Date of Incident: August 2025 Overview: The Marquis data breach, reported in December 2025, affected the finance sector, impacting over 400,000 customers across 74 U.S. banks and credit unions. Personal information, including Social Security numbers and financial account details, was exposed. Despite no evidence of data misuse, Marquis paid a ransom to prevent further data… Read More »Marquis Data Breach
Date of Incident: August 2025 Overview: In August 2025, the University of Pennsylvania experienced a data breach targeting its Oracle E-Business Suite, attributed to the Clop ransomware group. Attackers exploited a zero-day vulnerability, compromising personal information of 1,488 individuals, with a potential for more. The breach utilized advanced tactics such as SQL injection and remote… Read More »University of Pennsylvania Oracle E-Business Suite Breach
1 Introduction Across industries, cybersecurity leaders are confronting a problem that is no longer defined by the strength of their controls, but by the speed at which their environments change. Cloud services now scale in minutes, SaaS ecosystems evolve without central visibility, and DevOps pipelines introduce configuration changes hundreds of times per day. As a… Read More »The Coming Shift in Enterprise Cyber Offense : Why Autonomous Penetration Testing Will Redefine Cyber Strategy
Date of Incident: November 18, 2025 Overview: The Harvard University Alumni Affairs and Development systems experienced a data breach on November 18, 2025, which exposed personal information of students, alumni, donors, staff, and faculty, including contact details and event records. While sensitive financial and security details remained secure, attackers gained unauthorized access using phishing techniques… Read More »Harvard University Alumni Affairs and Development Systems Data Breach
Date of Incident: September 20, 2025 Overview: In September 2025, Discord experienced a significant data breach involving their Zendesk support system, affecting 5.5 million users. Attackers exploited weaknesses in Zendesk’s access controls, leading to the theft of 1.6 terabytes of data. This included sensitive information such as government IDs, partial payment information, emails, and phone… Read More »Discord Zendesk Support System Data Breach