Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Look at any collection of top 10 organizational security concerns from recent years, and “third-party breaches” are consistently high on the list. These attacks have caused financial and reputational damage to every sector, from banks to healthcare systems to retail to governments. And the problem is growing. Recent statistics highlight just how severe the issue has become.

The popular doughnut and coffeehouse chain Krispy Kreme was established in 1937 in Winston-Salem, North Carolina. It has grown over the years and currently operates 1,500 shops and 17,900 points of access in 40 nations. Krispy Kreme has a workforce of more than 22,800 workers worldwide. It recently adopted a digital transformation initiative, which included online ordering modes for better operational efficiency.

Cybersecurity researchers uncovered what is being called the "mother of all breaches," a colossal dataset containing 16 billion login credentials, including user passwords for Google, Facebook, and Apple. To put that figure in context, the cache represents twice the current human population of the Earth. This event was not the result of a single breach, but likely a compilation of data stolen from multiple breaches over many years.

Another breach? Not quite. You’ve probably seen the headlines: “16 billion passwords leaked in the largest breach ever.” It sounds like a cybersecurity doomsday event. Media outlets ran with it. Even seasoned security leaders reposted it in alarm. Here’s the truth: this isn’t a fresh breach. No, Google, Meta, and Apple weren’t hacked. What actually happened is that a massive trove of previously stolen credentials was released.

In the current digital landscape, email security has become ever more important as cybercriminals frequently exploit vulnerabilities in email architectures to launch phishing attacks, steal sensitive information, and spoof legitimate domains. Since 2012, DMARC has become a cornerstone of modern email security, reducing the cyberattacks that occur via phishing and spoofing attacks in the process.

Ocuco is a Dublin-based organization that specializes in optical software solutions. Established in 1993 by Leo Mac Canna, the company initially developed software for independent optometrists. The organization has since expanded through various strategic acquisitions, including the 2008 Innovations acquisition. This American lab management system set Ocuco as a significant player in the optical lab software field. The company has a large market base covering 7500 locations in 77 nations.

The Texas Department of Transportation (TxDOT) is responsible for designing, planning, operating, building, and maintaining the state’s transportation system to deliver a reliable and safe transportation system. It strives to ensure the ease of movement of people and goods through an integrated transportation system, which includes roads, airports, waterways, rail lines, pipelines, and inland and water ports.

An increasing number of people are reporting receiving text messages about unpaid tolls. Although some of these messages are legitimate, fraudsters are now using this tactic to trick unsuspecting individuals into sharing personal information or making fraudulent payments. Typically, these scam messages create a sense of urgency, pressuring recipients to act quickly before verifying the claim.

Cloud is the new battleground, and more adversaries are joining the fight: New and unattributed cloud intrusions were up 26% in 2024, according to the CrowdStrike 2025 Global Threat Report. As adversaries accelerate cloud attacks, CrowdStrike delivers full-cycle agentic AI — from detection triage to threat response — giving defenders the edge to act at machine speed before adversaries can break through.