(860) 482-9791 info@tccubed.com

Cybersecurity News

Daily cybersecurity news and analysis for small and mid-sized businesses, in plain language with the SMB consequence first.

Latest

FortiBleed Ransomware Link, SharePoint Under Attack, and JetBrains Critical Patcheshttps://www.youtube.com/watch?v=vmBfeRt8Th4 Three active ransomware attack campaigns are exploiting unpatched vulnerabilities in FortiGate firewalls, Microsoft SharePoint, and JetBrains development tools. Small business owners must patch these systems…

More — newest first

Massive Azure Attack Compromises 78 Accounts: Is Your MFA Configured Correctly?https://www.youtube.com/watch?v=-iTQGMjO_54 A massive password spray attack compromised at least 78 Azure accounts across 64 organizations by exploiting weak multi-factor authentication (MFA) configuration, showing that MFA alone…Oracle Under Attack: Emergency Patches Needed Nowhttps://www.youtube.com/watch?v=BZ3sCwRgjQY Oracle software vulnerabilities are under active attack right now, with hackers exploiting zero-day flaws in PeopleSoft and E-Business Suite to steal employee data and gain…Third-Party Software Flaws: The Hidden Threat to Your Businesshttps://www.youtube.com/watch?v=JNe0USrh_LA A vendor security audit identifies which third-party tools and services pose the greatest breach risk to your business. Recent breaches at Oracle and KDDI show…Huntsville Hospital Breach: Data Protection Lessons for Small Businesshttps://www.youtube.com/watch?v=ihPz8Pe1VOI A breach response plan is your roadmap for containing damage when attackers access customer or employee data. The Huntsville Hospital breach underscores why small businesses…Salesforce Breach, Cisco Flaw Weaponized in 24 Hours, and the $2.5B JLR Hackhttps://www.youtube.com/watch?v=7KqgbyLW-TY A Salesforce integration breach, weaponized Cisco phone system flaw, Linux kernel vulnerability, and $2.5B Jaguar Land Rover attack show that breach response requires immediate action…Patch Now: 25-Year-Old cURL Flaw, Chrome Updates, and Ransomware Surgehttps://www.youtube.com/watch?v=WiLuq6hhLwk Ransomware recovery starts with backups that attackers cannot reach. This week's 50% surge in European ransomware attacks targeting manufacturers signals an urgent shift in U.S.…FortiBleed Steals 110M Credentials & LastPass Breached Againhttps://www.youtube.com/watch?v=BRm5-nu-XRg Patch management vulnerabilities are actively exploited across FortiGate firewalls, Ubiquiti UniFi OS, and SharePoint servers this week, with attackers stealing 110 million credentials and deploying…LastPass Breach, 3M Texans Exposed, and FBI's TDS Warninghttps://www.youtube.com/watch?v=eDGZ1eBO45c A vendor security breach at a Parks and Wildlife contractor exposed 3 million Texans' ID data, and LastPass confirmed attackers stole customer information through a…Third-Party Risks: Vendor Breaches Hit 3M Users and Major Security Firmshttps://www.youtube.com/watch?v=A42EF80KRdo Vendor breach response starts the moment your organization confirms a third-party compromise. Small businesses must immediately audit what data third-party vendors accessed, revoke compromised credentials,…Supply Chain Attacks and WordPress Bugs: June 20th Cyber Alerthttps://www.youtube.com/watch?v=BBm_8WeqUEc Supply chain attacks targeting npm packages and WordPress plugins directly threaten small businesses that rely on third-party software. This week, Microsoft attributed the Mastra AI…Third-Party Vendors: Your Cybersecurity Achilles Heel - June 18, 2026https://www.youtube.com/watch?v=MPKO6BAODUA Vendor breach response requires immediate action across four areas: audit all cloud app integrations for unauthorized access, limit vendor system permissions to essential functions only,…Critical CISA Alerts: Patch Now or Face Active Exploitshttps://www.youtube.com/watch?v=j8G3NjWxtJ4 A vendor security breach in Texas exposed 3 million driver's licenses and passports, showing how third-party vulnerabilities directly threaten your operations and compliance standing. This…Critical CISA Alerts: Patch Now or Face Active Exploitshttps://www.youtube.com/watch?v=j8G3NjWxtJ4 Patch critical vulnerabilities immediately, especially Splunk Enterprise CVE-2026-20253 and Fortinet devices after the FortiBleed credential leak, as CISA reports active exploitation targeting small businesses this…FortiBleed Hits 70K Firewalls: Your Business Security Alerthttps://www.youtube.com/watch?v=6yS_I6lGX4M A firewall security breach called FortiBleed has compromised over 70,000 Fortinet FortiGate devices worldwide, potentially exposing business networks to attackers who can bypass your primary…AI Scams Surge: FBI Warns of $900M in Losses Plus Critical Microsoft 365 & Fortinet Threatshttps://www.youtube.com/watch?v=4VwjS2qfie8 Phishing training response is critical as attackers now bypass password theft by tricking Microsoft 365 users into completing legitimate authentication processes that grant attackers direct…WordPress Backdoors Hit 1.2M Sites, Microsoft Faces Double Security Crisishttps://www.youtube.com/watch?v=ecyvA_xoucc WordPress plugin security faces a major threat after attackers compromised OptinMonster and injected hidden backdoors into 1.2 million websites. Small business owners using this plugin…Critical Splunk Flaw and the Rise of AI-Powered Phishinghttps://www.youtube.com/watch?v=AeP8ksSopPA Phishing training response has become urgent for small businesses as Google reports a Chinese cybercrime group is distributing AI-powered phishing-as-a-service tools designed to deceive employees…Ransomware Launderers Busted, $250 Malware Kits, and the $35M Cost of Bad Securityhttps://www.youtube.com/watch?v=viJJu4l0HjA Ransomware protection is no longer optional for small businesses. This week's news shows why: from affordable malware kits ($250/month) to supply chain attacks and a…Critical Router Hijacks, VPN Vulnerabilities, and Supply Chain Attacks Target Small Businesseshttps://www.youtube.com/watch?v=1O7F1Xa4AHs VPN vulnerabilities and router exploits are actively targeting small businesses right now, with half of ransomware attacks now starting from compromised VPN credentials. CISA has…Chrome Zero-Day Alert: Fifth 2026 Exploit + VPN Breach Warninghttps://www.youtube.com/watch?v=phjU_Vyq8qo Google has patched its fifth chrome zero day vulnerability of 2026 (CVE-2026-11645), a V8 JavaScript engine flaw that allows attackers to execute code through compromised…Microsoft's Record 206 Patches and Rising Ransomware Threatshttps://www.youtube.com/watch?v=Itxc2-ebLp4 Microsoft released 206 security patches in June 2026, including three zero-day vulnerabilities actively exploited by attackers targeting Exchange Server, BitLocker, and Remote Desktop Protocol. Small…Critical Vulnerabilities Exploited: CISA Issues 3-Day Patch Deadlinehttps://www.youtube.com/watch?v=z0wZi_72Uxg Critical vulnerabilities patch requirements from CISA now demand action within three days, as Check Point Security Gateway, Ivanti Sentry, and Oracle PeopleSoft flaws are being…Critical Chrome Update, VPN Zero-Day Exploits, and AI Chatbot Hijacks 20,000 Instagram Accountshttps://www.youtube.com/watch?v=kxolVruR_yE Chrome update security just got critical with Google's release of version 149.0.7827.53, which patches 429 vulnerabilities including 22 critical flaws that attackers are already targeting.…

All articles — 24 total