In this episode of ‘Cybersecurity Today,’ host David Chipley discusses several major security incidents and threats. Hamilton, Ontario faces a $5 million insurance denial following a ransomware attack due to incomplete deployment of Multi-Factor Authentication (MFA). The episode also highlights a severe vulnerability, CVE-2025-54135, in the AI-powered Code Editor ‘Cursor’, which could allow prompt injection attacks. Further topics include a new ransomware attack exploiting Microsoft SharePoint vulnerabilities investigated by Palo Alto Networks, and a campaign leveraging fake OAuth apps to compromise Microsoft 365 accounts. The episode underscores the importance of robust security measures, emphasizing MFA, OAuth hygiene, and prompt patching.
00:00 Introduction and Headlines
00:38 Hamilton’s Ransomware Attack and Insurance Denial
02:52 AI-Powered Code Editor Vulnerability
04:57 Palo Alto Networks Investigates SharePoint Exploitation
06:51 Fake OAuth Apps and Microsoft 365 Breaches
08:48 Conclusion and Upcoming Events
Read the original article: