake "Download ALL" button designed to steal credentials

News

New Phishing Technique Exploits “DOWNLOAD All” Excel Interface to Harvest Credentials

Jul 16, 2025 G.C.Moresi

A new phishing technique mimics an Excel file interface with a "Download ALL" button. Users are tricked into entering credentials,…

News

North Korea Expands Software Supply Chain Attacks with 67 Malicious npm Packages

Jul 15, 2025 G.C.Moresi

North Korea’s Lazarus Group escalates its Contagious Interview campaign with XORIndex malware in npm packages, targeting developers and crypto holders…

News

Fortinet Patches Critical SQL Injection Vulnerability in FortiWeb (CVE-2025-25257)

Jul 14, 2025 G.C.Moresi

Fortinet has released a critical security patch for FortiWeb addressing CVE-2025-25257, a high-severity SQL injection vulnerability that allows unauthenticated attackers…

Visual alert showing Google Chrome zero-day vulnerability CVE-2025-6554 with warning messages about active exploitation, V8 engine flaw, and CISA patch deadline.

News

Critical Chrome Zero-Day CVE-2025-6554 Actively Exploited: CISA Issues Urgent Patch Mandate

Jul 4, 2025 G.C.Moresi

Critical Chrome zero-day CVE-2025-6554 actively exploited via V8 engine flaw—impacts all Chromium-based browsers. CISA mandates urgent patching by July 23,…

News

When Ransomware Strikes Close to Government: Lessons from the Radix Foundation Breach

Jun 30, 2025 G.C.Moresi

A ransomware attack against Switzerland’s Radix Foundation has compromised sensitive health-related data and exposed vulnerabilities in third-party data custodianship —…

Checklists News Whitepapers

How to Safely Search the Dark Web for Leaked Emails or Usernames

Jun 26, 2025 G.C.Moresi

Learn how to safely check if your email or username is exposed on the dark web using the Cyber Risk…

Cybersecurity News, Threat Intelligence & CISO Best Practices

You missed

Critical Vulnerability in Fortinet FortiWeb Exploited in the Wild

CISA Emergency Directive 25-03: Federal Agencies Ordered to Identify and Mitigate Compromise of Cisco ASA and Firepower Devices

EY’s 4TB Data Leak: When a Single Click Opens the Vault

Password Managers: How CISOs Keep a Critical Control Truly Secure

Author: G.C.Moresi

You missed