Maggie MacAlpine

Seceon Inc

Live from the Gartner Security & Risk Management Summit 2025, Seceon’s Shikha Pandey caught up with Obviam’s EVP Keith Johnson to discuss a major shift in cybersecurity leadership: the move toward outcome-driven metrics as the new standard for evaluating cybersecurity effectiveness. According to Keith, one recurring theme from the Gartner ... Read More

In a recent interview with Tahawultech at GISEC Global 2025, Seceon Founder and CEO Chandra Shekhar Pandey shared his perspective on what cybersecurity needs most in this era of AI-driven threats: clarity, automation, and true platform unification. A Vision for Simplicity and Speed During the interview, Chandra outlined one of ... Read More

A new report published by Express Computer highlights a dramatic shift in the Indian cybersecurity landscape: AI is now powering a surge of faster, stealthier cyberattacks. Based on a survey by Fortinet and IDC of over 400 CISOs and CIOs across India, the findings reveal a pressing concern: organizations are ... Read More

In a recent report by BleepingComputer, DragonForce—a rapidly rising ransomware group—breached a managed service provider (MSP) and leveraged its SimpleHelp remote monitoring and management (RMM) platform to infiltrate downstream customers. Sophos, which investigated the attack, attributes the breach to a string of known SimpleHelp vulnerabilities (CVE-2024-57726 through CVE-2024-57728). Once inside, ... Read More

Introduction: A Breach Beyond the EndpointA new campaign targeting ASUS routers has compromised more than 9,000 devices worldwide, exposing a hidden weakness in many organizations’ security strategies: insufficient visibility and control at the edge. The attack, dubbed ViciousTrap, exploits CVE-2023-39780—a command injection vulnerability—to deploy malware that persists even after reboots ... Read More

A New Class of Threat SurfacesA newly discovered, unsecured database containing over 184 million login credentials—including usernames and passwords for Google, Apple, Microsoft, Facebook, Instagram, government portals, and financial services—has brought the silent epidemic of infostealer malware into sharp focus. According to Mashable, cybersecurity researcher Jeremiah Fowler uncovered the 47GB ... Read More

Introduction: A New Target for Cybercriminals A recent report by Trellix highlights a sophisticated spearphishing campaign targeting financial executives, including CFOs, at banks, investment firms, energy utilities, and insurance companies worldwide. The attackers employ well-crafted emails containing installers for remote-access tools, notably NetBird, allowing them to gain persistent access to ... Read More

One of the most talked-about developments in cybersecurity this month is Zscaler’s acquisition of Red Canary, a move that highlights a larger industry trend: the growing demand for unified, automated security platforms that accelerate threat detection and response. But what does this really mean for security teams looking to stay ... Read More

On May 23, Adidas disclosed a data breach resulting from a cyberattack on a third-party customer service provider, exposing sensitive customer information in multiple regions, including the U.S. and Europe. While Adidas did not name the vendor involved, the company emphasized that the breach impacted “a few million individuals,” and ... Read More

Luxury fashion giant Dior has confirmed a cyberattack that compromised customer data in parts of Asia. The breach, discovered on May 7, impacted customers in China and South Korea, with attackers gaining unauthorized access to personal information, including names, contact details, and product preferences. According to ITPro, no financial data, ... Read More