Microsoft Outlook Bug on Windows Devices Results in Repeated Email Crashes

Microsoft is currently investigating a significant bug affecting classic Outlook for Windows that prevents users from accessing their email accounts.

The issue manifests as a persistent error message stating “Cannot start Microsoft Outlook. Cannot open the Outlook window. The set of folders cannot be opened. The attempt to log on to Microsoft Exchange has failed.” According to Microsoft’s official documentation updated on September 26, 2025, this particular error can occur for various reasons, but recent support cases have primarily involved user mailboxes experiencing authentication failures.

Read Full Article

Maryland Transportation Systems Disrupted Following Cyberattack

Maryland’s transit network experienced widespread disruption this week after a sophisticated cyberattack targeted critical information systems, forcing the Maryland Transit Administration (MTA) and the Department of Information Technology (DoIT) to scramble containment efforts.

While most core services remain operational, significant impacts to scheduling and real-time information have left thousands of commuters seeking alternative arrangements. DoIT security monitors detected unauthorized access to portions of MTA’s back-end systems.

Read Full Article

Columbia University data breach impacts nearly 870,000 individuals

​An unknown threat actor has stolen the sensitive personal, financial, and health information of nearly 870,000 Columbia University current and former students and employees after breaching the university’s network in May.

The breach was discovered and reported to law enforcement authorities following an outage that affected some of its systems on June 24, following an investigation with support from external cybersecurity experts.

Read Full Article

Pandora confirms data breach amid ongoing Salesforce data theft attacks

Danish jewelry giant Pandora has disclosed a data breach after its customer information was stolen in the ongoing Salesforce data theft attacks.

Pandora is one of the largest jewellery brands in the world, with 2,700 locations and over 37,000 employees.

“We are writing to inform you that your contact information was accessed by an unauthorized party through a third-party platform we use,” reads a Pandora data breach notification sent to customers.

Read Full Article

Global Cyber Authorities Warn of Escalating Threat from Scattered Spider Group

In a joint cybersecurity advisory, authorities from the United States, Canada, the United Kingdom, and Australia have issued an urgent warning regarding the evolving tactics of the cybercriminal group known as Scattered Spider. This advisory comes from a coalition that includes the FBI, CISA, RCMP, NCSC-UK, ASD’s ACSC, CCCS, and the Australian Federal Police, reflecting the transnational scale and severity of the threat.

Scattered Spider—also tracked as UNC3944, Oktapus, Storm-0875, and Muddled Libra—has gained infamy for its brazen intrusions into commercial sectors, critical infrastructure, and IT service providers. The group’s attacks are marked by sophisticated social engineering, data theft, and ransomware extortion campaigns.

Read Full Article

Accelerate together: Zero trust

Are you ready to accelerate zero trust at your agency?

“You have to be able to scale across hundreds of teams, thousands of workloads,” says AWS Principal Technologist Sean Phuphanich, when discussing how to make a zero trust architecture the foundation for modernization. “That’s really where a lot of the stumbling blocks come into play because then you’re dealing with a lot of different teams, different environments, different tools.”

Read Full Publication

Johnson Controls starts notifying people affected by 2023 breach

Building automation giant Johnson Controls is notifying individuals whose data was stolen in a massive ransomware attack that impacted the company’s operations worldwide in September 2023.

Johnson Controls is a multinational conglomerate that develops and manufactures industrial control systems, security equipment, HVAC systems, and fire safety equipment for buildings. The company employs over 100,000 people through its corporate operations and subsidiaries across 150 countries, reporting sales of $27.4 billion in 2024.

Read Full Article

TSA seeks OMB approval to extend pipeline security and cyber incident reporting requirements

The U.S. Department of Homeland Security issued a 30-day notice that the Transportation Security Administration (TSA) has submitted an Information Collection Request (ICR) to the Office of Management and Budget (OMB) for review and approval. The request seeks to extend the current data collection related to pipeline security incidents, apart from the contact details of designated cybersecurity coordinators and their alternates.

Read Full Article