05 Jan 2026
By Mary

InfoSec News Nuggets 01/05/2026

Sedgwick Discloses Data Breach After TridentLocker Ransomware Attack Global claims management provider Sedgwick confirmed a cybersecurity incident affecting its federal contractor subsidiary, Sedgwick Government Solutions, after TridentLocker ransomware group claimed to have stolen 3.4GB of data on New Year's Eve. The company, which handles claims and risk management for U.S. federal agencies including DHS, ICE, CBP, USCIS, DOL, and CISA, immediately activated incident response protocols with external cybersecurity experts. TridentLocker is a ransomware-as-a-service operation that…
Read More
22 Dec 2025
By Mary

InfoSec News Nuggets 12/22/2025

Cisco email security products actively targeted in zero‑day campaign Security researchers are reporting active exploitation of a critical, unpatched zero‑day vulnerability (CVE‑2025‑20393) in Cisco AsyncOS‑based email security appliances by a China‑linked advanced persistent threat group. The campaign allows remote attackers to gain root‑level access and deploy persistent backdoors on vulnerable devices, prompting urgent defensive actions and interim mitigations while a patch remains unavailable.   UK NHS supplier DXS International confirms cyber attack DXS International, a…
Read More