Artificial intelligence (AI) company OpenAI was impacted by a third-party breach affecting analytics company Mixpanel, exposing “limited” user data.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Dartmouth College has reported a data breach from Oracle’s E-Business Suite applications, leaking the sensitive personal information of approximately 35,000 people.
A data breach at SitusAMC has affected several major US banks after attackers breached the finance technology company’s network.
Salesforce has confirmed another third-party breach affecting Gainsight applications integrated with customer instances, enabling attackers to exfiltrate customer data.
The FBI has issued a warning about a spike in financial account takeover crimes, after fielding over 5,100 complaints thus far in 2025. Attackers are commonly impersonating bank staff and mocking up replicas of financial institution websites to obtain credentials, and in some cases are ensnaring victims via legitimate-seeming search engine ads.
Civil actions brought by the SolarWinds Corp and its CISO Timothy Brown have been dismissed with prejudice by the Manhattan federal court handling the case, the end result of a settlement negotiation process that began in July of this year.
AI autonomy has redrawn the security battlefield. What was once human versus human is now AI against AI, with both attackers and defenders wielding machine power.
Conduent Business Solutions experienced a data breach that exposed the personal and health information of over 10.5 million people, resulting in numerous lawsuits.
Simply confirming that phone numbers are linked to WhatsApp accounts can be a security risk. Confirming that a number is registered and active makes it more valuable and more of a priority to spammers, scammers and hackers. The security flaw can also expose someone using the app in a country where it is banned.
Microsoft says its Azure cloud platform was hit by the largest of its kind DDoS attack from a Turbo Mirai-class IoT botnet, Aisuru, harnessing over 500,000 residential IPs.










