Latest on EVENTS
Orange reports major cyberattack, warns of...
Orange reports major cyberattack, warns of service disruptions Pierluigi Paganini July 29, 2025 Orange, France’s largest telecom provider, reported a cyberattack on one of its internal systems, impacting its operations in Europe and Africa. Orange is a leading French multinational telecommunications operator providing services to individuals, businesses, and governments across Europe, Africa, and the Middle

The New Reality of GenAI-Driven Attacks
Just a few years ago, several cybersecurity reports proclaimed that there was minimal evidence that bad actors were using generative AI tools to launch new or more sophisticated cyber attacks. Indeed, statements were commonly made that highlighted the safeguards and guardrails that were being put in place to stop Internet-facing GenAI tools from inappropriate use

What Are ISO 27017 and ISO...
Extending your ISMS to address Cloud security risks ISO 27001 sets out the specification for an ISMS (information security management system). But did you know you can extend your ISO 27001 ISMS to cover specific aspects of Cloud security? Let’s take a closer look at both ISO 27017 and ISO 27018. Note: The current versions

Revisiting UNC3886 Tactics to Defend Against...
On July 18, Singapore’s Coordinating Minister for National Security K. Shanmugam revealed that the country was facing a highly sophisticated threat actor targeting critical infrastructure—UNC3886. First reported in 2022, this advanced persistent threat (APT) group has been targeting essential services in Singapore, posing a severe risk to their national security. In this entry, we draw

Chinese Hackers Target Taiwan’s Semiconductor Sector...
The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three previously undocumented Chinese state-sponsored threat actors. “Targets of these campaigns ranged from organizations involved in the manufacturing, design, and testing of semiconductors and integrated circuits, wider equipment and services supply chain entities within this sector, as well as financial investment analysts

5 Things I learned delivering Zero...
This blog was originally published by 909Cyber here. Between 2017 and 2022 I was fortunate to be the leader responsible for the strategy and execution of Zero Trust initiatives at Adobe and Cisco. In my role of running enterprise Security for both companies (of course not at the same time). As the executive leading

Easily Share Large CAD Files with...
Designers, engineers, architects, and manufacturers need to share CAD files to get their jobs done — whether internally across teams, or externally with clients and supply chain partners. When it comes to proprietary designs, it’s vital to ensure those files are handled securely. With projects becoming increasingly complex and teams more distributed, finding the best way

PCI SSC Unveils Captivating Keynote Lineup...
The PCI Security Standards Council is excited to announce an outstanding group of keynote speakers for its 2025 Community Meetings across North America, Europe, and Asia-Pacific. Each speaker brings a unique and technical perspective from their respective fields and offers valuable insights into the world of payment security.

Here’s how to spot and stop...
The conversational AI market is exploding. Grand View Research suggests it’s set to jump from $11.58 billion in 2024 to $41.39 billion by 2030, a massive 23.7% annual growth rate. While businesses use AI to boost customer service, cybercriminals are jumping in too, launching slick impersonation scams. These scams are spreading fast. A report from

5 Real-World Software Nightmares That Code...
Learn from the past to prepare for the future with these 5 infamous cyber attacks (and their disastrous consequences) that could have been prevented with code integrity check. Operational downtime, reputational damage, and financial losses were the three main consequences of 86% of the successful cyberattacks that Palo Alto Network’s Unit 42 team analyzed in