Jordyn Alger

Detroit

Managing Editor at Security Magazine

Featured in: Favicon

securitymagazine.com Favicon

catster.com Favicon

dogster.com Favicon

hepper.com

Articles

SAP Patch Day: Digging Into May 2025’s Updates

3 days ago | securitymagazine.com | Jordyn Alger

The second Tuesday of each month is SAP Patch Day, a day in which SAP releases software corrections. It is recommended that security leaders prioritize the implementation of these patches. On May 13, 2025, SAP Patch Day saw 16 new security notes and 2 updated security notes. For security leaders who want to take a deeper dive into this, a SAP Security Analyst examines the updates below.
PowerSchool Attackers Extorting Teachers, Security Leaders Respond

4 days ago | securitymagazine.com | Jordyn Alger

The PowerSchool breach continues to have impacts on staff and students, as the hackers have begun individually extorting schools and threatening to expose stolen student and teacher data — unless a ransom is paid. The initial breach affected the information of more than 60 million children and 9.5 million teachers. The organization paid a ransom in exchange for the stolen data being deleted; however, this deletion apparently did not occur.
Protecting Candidate Privacy During Background Checks

5 days ago | securitymagazine.com | Jordyn Alger

CybersecurityLogical Security Insider threats are a challenge that requires vigilant, proactive security measures. One of the first steps organizations can take to secure against insider threats is conduct thorough screening to each potential new hire. “Bad hires pose significant risks,” says J Stephen Kowski, Field Chief Technology Officer at SlashNext Email Security+. “Malicious actors or foreign agents could compromise sensitive data, systems, and intellectual property.
UK’s Legal Aid Agency Experiences Cyberattack

1 week ago | securitymagazine.com | Jordyn Alger

An executive agency of the United Kingdom’s Ministry of Justice, the Legal Aid Agency (LAA), experienced a cyberattack. The attack was first reported by Sky News. The LAA, which oversees billions in legal funding, employs approximately 1,250 workers and runs the nation’s Public Defender Service. Around 2,000 providers in England and Wales (including non-profits, barristers, and solicitor firms) provide services for civil and criminal legal aid under contracts with the LAA.
Only 11% of SMBs Are Utilizing AI-Powered Defenses

1 week ago | securitymagazine.com | Jordyn Alger

A report from CrowdStrike assesses the current state of cybersecurity among small and medium-sized businesses (SMBs), providing insights into how these organizations are operating in today’s shifting threat landscape. Notably, the report reveals a gap between cyber awareness and preparedness for these organizations. Among SMB leaders, 94% believe they are “somewhat” or “very” knowledgeable about cybersecurity threats; however, less than half offer regular employee training.
Marks & Spencer Hackers Tricked IT Workers Into Resetting Passwords

1 week ago | securitymagazine.com | Jordyn Alger

More information on the cyberattacks against Marks & Spencer (M&S) and Co-op has emerged, revealing that hackers utilized social engineering tactics to deceive IT workers into resetting passwords in order to gain access to the organizations’ systems.
CISA Warns of Cyberattacks Against Critical Oil and Gas Infrastructure

1 week ago | securitymagazine.com | Jordyn Alger

The Cybersecurity & Infrastructure Security Agency (CISA) — in partnership with the Federal Bureau of Investigation (FBI), the Environmental Protection Agency (EPA), and the Department of Energy (DOE) — has issued a warning about cyberattacks targeting the nation’s critical oil and natural gas infrastructure. According to the warning, these attacks are focusing on the operational technology (OT) and industrial control systems (ICS) of these critical infrastructure entities.
New Campaign Targets HR Departments With False Resumes

1 week ago | securitymagazine.com | Jordyn Alger

Arctic Wolf Labs has discovered a recent campaign driven by Venom Spider, a financially-motivated threat group. According to the findings, this campaign is using spear-phishing emails to target hiring managers in human resources (HR). The group is exploiting legitimate job platforms and messaging services to submit applications to real job postings, delivering fake, malicious resumes that drop More_eggs, a backdoor that can be deployed for a range of malicious actions.
REAL ID Enforcement in Effect - What Does This Mean for Biometric Data Security?

1 week ago | securitymagazine.com | Jordyn Alger

As of May 7, 2025, anyone over the age of 18 that plans to visit certain federal facilities or fly domestically will need to present a REAL ID or other acceptable form of identification. A REAL ID will have a a star and/or flag, or will feature the word “Enhanced.” As REAL IDs become the standard expectation, individuals may experience more biometric security checks. While this may heighten airport security, travelers could also be exposed to greater identity risks.
Hackers Claim To Steal Files From App Used by Trump Adviser

1 week ago | securitymagazine.com | Jordyn Alger

Hackers have claimed to steal messages from TeleMessage, a mobile chat application like Signal. While TeleMessage offers an encryption service similar to that of Signal, it also enables organizations and government agencies to back up chat copies for compliance purposes. Expressing concern over the nature of the breach, Thomas Richards, Infrastructure Security Practice Director at Black Duck, states, “This breach is alarming on many levels.