Tag: business
-
American Airlines subsidiary Envoy confirms Oracle data theft attack
Envoy Air, a regional airline carrier owned by American Airlines, confirms that data was compromised from its Oracle E-Business Suite application after the Clop extortion gang listed American Airlines on its data leak site. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/american-airlines-subsidiary-envoy-confirms-oracle-data-theft-attack/
-
American Airlines subsidiary Envoy confirms Oracle data theft attack
Envoy Air, a regional airline carrier owned by American Airlines, confirms that data was compromised from its Oracle E-Business Suite application after the Clop extortion gang listed American Airlines on its data leak site. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/american-airlines-subsidiary-envoy-confirms-oracle-data-theft-attack/
-
TDL 007 – Cyber Warriors Digital Shadows: Insights from Canada’s Cybersecurity Leader
Tags: ai, awareness, backup, breach, browser, business, cio, ciso, communications, conference, control, corporate, country, cryptography, cyber, cybersecurity, dark-web, data, data-breach, defense, dns, email, encryption, finance, government, healthcare, identity, incident, infrastructure, intelligence, Internet, jobs, law, leak, linux, malicious, mfa, mitigation, network, organized, phone, privacy, ransom, ransomware, RedTeam, resilience, risk, risk-management, router, service, startup, strategy, supply-chain, switch, tactics, technology, theft, threat, tool, training, windowsSummary In this episode of The Defender’s Log, host David Redekop interviews Sami Khoury, the Senior Official for Cybersecurity for the Government of Canada. With a career spanning 33 years at the Communication Security Establishment (CSE), Khoury shares how a coincidental job application blossomed into a lifelong passion for national security. Khoury emphasizes that modern…
-
Regional airline Envoy Air confirms Oracle E-Business Suite compromise
The regional American airline Envoy Air confirmed that its IT system was impacted by a recent hacking campaign targeting Oracle E-Business Suite. First seen on therecord.media Jump to article: therecord.media/regional-airline-envoy-oracle
-
SAP zero-day wake-up call: Why ERP systems need a unified defense
In this Help Net Security video, Paul Laudanski, Director of Research at Onapsis, discusses key lessons from the SAP zero-day vulnerability. He explains why business-critical … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/17/sap-zero-day-security-video/
-
SAP zero-day wake-up call: Why ERP systems need a unified defense
In this Help Net Security video, Paul Laudanski, Director of Research at Onapsis, discusses key lessons from the SAP zero-day vulnerability. He explains why business-critical … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/17/sap-zero-day-security-video/
-
SAP zero-day wake-up call: Why ERP systems need a unified defense
In this Help Net Security video, Paul Laudanski, Director of Research at Onapsis, discusses key lessons from the SAP zero-day vulnerability. He explains why business-critical … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/17/sap-zero-day-security-video/
-
Security as a Business Enabler, Not a Barrier
ISMG’s Sean Mack on Aligning Strategy and Culture for Long-Term Risk Reduction. Cybercrime is accelerating while budgets stay flat. To keep pace, organizations must treat security as a strategic enabler – not an afterthought. Sean Mack of ISMG’s CXO Advisory Practice outlines how aligning business goals, shifting left, and building a security culture drive better…
-
Auto sector faces historic cyber threats to business continuity
A catastrophic cyberattack at Jaguar Land Rover is forcing governments and industrial leaders to address urgent demands for business resilience and accountability. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/auto-sector-cyber-threats-business-continuity/802974/
-
Gladinet fixes actively exploited zero-day in file-sharing software
Gladinet has released security updates for its CentreStack business solution to address a local file inclusion vulnerability (CVE-2025-11371) that threat actors have leveraged as a zero-day since late September. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gladinet-fixes-actively-exploited-zero-day-in-file-sharing-software/
-
Gladinet fixes actively exploited zero-day in file-sharing software
Gladinet has released security updates for its CentreStack business solution to address a local file inclusion vulnerability (CVE-2025-11371) that threat actors have leveraged as a zero-day since late September. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gladinet-fixes-actively-exploited-zero-day-in-file-sharing-software/
-
What Is Shadow AI and Why It Matters? FireTail Blog
Tags: access, ai, breach, business, chatgpt, compliance, data, email, framework, GDPR, governance, leak, monitoring, nist, office, regulation, risk, technology, tool, trainingOct 16, 2025 – Alan Fagan – What Is Shadow AI and Why It Matters – FireTail Blog Quick Facts: Shadow AI Shadow AI is when employees use AI tools within an organization without IT or compliance approval. Shadow AI often leads to data leaks, compliance gaps, and security risks. Examples include entering sensitive data…
-
What Is Shadow AI and Why It Matters? FireTail Blog
Tags: access, ai, breach, business, chatgpt, compliance, data, email, framework, GDPR, governance, leak, monitoring, nist, office, regulation, risk, technology, tool, trainingOct 16, 2025 – Alan Fagan – What Is Shadow AI and Why It Matters – FireTail Blog Quick Facts: Shadow AI Shadow AI is when employees use AI tools within an organization without IT or compliance approval. Shadow AI often leads to data leaks, compliance gaps, and security risks. Examples include entering sensitive data…
-
Machine learning meets malware: how AI-powered ransomware could destroy your business
How to avoid your business being felled by an AI-powered ransomware attack that costs less than a laptop. First seen on theregister.com Jump to article: www.theregister.com/2025/10/16/machine_learning_meets_malware/
-
Machine learning meets malware: how AI-powered ransomware could destroy your business
How to avoid your business being felled by an AI-powered ransomware attack that costs less than a laptop. First seen on theregister.com Jump to article: www.theregister.com/2025/10/16/machine_learning_meets_malware/
-
Critical insights QA: AcceleTrex pilots a trust-first, privacy-led model to reinforce business outcomes
I’ve been writing about data trust and privacy engineering for more than a decade. Related: Preserving privacy can be profitable In 2015, I sat down with Cisco’s privacy lead, Michelle Dennedy, who argued that privacy must be grounded in… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/10/critical-insights-qa-acceletrex-pilots-a-trust-first-privacy-led-model-to-reinforce-business-outcomes/
-
Critical insights QA: AcceleTrex pilots a trust-first, privacy-led model to reinforce business outcomes
I’ve been writing about data trust and privacy engineering for more than a decade. Related: Preserving privacy can be profitable In 2015, I sat down with Cisco’s privacy lead, Michelle Dennedy, who argued that privacy must be grounded in… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/10/critical-insights-qa-acceletrex-pilots-a-trust-first-privacy-led-model-to-reinforce-business-outcomes/
-
Critical insights QA: AcceleTrex pilots a trust-first, privacy-led model to reinforce business outcomes
I’ve been writing about data trust and privacy engineering for more than a decade. Related: Preserving privacy can be profitable In 2015, I sat down with Cisco’s privacy lead, Michelle Dennedy, who argued that privacy must be grounded in… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/10/critical-insights-qa-acceletrex-pilots-a-trust-first-privacy-led-model-to-reinforce-business-outcomes/
-
Critical insights QA: AcceleTrex pilots a trust-first, privacy-led model to reinforce business outcomes
I’ve been writing about data trust and privacy engineering for more than a decade. Related: Preserving privacy can be profitable In 2015, I sat down with Cisco’s privacy lead, Michelle Dennedy, who argued that privacy must be grounded in… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/10/critical-insights-qa-acceletrex-pilots-a-trust-first-privacy-led-model-to-reinforce-business-outcomes/
-
Capita to pay £14 million for data breach impacting 6.6 million people
The Information Commissioner’s Office (ICO) in the UK has fined Capita, a provider of data-driven business process services, £14 million ($18.7 million) for a data breach incident in 2023 that exposed the personal information of 6.6 million people. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/capita-to-pay-14-million-for-data-breach-impacting-66-million-people/
-
The Human Cost of Cyber Risk: How Exposure Management Can Ease Security Burnout
Tags: ai, attack, breach, business, ceo, ciso, cloud, cve, cyber, cybersecurity, data, data-breach, defense, finance, fraud, healthcare, identity, mitre, ransomware, risk, strategy, technology, threat, tool, vulnerability, vulnerability-managementThe true cost of cyber risk is a human one. Siloed tools and disjointed operations aren’t just endangering your business, they’re also taking a real toll on your teams. It’s long past time to take the friction out of cybersecurity with a unified, proactive approach. Key takeaways: Security teams are overwhelmed by the number of…
-
The Human Cost of Cyber Risk: How Exposure Management Can Ease Security Burnout
Tags: ai, attack, breach, business, ceo, ciso, cloud, cve, cyber, cybersecurity, data, data-breach, defense, finance, fraud, healthcare, identity, mitre, ransomware, risk, strategy, technology, threat, tool, vulnerability, vulnerability-managementThe true cost of cyber risk is a human one. Siloed tools and disjointed operations aren’t just endangering your business, they’re also taking a real toll on your teams. It’s long past time to take the friction out of cybersecurity with a unified, proactive approach. Key takeaways: Security teams are overwhelmed by the number of…
-
The Compliance Automation Revolution 2025
In 2025, compliance is no longer a box-ticking exercise, it’s a strategic business imperative. With new regulations like the EU’s NIS2 Directive, DORA for financial services, CMMC 2.0 for U.S. defense, and the Australian Privacy Act 2024, enterprises face tougher obligations, faster reporting timelines, and penalties reaching into the tens of millions. Yet most First…
-
Oracle silently fixes zero-day exploit leaked by ShinyHunters
Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the ShinyHunters extortion group. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/oracle-silently-fixes-zero-day-exploit-leaked-by-shinyhunters/
-
China responsible for rising cyber attacks, says NCSC
Ministers write to business leaders urging them to step up cyber security in wake of threats from ransomware and nation state-sponsored hackers First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366632649/China-responsible-for-rising-cyber-attacks-says-NCSC
-
13 cybersecurity myths organizations need to stop believing
Tags: access, ai, attack, authentication, backup, banking, breach, business, ceo, compliance, computer, computing, corporate, credentials, cyber, cybersecurity, data, data-breach, deep-fake, defense, encryption, finance, government, group, identity, incident response, infrastructure, jobs, law, malicious, mfa, monitoring, network, nist, openai, passkey, password, phishing, privacy, regulation, risk, service, skills, strategy, technology, theft, threat, tool, vulnerabilityBig tech platforms have strong verification that prevents impersonation: Some of the largest tech platforms like to talk about their strong identity checks as a way to stop impersonation. But looking good on paper is one thing, and holding up to the promise in the real world is another.”The truth is that even advanced verification…

