FBI Warns of AI Voice Scam: Smishing & Vishing Campaign Targets US Officials

The FBI has released a public service announcement to warn individuals about a growing cyber risk involving audio and video scams Come 2025 we see malicious actors have been impersonating senior U.S. government officials to target individuals, especially current or former senior federal and state officials, as well as their contacts. The FBI is urging…

Read More

New Microsoft O365 Phishing Attack Uses AES & Malicious npm Packages to Steal Login Credentials

A sophisticated phishing campaign targeting Microsoft Office 365 users has emerged, combining several advanced techniques to evade detection and harvest credentials. The attack, identified in early April 2025, leverages encrypted HTML files, content delivery networks (CDNs), and malicious npm packages in a multi-stage approach that cybersecurity experts describe as unusually complex for typical phishing operations….

Read More

CISA revamps How it Disperses Security Advisories & Updates

The US Cybersecurity and Infrastructure Security Agency (CISA) on Monday said it is officially changing the way it disseminates online security updates and guidance. CISA says the enhanced information dissemination system will from now on use social media and email only to disperse cybersecurity alerts and advisories, saving its landing page for more critical warnings. Critical warnings are…

Read More

Deloitte Expands AI Factory as a Service in Collaboration with Palo Alto Networks

Deloitte recently announced the expansion of S2S AI Factory as a Service to include advanced cybersecurity from Palo Alto Networks. Built on the NVIDIA AI platform, this scalable suite of Generative AI (GenAI) capabilities includes Deloitte’s custom use cases for fast-tracked, scalable GenAI deployments. AI Factory as a Service integrated with New Cyber Capabilities including Deloitte’s data science, model…

Read More

BSE Warns of Cyber Threats, Tightens Security

Stock exchange BSE India, on Wednesday, advised market participants to take precautionary measures on potential cyber risks The circular from BSE cited an advisory from Indian Computer Emergency Response Team (CERT-In) highlighting on cyber threat campaign specifically targeting Indian organisations operating within the Banking, Financial Services, and Insurance (BFSI) sector. Banks have also tightened their…

Read More

Managing risks from third parties with TPRM is mis-aligned: EY survey

The 2025 EY Global Third-Party Risk Management Survey reveals new approaches to managing risks from third parties in a more volatile environment. Risk leaders are using AI and centralization to fundamentally transform their third-party risk management functions for the future. Business uncertainty and cost pressures are driving efficiency imperatives for third-party risk management A confluence of…

Read More