ThreatMate Raises $3.2 Million for Attack Surface Management Platform
ThreatMate, a cybersecurity startup focused on attack surface management, raised $3.2 million in seed funding. The round, led by Top Down Ventures' Founders Fund I, with support from Blu Ventures and Runtime Ventures, will fuel the growth of its AI-powered platform. Designed for managed service providers (MSPs), the platform helps small to medium-sized businesses monitor and secure their digital environments with tools for vulnerability management, continuous monitoring, automated penetration testing, and dark web monitoring. ThreatMate’s solution is positioned as a lower-cost, lower-complexity alternative to traditional enterprise-grade security. The funding will be used to accelerate product development and expand industry partnerships. Full article
Cybersecurity Salaries, NanoLock Collapse, NSO Transparency Report
A roundup of notable cybersecurity news includes charges against two Romanian men involved in a card skimming operation. Cloudflare and Adobe have launched a tool to trace image manipulations. NMFTA updated telematics security for fleet systems, while North Korea’s FlexibleFerret macOS malware evolves. CyberArk claims it bypassed OpenAI’s o3 model using FuzzyAI. Canadian Andean Medjedovic faces charges over a $65 million cryptocurrency theft. Sophos warns of phishing using SVG files, and NSO Group’s 2024 transparency report shows continued human rights compliance efforts. Additionally, salaries in cybersecurity are on the rise, with directors earning over $250K. Meanwhile, NanoLock Security, a firm focused on IoT security, collapsed due to financial difficulties. Full article
Information of 883,000 Stolen in Crippling Attack on Hospital Sisters Health System
Hospital Sisters Health System (HSHS) experienced a severe cyberattack in August 2023, compromising personal information of 883,000 individuals. The breach, which took down internal systems and affected multiple hospitals, involved unauthorized access to sensitive data like Social Security numbers, medical records, and treatment details. HSHS began notifying affected individuals in October 2023, but fraud targeting patients continued throughout 2024. The health system is providing free identity protection and credit monitoring services to those impacted. Full article
UK Engineering Giant IMI Hit by Cyberattack
IMI, a UK-based engineering company, disclosed a cyberattack involving unauthorized access to its systems. The firm has engaged cybersecurity experts to investigate the incident and mitigate damage, though the type of attack remains unspecified. This disclosure follows a similar breach at another UK engineering firm, Smiths Group, raising concerns over cyberattacks targeting industrial giants. No ransomware claims have been made, and details on the nature of the attack remain scarce. Full article
430,000 Impacted by Data Breaches at New York, Pennsylvania Healthcare Organizations
Healthcare organizations Allegheny Health Network (AHN) and University Diagnostic Medical Imaging (UDMI) reported data breaches affecting over 430,000 individuals. AHN’s breach, linked to a third-party contractor, compromised patient details like Social Security numbers and medical records. UDMI’s breach resulted in similar exposures. Both organizations are offering identity protection services to those affected. Full article
Ransomware Payments Dropped to $813 Million in 2024
Ransomware payments significantly decreased in 2024, totaling $813.55 million, a 35% drop from 2023. This decline follows law enforcement action against major ransomware groups like LockBit and BlackCat, alongside the rise of smaller actors targeting mid-market businesses. Despite 50 new ransomware leak sites emerging, fewer victims are paying ransoms due to better recovery capabilities. Full article
Trimble Cityworks Customers Warned of Zero-Day Exploitation
Trimble has alerted its Cityworks customers to a zero-day vulnerability (CVE-2025-0994) that has been exploited to deliver Cobalt Strike and other malware. The flaw, which allows remote code execution via Microsoft IIS, affects GIS-centric systems used by public agencies. Trimble has issued patches and urged customers to update their systems to prevent further exploitation. Full article
House Lawmakers Push to Ban AI App DeepSeek From US Government Devices
U.S. lawmakers introduced the "No DeepSeek on Government Devices Act," aimed at banning the Chinese AI app DeepSeek from federal devices. Citing national security concerns over potential surveillance and data collection by the Chinese government, the bill seeks to prevent the app’s access to sensitive government data. This follows the growing competition in AI between the U.S. and China. Full article