Here is today’s reminder of the insider threat. Street Insider reports: ALT5 Sigma Corporation filed a lawsuit in Delaware Chancery Court on November 4 against Wellington Peel, LLC, Jean-Francois Amyot, Hugues Benoit and Prime Delta Corp., seeking a temporary restraining order and injunctive relief related to alleged unauthorized access of company information. The company discovered…
Is your cyberinsurance paid up? Are you sure?
Patterson-Schwartz & Associates, Inc. (“PSA”) is a real estate firm headquartered in Delaware. In May 2025, they experienced a data breach when two employee email accounts were compromised in phishing attacks on May 14 and May 29. Although PSA responded quickly to secure the compromised accounts and initiate incident response, sending notification letters to those…
Everest Group Interview on Collins Aerospace Breach — Daily Dark Web
Daily Dark Web has published an interesting interview with Everest Group about the Collins Aerospace cyberattack that affected several airports. In the interview, Everest disputes several claims made by Collins or in the media regarding the incident. Collins’ parent company, RTX, had described the attack as a “ransomware” incident, but Everest asserts there was no…
Breaking Up With Edtech Is Hard to Do
Ellen Ullman reports: When Kerri Wall’s school district decided not to renew its five-year contract with an edtech company last spring, she didn’t expect the hardest part to come after the breakup. As the senior digital innovation administrator for the School District of Indian River County in Florida — and designated student data privacy officer…
Benworth Capital Partners negotiated with threat actors after more than 25,000 lenders had data stolen
Benworth Capital Partners PR LLC is a licensed lender in Florida that describes itself as a “hard money lender.” Benworth claims they make the decisions to fund hard money loans “based on our unique criteria that’s a lot different than a bank, credit union, or mainstream online lender. The funds used for our hard money…
Android Hit by 0-Click RCE Vulnerability in Core System Component
Divya reports: Google has released an urgent security alert addressing a critical remote code execution vulnerability affecting Android devices worldwide. The vulnerability, tracked as CVE-2025-48593, exists in Android’s System component and requires no user interaction for exploitation, making it an exceptionally dangerous threat. The flaw affects Android versions 13 through 16 and demands immediate attention from device…