Edwin Kwan
  • Home
  • Speaker
  • Podcasts
    • Cyber Bites
    • AppSec Unlocked
    • It’s 5:05 Podcast
  • Journal
  • Publications
Select Page

Dozens of Malicious NPM Packages Discovered Harvesting System and Network Intelligence

May 26, 2025 | Podcast

https://socket.dev/blog/60-malicious-npm-packages-leak-network-and-host-data A significant supply chain attack targeting JavaScript developers has been uncovered on the NPM package repository, with dozens of malicious packages designed to collect sensitive host and...

Printer Manufacturer ProColored Unwittingly Distributed Malware-Infected Drivers for Months

May 23, 2025 | Podcast

https://www.bleepingcomputer.com/news/security/printer-maker-procolored-offered-malware-laced-drivers-for-months In a significant security incident affecting potentially thousands of customers, printer manufacturer ProColored has been distributing malware-infected...

Deceptive KeePass Clone Delivers ESXi Ransomware in Sophisticated Supply Chain Attack

May 22, 2025 | Podcast

https://labs.withsecure.com/content/dam/labs/docs/W_Intel_Research_KeePass_Trojanised_Malware_Campaign.pdf A dangerous supply chain attack targeting organisations through a counterfeit version of the popular KeePass password manager has been discovered, ultimately...

Australian Human Rights Commission Exposes Sensitive Documents Through Search Engine Indexing Blunder

May 21, 2025 | Podcast

https://humanrights.gov.au/our-work/commission-general/data-breach-notification In a significant data security incident, the Australian Human Rights Commission (AHRC) has inadvertently exposed sensitive internal documents to search engines, making confidential...

Verizon DBIR Reveals Alarming Surge in Third-Party Breaches and Vulnerability Exploitation

May 20, 2025 | Podcast

https://www.verizon.com/business/resources/reports/dbir Verizon’s 2025 Data Breach Investigations Report (DBIR) paints a concerning picture of today’s cybersecurity landscape, with third-party involvement in breaches doubling to 30% and vulnerability...

Australian Healthcare Sector Leads in Data Breach Notifications as Human Error Remains a Major Threat

May 19, 2025 | Podcast

https://www.oaic.gov.au/privacy/notifiable-data-breaches/notifiable-data-breaches-publications/notifiable-data-breaches-report-july-to-december-2024 The Australian healthcare sector has emerged as the leading source of notifiable data breaches in the second half of...
« Older Entries
Next Entries »

Latest Posts

  • Phishing Campaign Impersonates Major Global Brands to Steal Gmail Credentials
  • China Warns Developers to Uninstall Claude Code Over ‘Backdoor’ Data Collection Fears
  • OpenMandriva Linux Hit by Internal Sabotage Attempt from Former Contributor
  • ACSC Issues Second Warning in Two Months Over Unpatched CMS Vulnerabilities Being Actively Exploited
  • Malicious Websites Are Embedding Hidden Instructions to Hijack AI Agents Through Indirect Prompt Injection

Speaking Events

  • Guest Lecture at UNSW Business School for INFS5907
  • Speaker at Bugcrowd Luncheon
  • Guest Lecture at UNSW
  • Panelist at SecTalks Legends – 2025
  • Keynote Speaker at Sydney AI Security Summit 2025

More Content

  • Articles (26)
  • Podcast (824)
  • Posts (26)
  • Publications (1)
  • Speaking (50)
  • X
  • RSS
Edwin Kwan