Sensitive Information stories

Police warned of 'very high' privacy risks in shifting sensitive data to Microsoft's cloud, amid a cautious trial in Wellington started in 2023.

Tenable Research has uncovered a vulnerability in Google Cloud Run, named ImageRunner, which could allow attackers to access private container images.

Endowus has teamed up with Twilio to enhance security on its digital wealth platform, addressing a surge in fraud cases with advanced verification measures.

Appdome has launched dynamic defence plugins to combat threats from the popular DeepSeek AI app, which poses serious security risks to mobile users.

A data leak from TopSec, a Chinese cybersecurity firm, reveals its role in aiding the government’s web monitoring efforts, according to SentinelLabs.

Following a ransomware attack on HCRG Care Group, Semperis' Jeff Wichman has highlighted the major risk for healthcare organisations.

The Australian government has banned the Chinese AI platform DeepSeek from its systems, echoing similar actions by the US and Italy over security risks.

CloudSEK has revealed a cyber threat impacting over 18,000 devices worldwide, targeting novice cybersecurity users with a malicious XWorm Remote Access Trojan builder.

Elastic has achieved the Protected level IRAP certification for Elastic Cloud, ensuring compliance with Australian government security requirements.

CloudSEK's latest report reveals how cybercriminals exploit Zendesk's subdomain feature to create convincing phishing scams, risking brand trust and security.

Research from Infoblox reveals ongoing exploitation of spoofed domains in malicious spam campaigns, highlighting the persistent threat posed by cybercriminals.

CloudSEK has uncovered over 30,000 exposed Postman workspaces leaking sensitive API keys, affecting major firms across healthcare, finance, and sports sectors.

A new report by DeepL reveals that 87% of legal professionals find AI tools enhance their work, marking a significant shift in the legal sector.

Upwind has launched its Shift Left capability, enhancing CI/CD pipelines by integrating runtime context to help developers prioritise vulnerabilities.

Australia's new Scam Prevention Framework compels banks and telecoms to tackle rising scams, with fines of up to AUD $50 million for non-compliance.

Research by Apricorn reveals that the adoption of encryption policies among UK organisations has doubled in 2024, with 46% now mandating encryption for all data.

Genesis Energy partners with Informatica to implement AI-powered data governance, aiming to enhance data quality, streamline operations, and support advanced AI solutions.

A cyberattack disrupted services at 20 UK railway stations, exposing security flaws in public transport infrastructure and raising public anxiety over data breaches.

Vectra AI reveals a critical Transitive Access Abuse vulnerability in Google Cloud's Document AI, raising data exfiltration risk for users.

Cybercriminals exploit popular content platforms to launch sophisticated phishing attacks, targeting users in Singapore and the Asia-Pacific region.