Jonathan Greig reports: The U.S. State Department said they were seeking information on Iranian hackers who they accused of targeting critical infrastructure using a strain of malware deployed against industrial control systems. U.S. officials are offering up to $10 million for details on a hacker affiliated with the group called CyberAv3ngers that gained prominence in…
Author: Dissent
Sompo Japan Insurance submits improvement plan after info leakage
Insurance Asia reports: Sompo Japan Insurance has submitted a business improvement plan to the local Financial Services Agency (FSA). The FSA had earlier ordered the insurer to submit the plan on 24 March 2025, in relation to the leakage of customer information. In a statement, Sompo Japan Insurance apologized for “any inconvenience and concern caused to…
Moreno Valley, Calif., Schools Report Data Breach
Beau Yarborough reports: Moreno Valley Unified has warned its employees that sensitive information may have been shared with someone outside the organization. “We are currently investigating a matter involving the accidental sharing of a folder that contained certain documents and information,” Superintendent Alejandro Ruvalcaba wrote in a June 6 email to all employees. “While we continue to determine…
The Growing Cyber Risks from AI — and How Organizations Can Fight Back
Joseph J. Lazzarotti writes: Artificial Intelligence (AI) is transforming businesses—automating tasks, powering analytics, and reshaping customer interactions. But like any powerful tool, AI is a double-edged sword. While some adopt AI for protection, attackers are using it to scale and intensify cybercrime. Here’s a high-level discussion at emerging AI-powered cyber risks in 2025—and steps organizations…
UPDATING: Credit Control Corporation denies any current breach
Update: And this is why we said “allegedly” and “unconfirmed.” CCC responded to yesterday’s inquiry with the following reply: Credit Control Corporation is not currently the subject of any data breach or security incident referenced in your message. The original post appears below for context. A seller on a forum claims to have data on 9.1…
Copilot AI Bug Could Leak Sensitive Data via Email Prompts
Rashmi Ramesh reports: A well-phrased email was all an attacker would have needed to trick Microsoft Copilot into handing over sensitive data until the operating system giant patched the vulnerability. The vulnerability in Microsoft 365 Copilot allowed attackers to extract sensitive data through a zero-click prompt injection attack, said researchers from Aim Security. Dubbed “EchoLeak” and tracked…