From Data Breach to Physical Harm: The Rise of “Violence-as-a-Service”
“Violence-as-a-Service” is no longer a plot for a thriller. It’s a documented, growing threat that security leaders must add to their risk models….
Screaming Matches, Leaks, & Security Failures: What the Chattanooga NRS Breach Teaches Us About Vendor Risk
In late 2024, a significant third-party data breach was discovered involving Nationwide Recovery Services (NRS) – a debt collection agency based in Cleveland,…
Bypassing Middleware in Next.js: What CVE-2025-29927 Means for Security Teams
A recently disclosed vulnerability in the Next.js framework (CVE-2025-29927) highlights a familiar but serious problem: small implementation details can have big security consequences….
Cyberattack on American Water Works Underscores Fragility of Critical Infrastructure
American Water Works, the largest regulated water provider in the United States, recently suffered a cyberattack that forced the company to shut down…
Barracuda’s Urgent Advisory: Replacement Over Patching
Even the most jaded cybersecurity veterans are finding it hard to ignore Barracuda Networks’ latest security advisory, thanks to its peculiar remediation guidance….
Lessons Learned from the GiveSendGo Hack
GiveSendGo was started in 2013 as a small company designed to service the niche market of fundraisingfor Christian causes. As GoFundMe started to…
Internet of Things: Weighing the Pros and Cons
Understanding your world better “My favorite benefit of IoT is the learning paths it unlocks for people who get interested in it,” says…
Critical Vulnerability Discovered in Ubiquitous Log4j Library
A newly discovered vulnerability in a incredibly popular Java logging library, log4j, was made public today. The ease of exploitation appears to be…
Data Security Management: An In-Depth Guide
3. Employees Dana Wills, information security consultant at Asteros, says the top data security threat comes from lack of proper employee security awareness…
REvil, a Russian ransomware operation, shut down because of hackers
“Attribution for the reported attack on REvil will be difficult, said Dana Wills, an information security consultant for Asteros, a cybersecurity vendor. “In this…
