insider threats

The short, brutal timeline of this case — two federal contractors sacked in a 4:50 p.m. HR call and one of them allegedly deleting scores of government databases within minutes — exposes a catalogue of basic security failures that should unsettle every IT team that handles sensitive data...

The Justice Department’s latest insider‑threat prosecution reads like a cautionary tale written for IT managers, security teams, and anyone responsible for protecting federal data: two former contractors allegedly used lingering privileged access to delete nearly 100 government databases within...

In a development that reads like a modern Cold War thriller, U.S. prosecutors this month accused a former executive tied to a government cyber-intelligence contractor of stealing and selling proprietary hacking tools to a Russian-based buyer for roughly $1.3 million — allegations that expose...

X has confirmed that paid middlemen tried to bribe platform employees to reinstate accounts that were suspended for running crypto scams — and the episode exposes a wider, organized criminal pipeline that spans social platforms, gaming ecosystems, and notorious online threat groups. The...

The Pentagon has formally ended the long‑running practice of allowing China‑based Microsoft engineers to support Department of Defense cloud environments, ordering audits and vendor reviews that could reshape how major cloud providers service U.S. government systems. The move follows an...

Schneider Electric has published an advisory—republished by CISA—about an improper privilege management vulnerability in its Saitel family of Remote Terminal Units (RTUs) that has been assigned CVE‑2025‑8453 and carries a CVSS v3.1 base score of 6.7, affecting Saitel DR RTU firmware versions...

Microsoft quietly patched a vulnerability in Microsoft 365 Copilot that allowed the assistant to read and summarize enterprise files without producing the expected Purview audit entry — a gap that, if exploited, could let insiders or attackers extract sensitive data while leaving no trace in...

Microsoft’s recent quiet fix to an M365 Copilot logging gap has opened a new debate over cloud transparency, audit integrity, and how enterprise defenders should respond when a vendor patches a service-side flaw without issuing a public advisory. Security researchers say a trivial prompt...

Microsoft’s Copilot is delivering real productivity gains across Word, Teams, Outlook and other Microsoft 365 surfaces — but a recent disclosure shows those gains can come at the cost of auditability: under certain prompting patterns Copilot has produced user-visible summaries and actions...

A security researcher’s routine Copilot query revealed a startling blind spot in Microsoft’s logging: under certain prompts, Copilot could return file summaries without leaving the expected Purview audit entry — and, according to the researcher, Microsoft quietly rolled out a fix without issuing...

Microsoft’s Security Response Center has published an advisory for CVE-2025-53765 describing an information disclosure vulnerability in Azure Stack Hub that can allow an authorized local actor to disclose private personal information; Microsoft’s advisory notes the issue specifically affects...

Microsoft has confirmed an elevation-of-privilege flaw in Azure File Sync that can allow an authenticated, local attacker to escalate privileges on systems running the service — a serious risk for hybrid infrastructures that bridge on‑premises Windows servers and Azure file storage. Public...

Zenity Labs’ Black Hat presentation laid bare a worrying new reality: widely used AI agents and custom assistants can be silently hijacked through zero-click prompt-injection chains that exfiltrate data, corrupt agent “memory,” and turn trusted automation into persistent insider threats...

A new era of cyber resilience for Microsoft 365 environments is taking shape as Sophos and Rubrik unveil a pioneering integrated backup and recovery service. This collaboration, crystallized in the launch of Sophos M365 Backup and Recovery Powered by Rubrik, dramatically elevates data protection...

A sweeping transformation is underway in how enterprises approach digital continuity and cyber resilience, as Sophos unveils its MDR-optimised Microsoft 365 Backup and Recovery solution powered by Rubrik. In a move hailed by industry leaders as reshaping operational security, the partnership...

A new era of cyber resilience for Microsoft 365 users is unfolding as Rubrik and Sophos join forces to deliver an integrated backup, recovery, and threat response solution within the Sophos Central platform. Their collaboration arms organizations with the offensive and defensive tools needed to...

In a rapidly evolving threat landscape marked by sophisticated digital deception, the Scattered Spider hacking group has carved out a notorious reputation for exploiting trust—both technological and human—to compromise some of the world’s most widely used platforms. Recent advisories from...

Disaster resilience in the cloud era is often painted as a technical sprint towards ever-better backups, clever failovers, and bulletproof storage replication. But beneath the shiny surface of business continuity lies a quieter, sometimes overlooked foundational truth: identity is the keystone...

In a digital landscape increasingly defined by sophisticated and relentless cyberattacks, the stakes for protecting sensitive data have never been higher. High-profile breaches continue to make headlines, regulations become stricter, and the financial and reputational costs of a data leak can...

Organizations of every size have come to rely on Microsoft 365 as the digital nervous system powering their communication, collaboration, and data management. With its robust ecosystem—spanning Exchange Online, SharePoint, Teams, and the evolving Entra ID (Azure AD)—Microsoft 365 has brought...