kahmed

Dark Web News Analysis A threat actor has posted what they claim to be admin credentials for Jamaat-e-Islami’s support portal on a known cybercrime forum. The leaked data reportedly includes an email address, password, and the login URL for the portal, potentially granting unauthorized access to sensitive internal systems. If ...

Dark Web News Analysis Tenable, a prominent cybersecurity firm, has confirmed it was impacted by a large-scale data theft campaign targeting integrations with Salesforce and Salesloft Drift. The breach involved unauthorized access to Tenable’s Salesforce system, exposing customer contact details and support case metadata. According to Tenable’s disclosure, the compromised ...

Threat Technique Analysis Security researchers have detailed a potent new technique that allows attackers to read highly sensitive files on Windows systems, bypassing many of the modern security tools designed to prevent such breaches. A report from Workday’s Offensive Security team explains how a malicious actor can sidestep Endpoint Detection ...

Critical Infrastructure Analysis Significant internet disruptions have been reported across the Middle East and South Asia following multiple undersea cable cuts in the Red Sea. Tech giant Microsoft confirmed the issue, warning customers that its Azure cloud services are affected and that network traffic traversing the region may experience increased ...

Supply Chain Breach Analysis Several more major cybersecurity companies—Proofpoint, SpyCloud, Tanium, and Tenable—have now confirmed they were impacted by the massive Salesforce-Salesloft Drift supply chain attack. The incident, first disclosed by Google’s threat intelligence team, involved a threat actor using compromised OAuth tokens for the Salesloft Drift AI chatbot to ...

Cybercrime Enforcement Analysis Nigeria’s anti-graft agency, the Economic and Financial Crime Commission (EFCC), has announced a major crackdown on what it describes as one of the “largest foreign-led cybercrime syndicates” operating within the country. As part of an operation dubbed “Eagle Flush,” the agency has deported dozens of convicted foreign ...

Nation-State Threat Analysis The Chinese state-sponsored hacking group known as Mustang Panda has been observed targeting diplomats and other high-value individuals with a sophisticated new campaign. According to research from Google’s Threat Intelligence Group (GTIG), the threat actor is using an advanced adversary-in-the-middle (AitM) technique to hijack the captive portals ...

Supply Chain Attack Analysis Miljödata, a key IT systems supplier for approximately 80% of Sweden’s municipalities, has been impacted by a major cyberattack, causing service disruptions in more than 200 regions across the country. The company provides work environment and HR management systems that handle sensitive data such as medical ...

Supply Chain Breach Analysis Consumer credit reporting giant TransUnion has disclosed a data breach that exposed the personal information of over 4.4 million people in the United States. The incident, which occurred on July 28, 2025, has been confirmed to be part of the ongoing wave of Salesforce data theft ...