What keeps phishing training from fading over time
When employees stop falling for phishing emails, it is rarely luck. A new study shows that steady, mandatory phishing training can cut risky behavior over…
Month: November 2025
DVA trials ChatGPT-based tool with 300 staff
Australia’s lead veterans’ welfare department has started testing an AI chatbot in the hope of making it easier for staff to access policy and compensation…
Sandworm Hackers Target Ukrainian Organizations With Data-Wiping Malware
Russia-aligned threat actor Sandworm has intensified its destructive cyber operations against Ukrainian organizations, deploying data wiper malware to cripple critical infrastructure and weaken the nation’s…
Hospitals are running out of excuses for weak cyber hygiene
Healthcare leaders continue to treat cybersecurity as a technical safeguard instead of a strategic business function, according to the 2025 US Healthcare Cyber Resilience Survey…
M365 portal buckling as demand for Copilot refunds soar
Microsoft is struggling to meet customer demand for refunds related to its Copilot AI agent add-on to M365 after announcing the offer early yesterday. “Customer…
Amazon WorkSpaces for Linux Vulnerability Exposes Valid Auth Tokens to Attackers
A recently disclosed vulnerability in the Amazon WorkSpaces client for Linux exposes a critical security flaw that could allow attackers to gain unauthorized access to…
New infosec products of the week: November 7, 2025
Here’s a look at the most interesting products from the past week, featuring releases from 1touch.io, Barracuda Networks, Bitdefender, Forescout, and Komodor. Bitdefender GravityZone Security…
Cisco Identity Services Engine Vulnerability Allows Attackers to Restart ISE unexpectedly
A critical vulnerability in Cisco Identity Services Engine (ISE) could allow remote attackers to crash the system through a crafted sequence of RADIUS requests. The…
NVIDIA VApp for Windows Vulnerability Let Attackers Execute Malicious Code
NVIDIA has patched a critical vulnerability in its App for Windows that could allow local attackers to execute arbitrary code and escalate privileges on affected…
U.S. Congressional Budget Office hit by suspected foreign cyberattack
The U.S. Congressional Budget Office (CBO) confirms it suffered a cybersecurity incident after a suspected foreign hacker breached its network, potentially exposing sensitive data. In…
What Is It and How to Fight It – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Account takeover (ATO) attacks can devastate individuals and organisations, from personal profiles to enterprise systems. The financial impact alone is huge; for instance, in 2023,…
Clop Ransomware group claims the breach of The Washington Post
Clop Ransomware group claims the breach of The Washington Post Pierluigi Paganini November 06, 2025 The Clop Ransomware group claims the breach of The Washington…