TSFactory

China’s Cybersecurity Agency Alleges US Government Stole $13 Billion In Bitcoin - Community According to a recent report by Bloomberg, the cybersecurity arm of China has openly accused the US government of orchestrating the theft of approximately $13 billion in Bitcoin (BTC), adding tension ...

"The Chinese National Computer Virus Emergency Response Center suggests that this large-scale hack was likely a planned “state-level hacker operation” orchestrated by the US."

www.tsfactory.com/forums/blog/...

#cybersecurity #bitcoin

Cybersecurity breach at Congressional Budget Office remains a live threat - Community A cybersecurity breach discovered last week affecting the Congressional Budget Office is now considered “ongoing,” threatening both incoming and outgoing correspondence around Congress’ nonpartisan sc...

Library of Congress workers also were told to restrict their communication with the nonpartisan agency tasked with providing economic and budgetary information to lawmakers.

www.tsfactory.com/forums/blog/...

#cbo #congress #cybersecurity

Researchers Find ChatGPT Vulnerabilities That Let Attackers Trick AI Into Leaking Data - Community Cybersecurity researchers have disclosed a new set of vulnerabilities impacting OpenAI’s ChatGPT artificial intelligence (AI) chatbot that could be exploited by an attacker to steal personal informati...

The seven vulnerabilities and attack techniques, according to Tenable, were found in OpenAI's GPT-4o and GPT-5 models. OpenAI has since addressed some of them.

www.tsfactory.com/forums/blog/...

#cybersecurity #chatgpt

How to Calculate Data Breaches  - Blogs How to Calculate Data Breaches  The cost of a data breach depends on an organization’s size, industry, and readiness – ranging from minor downtime for a small business to massive losses or fines for l...

The cost of a data breach depends on an organization’s size, industry, and readiness - ranging from minor downtime for a small business to massive losses or fines for larger, data-sensitive organizations.

www.tsfactory.com/forums/blogs...

#cybersecurity #databreach

Two men accused of hacking and extorting US companies previously worked for cybersecurity firms - Community Two former employees of cybersecurity firms that sold services helping companies combat hackers have been indicted and accused of participating in a conspiracy, outside of their day jobs, to hack mult...

The men are accused of demanding approximately $10 million from the Florida-based medical device maker to unlock the firm’s data, and ultimately received about $1.27 million, according to the indictment.

www.tsfactory.com/forums/blog/...

#cybersecurity #ransomware

AI adoption outpaces corporate governance, security controls - Community Dive Brief: The use of AI in the corporate workplace is growing so quickly that companies do not have the proper security controls and frameworks required to use the technology securely, according to ...

Six of 10 IT and business leaders said that AI-based cyber threats are outpacing their security team’s ability to deal with them.

www.tsfactory.com/forums/blog/...

#cybersecurity #ai #corporategovernance

Google probes exploitation of critical Windows service CVE - Community Google Threat Intelligence Group is investigating a series of attacks linked to a hacker targeting a critical vulnerability in Windows Server Update Service, Cybersecurity Dive has learned. Threat act...

“We are actively investigating the exploitation of CVE-2025-59287 by a newly identified threat actor we are tracking as UNC6512 across multiple victim organizations,” GTIG researchers told Cybersecurity Dive.

www.tsfactory.com/forums/blog/...

#cybersecurity #microsoft

New ChatGPT Atlas Browser Exploit Lets Attackers Plant Persistent Hidden Commands - Community Cybersecurity researchers have discovered a new vulnerability in OpenAI’s ChatGPT Atlas web browser that could allow malicious actors to inject nefarious instructions into the artificial intelligence ...

This exploit can allow attackers to infect systems with malicious code, grant themselves access privileges, or deploy malware.

www.tsfactory.com/forums/blog/...

#cybersecurity #chatgpt

Cybersecurity on a Budget: A Small Business Survival Guide

JLR hack is costliest cyber attack in UK history, say analysts - Community The cyber attack on Jaguar Land Rover (JLR) will cost an estimated £1.9bn and be the most economically damaging cyber event in UK history, according to researchers. Experts at the Cyber Monitoring Cen...

According to the CMC, 5,000 businesses have been affected in total and a full recovery will not be reached until January 2026.

www.tsfactory.com/forums/blog/...

#jlr #hack #landrover

Cyber defenders sound the alarm as F5 hack exposes broad risks - Community WASHINGTON, Oct 20 (Reuters) – A more than year-long digital intrusion into cybersecurity company F5 (FFIV.O), opens new tab, publicized last week and blamed on Chinese spies, has defenders across the...

Several worry that more disclosures are coming. So far, little is known about the scope of the hack beyond statements from F5 that its source code and sensitive information about software vulnerabilities were stolen. 

www.tsfactory.com/forums/blog/...

#cybersecurity #f5

Cyber attack contingency plans should be put on paper, firms told - Community People should plan for potential cyber-attacks by going back to pen and paper, according to the latest advice. The government has written to chief executives across the country strongly recommending t...

A recent spate of hacks has highlighted the chaos that can ensue when hackers take computer systems down.

www.tsfactory.com/forums/blog/...

#cybersecurity

Attacks on Palo Alto PAN-OS Global Protect Login Portals Surge from 2,200 IPs - Community A massive escalation in attacks targeting Palo Alto Networks PAN-OS GlobalProtect login portals, with over 2,200 unique IP addresses conducting reconnaissance operations as of October 7, 2025. This re...

This represents a significant surge from the initial 1,300 IPs observed just days earlier, marking the highest scanning activity recorded in the past 90 days according to GreyNoise Intelligence monitoring.

www.tsfactory.com/forums/blog/...

#cybersecurity #paloalto

5 HIPAA Best Practices Security Leaders Can’t Afford to Overlook - Blogs For CISOs in healthcare, HIPAA security and compliance isn’t just about regulatory checkboxes,  it’s about safeguarding the trust at the core of the patient–provider relationship. Every security decis...

" Every security decision has clinical and business implications. A ransomware attack can delay surgeries. A lost laptop can trigger federal investigations. A single phishing email can expose millions of records."

www.tsfactory.com/forums/blogs...

#hippa #security #ciso

The true cost of cyber attacks - and the business weak spots that allow them to happen - Community The first day of September should have marked the beginning of one of the busiest periods of the year for Jaguar Land Rover. It was a Monday, and the release of new 75 series number plates was expecte...

In all, a government-run survey on cyber security breaches estimates 612,000 businesses and 61,000 charities were targeted across the UK.

www.tsfactory.com/forums/blog/...

#cybersecurity #cost

CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems CISA adds critical Sudo flaw CVE-2025-32463 and four other exploited vulnerabilities to KEV list.

It's currently not known how the shortcoming is being exploited in real-world attacks, and who may be behind such efforts.

thehackernews.com/2025/09/cisa...

#linux #cisa #unix

Cyber attacks: '80%' of ransomware victims pay up, insurer says - Community The vast majority of companies hit by ransomware attacks over the past year have paid up, according to an insurance specialist’s report that warns of mixed outcomes for those who do. Business-to-home ...

There are no lengths to which cyber criminals will stoop – with hackers just last week threatening to release the personal data of children in the care of a nursery chain.

www.tsfactory.com/forums/blog/...

#cybersecurity #ransomware

Why burnout is a growing problem in cybersecurity - Community When Tony was signed off for burnout from his cybersecurity awareness role at a major UK ecommerce company last year, it had been a long time coming. “Many of us in cyber, we put our hearts into our j...

“Cyber professionals rarely work nine to five”, he adds, “Even if they do, they remain on call because threat actors don’t adhere to office hours.”

www.tsfactory.com/forums/blog/...

#cybersecurity #burnout

European Airport Cyberattack Linked to Obscure Ransomware, Suspect Arrested - Community The recent cyberattack aimed at aerospace and defense company Collins Aerospace, which has caused significant disruptions at major airports in Europe, reportedly involved a piece of ransomware known a...

The HardBit ransomware emerged in October 2022 and it came into the spotlight a few months later when it emerged that the cybercriminals were willing to negotiate ransom amounts based on their victims’ cyberinsurance policy. 

www.tsfactory.com/forums/blog/...

#cybersecurity #airport #ransomware

What happens when a cybersecurity company gets phished? A Sophos employee was phished, but we countered the threat with an end-to-end defense process

Everyone – including security researchers – has a vulnerability that could make them susceptible, given the right situation, timing, and circumstances.

news.sophos.com/en-us/2025/0...

#phishing #cybersecurity

EU cyber agency says airport software held to ransom by criminals - Community The EU’s cyber security agency says criminals are using ransomware to cause chaos in airports around the world. Several of Europe’s busiest airports have spent the past few days trying to restore norm...

Several of Europe’s busiest airports have spent the past few days trying to restore normal operations, after a cyber-attack on Friday disrupted their automatic check-in and boarding software.

www.tsfactory.com/forums/blog/...

#airports #ransom #cybersecurity

Microsoft disrupts global phishing campaign that led to widespread credential theft - Community Microsoft on Tuesday announced that it had dismantled the infrastructure behind a major phishing-as-a-service operation that had powered attacks on healthcare organizations around the world. The opera...

Microsoft seized 338 of Raccoon0365’s web domains after obtaining permission from a federal judge in the Southern District of New York.

www.tsfactory.com/forums/blog/...

#cybersecurity #microsoft

Cybersecurity on a Budget: A Small Business Survival Guide - Blogs Cybersecurity on a Budget: A Small Business Survival Guide Introduction Running a small business is hard enough without worrying about hackers. But here’s the reality: 43% of cyberattacks target small...

Massive IT budgets and enterprise-level software isn’t always necessary. With the right approach, small organizations can build strong cybersecurity on a budget.

www.tsfactory.com/forums/blogs...

#cybersecurity #budget

Why hackers are targeting the world's shipping - Community Lawyer Henry Clack sadly knows a lot about Nigerian criminal gangs. Mr Clack, a solicitor at London-based commercial law firm HFW, has to deal with them when he is representing global shipping firms t...

“Of the cases which HFW have been involved in, the most common counterparties that we’ve encountered are Nigerian organised criminal organisations."

www.tsfactory.com/forums/blog/...

#cybersecurity #shipping #hackers

What is Ransomware-as-a-Service (RaaS)? - Blogs Ransomware attacks have evolved from one-off, opportunistic hacks into a mature criminal industry — and at the heart of this transformation is Ransomware-as-a-Service (RaaS). This underground business...

RaaS kits allow affiliates lacking the skill or time to develop their own ransomware variant to be up and running quickly and affordably.

www.tsfactory.com/forums/blogs...

#raas #cybersecurity

How AI and politics hampered the secure open-source software movement - Community n November 2021, a zero-day vulnerability in a ubiquitous piece of open-source code stunned the technology industry and set off an urgent effort to help secure the largely volunteer open-source ecosys...

"A tantalizing new technology known as generative AI distracted the tech giants funding the work, and a political transition in the U.S. extinguished government efforts to keep the industry on track."

www.tsfactory.com/forums/blog/...

#cybersecurity #ai #politics

Ex-WhatsApp cybersecurity head says Meta endangered billions of users in new suit - Community A former top cybersecurity executive at WhatsApp filed a lawsuit on Monday alleging that parent company Meta disregarded internal flaws in the app’s digital defenses and exposed billions of its users....

"...claims that approximately 1,500 engineers had unrestricted access to user data without proper oversight, potentially violating a US government order that imposed a $5bn penalty on the company in 2020."

www.tsfactory.com/forums/blog/...

#whatsapp #meta #cybersecurity

How the generative AI boom opens up new privacy and cybersecurity risks - Community Corporate strategy will need to take these potential issues into account, both by shielding who owns the data and by preventing AI from becoming a security breach. It was one of the viral tech news st...

It was one of the viral tech news stories at the start of July when WeTransfer, the popular file sharing service used massively by companies and end users alike, had changed its terms of use.

www.tsfactory.com/forums/blog/...

#cybersecurity #generativeai

Zscaler Confirms Data Breach – Hackers Compromised Salesforce Instance and Stole Customer Data - Community Cybersecurity company Zscaler has confirmed it fell victim to a widespread supply-chain attack that exposed customer contact information through compromised Salesforce credentials linked to marketing ...

Zscaler emphasized that the incident was confined to its Salesforce environment and did not affect any of its core security products, services, or underlying infrastructure.

www.tsfactory.com/forums/blog/...

#salesforce #databreach

UK and allies expose China-based technology companies for enabling global cyber campaign against critical networks - Community The UK and international allies have today (Wednesday) publicly linked three technology companies based in China with a global malicious cyber campaign targeting critical networks. In a new advisory p...

The activities described in the advisory partially overlaps with campaigns previously reported by the cyber security industry most commonly under the name Salt Typhoon.

www.tsfactory.com/forums/blog/...

#cybersecurity #salttyphoon