Breaking Science, Not Your Brain
Nevada state offices were forced to shut down today after a severe network security incident shut down state websites and disrupted phone services. The governor’s office confirmed the incident and security teams have brought in CISA to assist with response and monitoring, as investigations are underway. (Reuters) How the Disruption Unfolded The incident affected key … Read more
Healthcare cybersecurity took a hit this week. Dialysis provider DaVita was hit by ransomware, with U.S. health department records confirming the attack impacted around 2.7 million individuals. The firm is working to restore operations while assessing the fallout. (Reuters) What Went Wrong DaVita disclosed the cyberattack back in April and has since struggled to fully … Read more
A major hospital in Germany was rocked by a cyberattack tied to Russia that disabled its MRI machines via a corrupted system update. The incident forced patients to wait or cancel appointments while tech staff scrambled to restore safe access. (Reuters) Why This Matters Medical devices used to be disconnected or locked down, but with … Read more
Federal court systems across the U.S. are scrambling after officials revealed that the judiciary’s electronic filing platforms have been targeted in a substantial cyber intrusion. The breach affects core systems used by judges, lawyers and journalists to file, manage and access court records, and it raises urgent questions about how sensitive legal information is protected. … Read more
NATO Secretary General Jens Stoltenberg cautioned on August 1 that cyberattacks today can cause damage equivalent to traditional military strikes. He emphasized the need for collective cyber defense across alliance members. (Reuters) Speaking at the Brussels summit, Stoltenberg called for increased investment in AI-enabled cybersecurity tools, cross-border threat intelligence, and mechanisms to coordinate rapid response … Read more
The U.S. Department of Energy’s Fermi National Accelerator Laboratory (Fermilab) was targeted in a recent cyberattack exploiting known flaws in Microsoft SharePoint server software. Attackers attempted to access Fermilab’s SharePoint servers, though no classified or sensitive data was accessed. (Reuters) The breach is part of a wider campaign leveraging a critical SharePoint vulnerability. Microsoft issued … Read more
A newly discovered zero-day vulnerability in Microsoft SharePoint Server has been exploited in a widespread cyberattack affecting over 50 organisations—including the U.S. National Nuclear Security Administration (NNSA) and Department of Energy. (Windows Central) Security researchers report that the exploit—referred to as “ToolShell” (CVE‑2025‑53770 and CVE‑2025‑53771)—has compromised around 100 organisations worldwide, with victims spanning government agencies, … Read more
July 21, 2025, Redmond, WA Microsoft has confirmed a critical zero-day vulnerability in Windows 12 that is actively being exploited by attackers. The exploit allows remote code execution through a flaw in the Windows Kernel Driver subsystem. A patch has been issued and users are strongly advised to update immediately. Cybersecurity researchers at Mandiant and … Read more
July 17, 2025, Redmond Microsoft has disclosed a significant security breach in its Azure cloud platform, affecting several enterprise tenants due to a misconfigured identity key. The breach, first identified by internal threat monitoring systems and verified by external researchers, could have allowed unauthorized access to customer accounts and sensitive data. According to Microsoft’s security … Read more
July 6, 2025, Cupertino Apple has introduced quantum-resistant encryption to iMessage, becoming the first major consumer tech platform to deploy post-quantum protections at scale. The upgrade will be included with iOS 19, set to roll out later this month, and will secure communications against future quantum computing decryption capabilities. The system uses a new protocol … Read more