Japanese publishing giant Nikkei said that its Slack messaging platform had been compromised via an unauthorized external login which exposed the names, email addresses and chat histories of 17,368 individuals registered on Slack. An employee's personal computer was infected with a virus, leading to the leakage of Slack authentication credentials which hackers used to gain unauthorized access to employee accounts. …

The Swedish Authority for Privacy Protection (IMY) is investigating a cyberattack on IT systems supplier Miljödata that exposed data belonging to 1.5 million people. The ransomware gang, Datacarry, has claimed this attack. Here are details: Sweden is investigating one of the largest data breaches in its history: an attack on IT systems provider Miljödata compromised the data of around 1.5 million citizens.

The CISA's latest advisory (issued on Tuesday) underscores a persistent challenge across industrial and critical manufacturing sectors: software vulnerabilities that open the door to potential code execution — even when the risk appears to be local or limited in scope. Commenting on this is Joe Saunders, Founder & CEO, RunSafe Security.  On ICSA-25-308-01 - Fuji Electric Monitouch V-SFT-6 "While the Fuji Electric Monitouch V-SFT-6 vulnerabilities may not be remotely exploitable, the underlying pattern is familiar — buffer overflows in configuration tools or project files that can be weaponized as part of a supply chain or lateral movement strategy.

RunSafe Security today announced the addition of a new license compliance feature to its RunSafe Security Platform. The rollout of this critical new feature underscores RunSafe Security’s unwavering commitment to remaining the leader in software supply chain security for embedded systems, from generating build-time Software Bill of Materials (SBOMs) to identifying vulnerabilities and preventing exploitation of embedded software at runtime.

Hypori today announced the expansion of its platform with the launch of the Hypori Secure Workspace Ecosystem, a suite of next-generation products designed to give organizations greater flexibility, scalability, and control over secure mobile access. The new portfolio introduces Hypori Mobile and the Hypori Lyte product lines, reflecting the company’s continued investment in research and development (R&D) to meet evolving cybersecurity threats and mission demands.

I have been tracking a threat actor who has used first Questrade and then Wealthsimple along with TD customers. But last night, I found evidence that the threat actor behind this campaign has shifted tactics to go after National Bank customers as evidenced by this: Unlike the email that the sent masquerading as TD, this email is well done. But if you compare it to the other e-mails that have been used in this phishing campaign, it uses the same text claiming that you need to fill out a tax form with very similar text.

n a study published this morning, Comparitech found that ransomware attacks increased by 25 percent in October, rising to 684 in comparison to 546 in September. This is a significant increase in attacks and the third-highest monthly figure in 2025 so far. Manufacturers continue to see the most attacks, accounting for nearly 19 percent of attacks in October, but only rose 9% from September.

RapidFire AI today announced at Ray Summit 2025 RapidFire AI RAG, an open-source extension of its hyperparallel experimentation framework that brings dynamic control, real-time comparison, and automatic optimization to Retrieval-Augmented Generation (RAG) and context engineering workflows. Agentic RAG pipelines that combine data retrieval with LLM reasoning and generation are now at the heart of enterprise AI applications. Yet, most teams still explore them sequentially: testing one chunking strategy, one retrieval scheme, or one prompt variant at a time.

Palo Alto Networks has identified a new Chinese state-sponsored operation using a malware family called Airstalk to infiltrate business process outsourcing (BPO) providers as a conduit into their enterprise clients. The campaign leveraged PowerShell and .NET variants, abused AirWatch's MDM API for covert C2, and used stolen signing certificates and timestamp manipulation to evade detection. You can read Palo Alto's report here: …

The Active Archive Alliance today released a special report, “Preparing for Tomorrow’s Expanding Storage Challenge with Active Archive,” which showcases how active archives are solving data growth challenges and transforming data archives from passive repositories into active engines for innovation and discovery. It also highlights the need for new secondary storage tiers to address today’s data-driven applications. Active archives enable reliable, online and cost-effective access to data throughout its life.

Cybercriminals have claimed responsibility for the recent cyberattack on the University of Pennsylvania and the stealing of data on approximately 1.2 million students, alumni, and donors. Here are the details: Penn has reported last week’s mass cybersecurity breach to the Federal Bureau of Investigation following reports that the hack compromised data for millions of individuals.  The breach resulted in mass scam 

The Honourable Graham McGregor, Ontario’s Minister of Citizenship and Multiculturalism, will join Obsidi®, North America’s largest network and job platform for Black and allied tech professionals, at the 2025 BFUTR Global Tech Summit presented by TD. Themed “The New World of Work,” this year’s summit highlights Ontario’s leadership in fostering inclusive innovation and advancing AI talent development as key drivers of economic growth.

I have been tracking a threat actor who has used first Questrade and then Wealthsimple as part of a large scale phishing campaign that is being carried out via email. Well, my honeypot, which is a computer that I have set up to capture emails and be a target for hackers so that I can gather intel on what the bad guys are up to, have caught a new twist in this campaign.

Invi Grid announces that its Invi Grid Intelligent Cloud platform is now available on Google Cloud Marketplace. This move follows Invi Grid’s completion of the Google Cloud ISV Startup Springboard program, deepening its collaboration with Google Cloud. Built from the ground up for secure-by-design cloud, Invi Grid automates day-zero cloud and AI infrastructure provisioning, enabling developers and operations teams to innovate freely while governance, compliance, cost control, and security are handled automatically.

Bulwark is a new tool being marketed on the dark web as being capable of bypassing modern antivirus and EDR solutions, which constitute one of the main lines of defense for most organizations. In a new in-depth whitepaper, SOCRadar researchers have dived into this tool, including how it came to be, what its capabilities are — such as advanced obfuscation, real-time evasion — and more.

According to Ransomlooker, a tool developed by Cybernews that tracks ransomware attacks, October was a record month for notorious ransomware gang Qilin – 200 attacks were recorded during the month. Attacks by Qilin have been steadily growing throughout all of 2025, but October's spike is unprecedented.  Key insights: Qilin claimed 200 ransomware attacks in October, 2025, by far the most ever carried out by the group in one month.

Obsidi® will unveil its new executive white paper, Reprogramming the Enterprise: AI’s Reinvention of Technology, Talent and Leadership, at the BFUTR Executive Mainstage on November 6, 2025, in Toronto. Built on private, closed-door interviews with more than 50 C-suite leaders from across North America, the white paper reveals the real strategies, challenges, and leadership moves shaping market winners in the AI-first decade.

Toronto Metropolitan University's DMZ held its fifth annual Black Innovation Summit, where 10 Black-led tech startups from across Canada pitched their businesses for the chance to secure over $300,000 CAD in funding to accelerate their growth — a total that ultimately surpassed expectations, reaching $400,000 CAD awarded by the end of the event. DMZ's largest Black Innovation Summit to date, the event gathered over 400 guests from the Black entrepreneurial community.

Surfshark has launched the email scam checker to help protect against email phishing attacks. This on-demand solution aims to provide users with an additional security layer against sophisticated scams, considering the alarming statistic of 3.4 billion phishing emails sent daily and 1.5 million new phishing websites created every month. The email scam checker, a new feature of the Surfshark Chrome browser extension, offers a robust security layer against drastically increasing email phishing attacks.

After posting this story about an ongoing large scale Questrade phishing campaign, I checked my honeypot and discovered that the same threat actors behind this campaign are also going after Wealthsimple customers. That's evidenced by this phishing email: Now this email is extremely similar to the one that was being used in the Questrade campaign. And walking through the phishing scam, I found the website that was created was of similar quality as the one behind the Questrade campaign.

America's public institutions were once legendary examples for how governments ought to engage their citizens. While these services are critical to maintaining the Country's social fabric, the technologies that facilitate them are known for being slow, hard to use, and multiple generations behind our expectations. Kaizen is changing that for America's public agencies, one digital roadblock at a time. The company announced a $21 million funding to accelerate its mission to restore public faith in government services through beautifully designed, modern e-government solutions.

TELUS and Ernst & Young LLP (EY Canada) today announced that EY’s advanced agentic AI platform, FlexiGenAI, has been deployed on TELUS' Sovereign AI Factory – Canada's first operational, fully sovereign AI infrastructure facility. This implementation offers government agencies and Canadian businesses the ability to harness leading-edge agentic AI capabilities for critical workloads while storing sensitive data securely within national borders and under Canadian control.

Outpost24 today announced a new PCI DSS (Payment Card Industry Data Security Standard) Compliance solution designed to simplify how organizations meet and maintain payment card industry security requirements. As a PCI Security Standards Council Approved Scanning Vendor (ASV) for more than 20 years, Outpost24 combines certified PCI expertise, advanced automation, and flexible testing options in a single, easy-to-manage platform. The result is faster, more efficient compliance for organizations of any size — without the complexity or cost of managing multiple tools and providers.

Recently, cybersecurity researchers disclosed two sophisticated npm malware campaigns targeting developer credentials across Windows, macOS, and Linux systems. Socket researchers discovered 10 malicious packages with over 9,900 downloads, while Koi Security identified an ongoing campaign dubbed PhantomRaven involving 126 infected packages with 86,434 downloads. Both campaigns use advanced evasion techniques: PhantomRaven exploits Remote Dynamic Dependencies and AI-driven "slopsquatting," while the Socket-discovered malware uses four layers of obfuscation to harvest credentials from system keyrings, browsers, and authentication services.

This morning, the KnowBe4 Threat Lab published a new threat alert regarding an emerging phishing attack whereby cybercriminals are exploiting companies through their 'Contact Us' or 'Book Appointment' forms. This alert breaks down how exactly these bad actors are leveraging these prevalent forms, examples of what it looks like, and the overall impact of such an impact. The alert finds that since September 11th, 2025, this attack form has begun to emerge, and predicts that it will only continue to increase as hackers hijack legitimate communications to meet their ends. For full details, the threat findings can be found here: