Salesforce refuses extortion demand over 1 billion records breach

Salesforce has announced it will not pay a ransom demanded by a cybercrime group claiming to have stolen around 1 billion records from its customers. The group, known as Scattered LAPSUS$ Hunters, set a deadline of Friday for payment to avoid data leaks. This stance comes amid rising global ransomware incidents and expert warnings against funding criminals.

HHS announces voluntary cybersecurity goals for healthcare

The U.S. Department of Health and Human Services has released a set of voluntary cybersecurity performance goals aimed at bolstering protections in the healthcare sector. These goals address the rising tide of cyberattacks targeting patient data and critical infrastructure. Developed in collaboration with federal partners, they provide a framework for organizations to enhance their defenses.

Karlskronan voimalaitos joutui kyberhyökkäyksen kohteeksi

04. lokakuuta 2025 Raportoinut AI

Karlskronan yhdistetty lämpövoimalaitos, joka tunnetaan nimellä Mältan, joutui kyberhyökkäyksen kohteeksi, joka häiritsi toimintaa yön yli. Poliisi tutkii tapausta epäiltynä tietovirmoita. Laitos tuottaa kaukolämpöä ja sähköä alueelle.

Microsoft warns of payroll pirate scam targeting university employees

11. lokakuuta 2025 Raportoinut AI

Microsoft has alerted organizations to a phishing campaign dubbed 'Payroll Pirate' that compromises Workday accounts to divert employee paychecks. The scam, active since March 2025, has affected accounts at multiple universities. Attackers use sophisticated tactics to bypass multi-factor authentication and hide their changes.

UK tribunal orders Apple to hand over iCloud data

04. lokakuuta 2025 Raportoinut AI

A UK tribunal has ruled that Apple must provide access to iCloud data for law enforcement purposes, prompting strong disapproval from the company. The decision revives concerns over encryption backdoors and user privacy in the digital age. Apple has described the order as a significant setback for data protection.

Microsoft announces premium 365 features and security store

04. lokakuuta 2025 Raportoinut AI

Microsoft has unveiled Microsoft 365 Premium, a new subscription tier with advanced AI capabilities, alongside the launch of the Microsoft Security Store, an online marketplace for security solutions. These announcements aim to enhance productivity and cybersecurity for businesses. The moves come as part of Microsoft's ongoing push into AI-integrated services.

Kali Linux 2025.3 releases Gemini CLI for automated pentesting

07. lokakuuta 2025 Raportoinut AI

The latest Kali Linux update, version 2025.3, introduces Gemini CLI, an open-source tool that integrates Google's Gemini AI into the terminal. This innovation automates penetration testing tasks like reconnaissance and vulnerability scanning using natural language prompts. Security professionals can now streamline workflows while maintaining control over assessments.

Cl0p ransomware group claims breach of Oracle E-Business Suite

03. lokakuuta 2025 Raportoinut AI

The Cl0p ransomware group has claimed responsibility for hacking Oracle's E-Business Suite, asserting that it stole sensitive data from companies using the application. The hackers are now notifying affected victims and demanding ransoms to prevent data leaks. Oracle has not yet confirmed the breach.

Ransomware attack disrupts Japan's beer supply

A ransomware attack has hit a key Japanese beer distributor, causing shortages of popular brands across the country. The incident highlights vulnerabilities in supply chains amid rising cyber threats.

Android spyware disguises itself as signal or totok updates

Cybersecurity researchers have uncovered a new strain of Android spyware that masquerades as legitimate updates for popular messaging apps Signal and Totok. The malware aims to trick users into installing it, potentially compromising their devices and data. Experts urge Android users to verify app sources to avoid falling victim.