data exfiltration Archives

Iranian-Back Group Behind Attacks on Transit Systems in LA, South Florida

Jeffrey Burt | May 27, 2026 | Black Shadow, cisa, critical infrastructure attacks, Cyber Espionage, data exfiltration, Gambit Security, Iranian cyber operations, Remote Desktop Protocol, U.S. National Security Agency

System breaches of transit systems in Los Angeles and Southern Florida were tied to an Iranian-backed threat group called Black Shadow through an investigation by Gambit Security into the infrastructure used and ...

Security Boulevard

BlackSanta Malware Shuts Down Protections, Targets HR and Recruiting Operations

Jeffrey Burt | March 11, 2026 | Antivirus software, Aryaka, BadSanta, BYOVD attack, data exfiltration, EDR, human resources, KnowBe4, Lab 1, recruiters, Russian hackers, spear-phishing campaign

Russian threat actors for more than a year have targeted HR and recruiting operations in a sophisticated phishing and infostealing campaign that includes a component, dubbed BlackSanta, that can shut down antivirus ...

Security Boulevard

Hacker Pleads Guilty to Access Supreme Court, AmeriCorps, VA Systems

Jeffrey Burt | January 19, 2026 | AmeriCorp, Data breach, data exfiltration, Data security and privacy, Hacking, Healthcare Information Security, personal information disclosure, stolen credentials, U.S. government, U.S. Supreme Court, Veterans Administration

Nicholas Moore, a 24-year-old Tennessee man, pleaded guilty to using stolen credentials of authorized users to hack into computer systems of the Supreme Court, VA, and AmeriCorps, obtaining sensitive information and then ...

Security Boulevard

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Jeffrey Burt | December 19, 2025 | Account Takeover Attacks, China-linked Hackers, data exfiltration, device authorization, device code phishing, financially motivated groups, Microsoft, Nation-State Bad Actors, russia hacker

Financially motivated and nation-state threat groups are behind a surge in the use of device code phishing attacks that abuse Microsoft's legitimate OAuth 2.0 device authorization grant flow to trick users into ...

Security Boulevard

The Real Cost of Cryptojacking

Cryptojacking silently hijacks compute power, inflates cloud bills, and erodes performance. Beyond financial losses, it exposes deep security risks, damages reputation, and drains productivity—making proactive detection and prevention essential for every organization ...

Security Boulevard

Vets Will Test UK Digital ID Plan 

As the UK tests digital ID cards for military veterans ahead of a 2027 nationwide rollout, privacy concerns and cybersecurity warnings are growing. Experts caution that without strong zero-trust principles, encryption, and ...

Security Boulevard

chinese, q-day, quantum computers, Secureworks AI quantum IBM Killnet Google BlackBerry Zebra2014 start threat hunting

Suspected Chinese Hackers Spent a Year-Plus Inside F5 Systems: Report

Jeffrey Burt | October 20, 2025 | China-nexus cyber attacks, Data breach, data exfiltration, F5 BIG-IP, Vulnerabilities

The suspected Chinese-backed threat actors that hacked into F5's systems and stole data from the security vendor's BIG-IP application suite spent more than a year inside the networks dtbefore being in detected ...

Security Boulevard

stolen, credentials, file data, anomaly detection, data exfiltration, threat, inside-out, breach, security strategy, data breaches, data search, Exabeam, data, data breaches, clinical trials, breach, breaches, data, residency, sovereignty, data, breaches, data breaches, NetApp data broker FTC location data

How Ransomware’s Data Theft Evolution is Rewriting Cyber Insurance Risk Models

Ransomware has evolved from encryption to data theft. Learn how AI-driven attacks and breach data are reshaping cyber insurance risk models and pricing ...

Security Boulevard

The SharePoint Blind Spot: How Legacy IGA Failed to Stop Volt Typhoon

Mike Towers | October 13, 2025 | AI security risks, cloud collaboration security, data exfiltration, enterprise identity management, identity governance, Insider Threat Prevention, legacy IGA challenges, Microsoft 365 permissions, Microsoft Copilot security, non-human identities (NHI), Operational Resilience, permission sprawl, SharePoint access control, SharePoint security, Volt Typhoon

Identity, not endpoints, is today’s attack surface. Learn why SharePoint and AI assistants like Copilot expose hidden risks legacy IGA can’t control ...

Security Boulevard

humanoid, robot, AI, cybersecurity, ChatGPT copyright robots continuous intelligence

Humanoid Robots are Walking Trojan Horses — And They’re Already in the Workplace

Jack Poller | October 2, 2025 | AI Security, AI-powered threats, Bluetooth backdoor, CCPA Compliance, cyber attack vectors, Cybersecurity AI (CAI), data exfiltration, data poisoning, , humanoid robots, llm security, prompt injection, robot vulnerabilities, robotics cybersecurity, surveillance risks, Unitree G1

A new study reveals severe security flaws in the Unitree G1 humanoid robot, exposing risks from Bluetooth backdoors to hidden data exfiltration. Researchers warn that humanoid robots could be exploited as surveillance ...

Security Boulevard

data exfiltration

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On