Pharma Firm Inotiv Confirms Data Breach Affecting 9,500+ After Ransomware Attack

• Post author:Pocholo Legaspi
• Post published:December 11, 2025
• Post category:Blogs

Contract research firm Inotiv confirms data breach from August ransomware attack. Employee and partner information was compromised by Qilin ransomware group.

Continue ReadingPharma Firm Inotiv Confirms Data Breach Affecting 9,500+ After Ransomware Attack

Nikkei Reports Data Breach After Malware Exposes 17,000 Slack Accounts

• Post author:Pocholo Legaspi
• Post published:November 7, 2025
• Post category:Blogs

A malware infection led to stolen Slack credentials at Nikkei, exposing 17,368 users. The breach underscores growing credential theft threats in 2025.

Continue ReadingNikkei Reports Data Breach After Malware Exposes 17,000 Slack Accounts

Memento Labs Spyware Used in Chrome Zero-Day Campaign

• Post author:Pocholo Legaspi
• Post published:October 29, 2025
• Post category:Blogs

Operation ForumTroll used a Chrome zero-day to install spyware traced to Memento Labs. The phishing campaign hit research and media groups.

Continue ReadingMemento Labs Spyware Used in Chrome Zero-Day Campaign

Medical Specialist Group Fined £100,000 After Cyber Attack Exposed Patient Data

• Post author:Pocholo Legaspi
• Post published:October 24, 2025
• Post category:Blogs

A £100,000 fine hits the Medical Specialist Group after hackers stole patient data, highlighting major security lapses and the cost of poor cyber hygiene.

Continue ReadingMedical Specialist Group Fined £100,000 After Cyber Attack Exposed Patient Data

Hacker Group TA585 Deploys MonsterV2 Malware with Advanced Web Injection Capabilities

• Post author:Pocholo Legaspi
• Post published:October 17, 2025
• Post category:Blogs

TA585 launches MonsterV2 malware, capable of live transaction tampering via browser injection. Just-in-time privilege controls help limit damage.

Continue ReadingHacker Group TA585 Deploys MonsterV2 Malware with Advanced Web Injection Capabilities

Scattered LAPSUS$ Hunters Threatens to Leak 1 Billion Records From 39 Companies

• Post author:Pocholo Legaspi
• Post published:October 8, 2025
• Post category:Blogs

A cybercriminal group targets Salesforce via OAuth abuse and vishing, claiming to have stolen data from 39 major firms, including Qantas and UPS.

Continue ReadingScattered LAPSUS$ Hunters Threatens to Leak 1 Billion Records From 39 Companies

JLR’s Production Crisis Exposes Manufacturing’s Cyber Weakness

• Post author:Pocholo Legaspi
• Post published:September 19, 2025
• Post category:Blogs

JLR's global factories remain offline after a major cyberattack. Weeks of halted production expose serious risks in connected manufacturing systems.

Continue ReadingJLR’s Production Crisis Exposes Manufacturing’s Cyber Weakness

Salesloft Drift AI Agent Vulnerability Leads to Widespread Data Theft

• Post author:Pocholo Legaspi
• Post published:September 5, 2025
• Post category:Blogs

Threat actors used stolen OAuth tokens to breach Salesforce data at scale, exposing major flaws in AI agent integrations and enterprise security.

Continue ReadingSalesloft Drift AI Agent Vulnerability Leads to Widespread Data Theft

Electronics Manufacturer Data I/O Hit by Ransomware Attack

• Post author:Pocholo Legaspi
• Post published:August 29, 2025
• Post category:Blogs

A ransomware attack knocked out key systems at Data I/O, a chip services firm for Apple and Google. The fallout exposes serious supply chain vulnerabilities.

Continue ReadingElectronics Manufacturer Data I/O Hit by Ransomware Attack

Workday Falls Victim to the ShinyHunters Salesforce Attack Spree

• Post author:Pocholo Legaspi
• Post published:August 22, 2025
• Post category:Blogs

Workday confirms a data breach tied to ShinyHunters, with attackers exploiting Salesforce-connected apps in a growing wave of social engineering incidents.

Continue ReadingWorkday Falls Victim to the ShinyHunters Salesforce Attack Spree