attack
-
Blog
First-ever zero-click attack targets Microsoft 365 Copilot
“This is sheer weaponization of AI’s core strength, contextual understanding, against itself,” said Abhishek Anant Garg, an analyst at QKS Group. “Enterprise security struggles because it’s built for malicious code, not language that looks harmless but acts like a weapon.” This kind of vulnerability represents a significant threat, warned Nader Henein, VP Analyst at Gartner. “Given the complexity of AI…
Read More » -
Blog
Everything we know so far about the United Natural Foods cyber attack
United Natural Foods – North America’s biggest wholesale food distributor and the main distributor for Amazon’s Whole Foods – has been hit by a cyber attack. The company operates 53 distribution centers and delivers to more than 30,000 locations across the US and Canada, including supermarket chains, e-commerce providers, natural product superstores, and independent retailers. The attack was revealed in…
Read More » -
Blog
Supply chain attack hits Gluestack NPM packages with 960K weekly downloads
A significant supply chain attack hit NPM after 16 popular Gluestack ‘react-native-aria’ packages with over 950,000 weekly downloads were compromised to include malicious code that acts as a remote access trojan (RAT). BleepingComputer determined that the compromise began on June 6 at 4:33 PM EST, when a new version of the react-native-aria/focus package was published to NPM. Since then, 16 of the 20…
Read More » -
Blog
Payne County, OK Sheriff confirms ransomware attack, tells residents to protect accounts
The Payne County Sherriff’s Office in Oklahoma this week confirmed it was hit by a ransomware attack last month. One June 3, 2025, the Sheriff’s Office announced that anyone who filed a report prior to May 15 should monitor their credit reports and bank accounts, issue fraud alerts, and change passwords. “The cyberattack has had no impact on the office’s…
Read More » -
Blog
North Face, Cartier among latest retail cyber attack victims – here’s what we know so far
Outdoor clothing company North Face and luxury jeweler Cartier are the latest retailers to be hit by cyber attacks following a spate of incidents across the industry. Cartier hasn’t specified when the attack took place, but told customers that it had contained the issue and ramped up protection of its systems and data. The luxury retailer has informed relevant authorities…
Read More » -
Blog
The North Face warns customers of April credential stuffing attack
Outdoor apparel retailer The North Face is warning customers that their personal information was stolen in credential stuffing attacks targeting the company’s website in April. The North Face is a major American outdoor apparel and equipment brand owned by VF Corporation that also controls Vans, Timberland, and Dickies. The North Face generates over $3 billion in annual revenue, making it…
Read More » -
Blog
Check Point bolsters attack surface protection with Veriti acquisition
Cybersecurity solutions provider Check Point has announced it has entered into a definitive agreement to acquire exposure asset specialist Veriti Cybersecurity. Founded in 2021, Veriti has pioneered the preemptive exposure management (PEM) platform category, offering fully automated threat exposure and mitigation tools. Powered by AI and featuring integration with more than 70 vendors, Veriti’s offering is designed to continuously identify,…
Read More » -
Blog
Hackers give Botetourt County Schools 2 weeks to pay ransom after cyber attack
Ransomware gang Qilin today took credit for a cyber attack on Botetourt County Public Schools earlier this month and demanded the district pay a ransom by June 12, 2025. On May 13, 2025, superintendent Jonathan Russ sent a message to families in the Virginia school district saying that a cybersecurity incident disrupted some of the district’s IT systems. Qilin took…
Read More » -
Blog
MATLAB dev confirms ransomware attack behind service outage
MathWorks, a leading developer of mathematical computing and simulation software, has revealed that a recent ransomware attack is behind an ongoing service outage. Headquartered in Natick, Massachusetts, and founded in 1984, MathWorks now has over 6,500 employees in 34 offices worldwide. MathWorks develops the MATLAB numeric computing platform and the Simulink simulation, which are used by over 100,000 organizations and…
Read More » -
Blog
DragonForce ransomware abuses SimpleHelp in MSP supply chain attack
The DragonForce ransomware operation successfully breached a managed service provider and used its SimpleHelp remote monitoring and management (RMM) platform to steal data and deploy encryptors on downstream customers’ systems. Sophos was brought in to investigate the attack and believe the threat actors exploited a chain of older SimpleHelp vulnerabilities tracked as CVE-2024-57727, CVE-2024-57728, and CVE-2024-57726 to breach the system. SimpleHelp is…
Read More »