Jon Rolfe
LightNews LightNews
banner
jonrolfe.com
Jon Rolfe
@jonrolfe.com
45 followers 42 following 61 posts
Information Security/Cyber Security #Cybersecurity #Infosec #Natsec #Hacking #Startups #Fintech #Blockchain #AI
Posts Replies Media Videos
Reposted by Jon Rolfe
syntenra.com
In today’s digital economy, cybersecurity leadership is no longer optional. But not every business needs, or can afford, a full-time Chief Information Security Officer (CISO). That’s where a Fractional CISO comes in.

#cybersecurity #fractionalCISO #syntenra #ciso

www.syntenra.com/insights/why...
Why a Fractional CISO Could Be Your Smartest Cybersecurity Investment — Syntenra Cybersecurity
A Fractional CISO offers strategic cybersecurity leadership without the cost of a full-time hire. Learn how Syntenra’s virtual CISO services can help your business manage risk, meet compliance, and bu...
www.syntenra.com
June 26, 2025 at 2:26 AM
Reposted by Jon Rolfe
syntenra.com
In a world of growing cyber threats and shrinking IT budgets, it’s no longer just big corporations in the firing line. So, how can you get ahead of the risk without overwhelming your team or your finances?

#cybersecurity #essentialeight #asd #syntenra

www.syntenra.com/insights/why...
Why the ASD Essential Eight Matters for Small Business Cybersecurity — Syntenra Cybersecurity
The ASD Essential Eight is a practical starting point for improving cybersecurity maturity. Learn how small businesses can use it to reduce risk, block common attacks, and build a strong foundation fo...
www.syntenra.com
June 26, 2025 at 2:24 AM
jonrolfe.com
#Microsoft and #CrowdStrike partner to link #hacking group names www.bleepingcomputer.com/news/securit... #cybersecurity
Microsoft and CrowdStrike partner to link hacking group names
Microsoft and CrowdStrike announced today that they've partnered to connect the aliases used for specific threat groups without actually using a single naming standard.
www.bleepingcomputer.com
June 3, 2025 at 6:31 AM
jonrolfe.com
Over 100,000 #WordPress Sites at Risk from Critical CVSS 10.0 #Vulnerability in Wishlist Plugin thehackernews.com/2025/05/over... #cybersecurity
Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin
CVE-2025-47577 flaw in TI WooCommerce Wishlist lets unauthenticated attackers upload malicious files—no patch yet, 100K+ sites at risk.
thehackernews.com
May 29, 2025 at 9:01 AM
jonrolfe.com
The Future of #Cybersecurity - Trends Shaping the Industry cybersecuritynews.com/future-of-cy...
The Future of Cybersecurity - Trends Shaping the Industry
Future of Cybersecurity - As digital transformation accelerates across industries, the cybersecurity landscape is changing.
cybersecuritynews.com
May 29, 2025 at 5:33 AM
jonrolfe.com
More than 40% of #Fintech #Breaches Linked to Third-Party Vendors | Security Magazine www.securitymagazine.com/articles/101...
More than 40% of Fintech Breaches Linked to Third-Party Vendors
More than 40% of breaches in fintech organizations can be linked to third-party vendors.
www.securitymagazine.com
May 29, 2025 at 4:32 AM
jonrolfe.com
#APT41 #malware abuses Google Calendar for stealthy C2 communication www.bleepingcomputer.com/news/securit...
APT41 malware abuses Google Calendar for stealthy C2 communication
The Chinese APT41 hacking group uses a new malware named 'ToughProgress' that abuses Google Calendar for command-and-control (C2) operations, hiding malicious activity behind a trusted cloud service.
www.bleepingcomputer.com
May 29, 2025 at 3:31 AM
jonrolfe.com
#Botnet hacks 9,000+ #ASUS routers to add persistent SSH #backdoor www.bleepingcomputer.com/news/securit...
Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor
Over 9,000 ASUS routers are compromised by a novel botnet dubbed "AyySSHush" that was also observed targeting SOHO routers from Cisco, D-Link, and Linksys.
www.bleepingcomputer.com
May 29, 2025 at 2:24 AM
jonrolfe.com
Researchers claim #ChatGPT o3 bypassed shutdown in controlled test www.bleepingcomputer.com/news/artific... #ai
Researchers claim ChatGPT o3 bypassed shutdown in controlled test
A new report claims that OpenAI's o3 model altered a shutdown script to avoid being turned off, even when explicitly instructed to allow shutdown
www.bleepingcomputer.com
May 26, 2025 at 10:06 PM
jonrolfe.com
M&S warns of £300M dent in profits from #cyberattack • The Register www.theregister.com/2025/05/21/m...
M&S warns of £300M dent in profits from cyberattack
: Downtime stings retailer, with technical recovery costs coming at a later date
www.theregister.com
May 26, 2025 at 3:12 AM
jonrolfe.com
UK Legal Aid Agency attack involved 'significant' data theft • The Register www.theregister.com/2025/05/19/l...
#databreach #cybersecurity #cybercrime
Legal Aid Agency attack involved 'significant' data theft
: Cybercriminals lifted info including addresses, ID numbers, and financial records from agency systems
www.theregister.com
May 20, 2025 at 2:17 AM
jonrolfe.com
Fake #KeePass password manager leads to ESXi #ransomware attack www.bleepingcomputer.com/news/securit...
Fake KeePass password manager leads to ESXi ransomware attack
Threat actors have been distributing trojanized versions of the KeePass password manager for at least eight months to install Cobalt Strike beacons, steal credentials, and ultimately, deploy…
www.bleepingcomputer.com
May 19, 2025 at 11:22 PM
jonrolfe.com
#Hackers scam #Coinbase users and ransom data for $20M • The Register www.theregister.com/2025/05/15/c...
#crypto #cybersecurity #ransomware
Hackers scam Coinbase users and ransom data for $20M
: Expert tells us: 'It is the most unique breach disclosure I've ever seen'
www.theregister.com
May 16, 2025 at 5:52 AM
jonrolfe.com
#DIOR #CyberAttack - Customers Personal & Financial Data Exposed cybersecuritynews.com/customers-pe...
#cybersecurity
DIOR Cyber Attack - Customers Personal & Financial Data Exposed
French luxury fashion house Dior has confirmed a significant data breach, revealing that an unauthorized external party accessed.
cybersecuritynews.com
May 16, 2025 at 4:50 AM
jonrolfe.com
Cybercrims attacking UK retailers turn to US stores • The Register www.theregister.com/2025/05/15/c...
#ransomware #cybersecurity
Cybercrims attacking UK retailers turn to US stores
Interview: DragonForce-riding ransomware ring also has 'shiny object syndrome' so will likely move on to another sector soon
www.theregister.com
May 16, 2025 at 3:43 AM
jonrolfe.com
Identity Theft Surges as Criminals Deploy Advanced Tactics to Steal Personal Data cybersecuritynews.com/identity-the...
#cybersecurity #identitytheft
Identity Theft Surges as Criminals Deploy Advanced Tactics to Steal Personal Data
Identity theft has reached unprecedented levels in 2024, fueled by increasingly sophisticated criminal tactics that exploit technological.
cybersecuritynews.com
May 15, 2025 at 4:16 AM
jonrolfe.com
Marks & Spencer Says Data Stolen in #Ransomware Attack - SecurityWeek www.securityweek.com/marks-spence...
Marks & Spencer Says Data Stolen in Ransomware Attack
Marks & Spencer has confirmed that personal information was stolen in a recent cyberattack claimed by a ransomware group.
www.securityweek.com
May 13, 2025 at 12:30 PM
jonrolfe.com
End-of-life router botnet shut, 4 'foreign hackers' charged • The Register www.theregister.com/2025/05/10/r...
End-of-life router botnet shut, 4 'foreign hackers' charged
: The FBI also issued a list of end-of-life routers you need to replace
www.theregister.com
May 11, 2025 at 3:20 AM
jonrolfe.com
#FBI: End-of-life routers hacked for #cybercrime proxy networks www.bleepingcomputer.com/news/securit...
FBI: End-of-life routers hacked for cybercrime proxy networks
The FBI warns that threat actors are deploying malware on end-of-life (EoL) routers to convert them into proxies sold on the 5Socks and Anyproxy networks.
www.bleepingcomputer.com
May 10, 2025 at 1:27 AM
jonrolfe.com
Email-Based Attacks Top Cyber Insurance Claims www.darkreading.com/cyber-risk/e... #cybersecurity
Email-Based Attacks Top Cyber Insurance Claims
Cyber-insurance carrier Coalition said business email compromise and funds transfer fraud accounted for 60% of claims in 2024.
www.darkreading.com
May 9, 2025 at 8:54 AM
jonrolfe.com
RSA Conference 2025 Highlights, Insights And Companies To Watch - Forbes apple.news/AeFXsk41ARA2...
RSA Conference 2025 Highlights, Insights And Companies To Watch — Forbes
The annual RSA Conference has become a showcase for the application of modern AI within cybersecurity — with agentic AI as the star of this year's show.
apple.news
May 7, 2025 at 11:20 PM
jonrolfe.com
Hackers Using Fake Chrome Error Pages to Attack Windows Users With Malicious Scripts cybersecuritynews.com/hackers-usin...
#cybersecurity #ransomware
Hackers Using Fake Chrome Error Pages to Attack Windows Users With Malicious Scripts
"ClickFix," a new social engineering threat, tricks Windows users into running malicious PowerShell via fake browser error pages.
cybersecuritynews.com
May 7, 2025 at 7:28 AM
jonrolfe.com
More #cyberbreaches in the UK as Legal Aid Agency investigates #cybersecurity incident www.bleepingcomputer.com/news/securit...
UK Legal Aid Agency investigates cybersecurity incident
The Legal Aid Agency (LAA), an executive agency of the UK's Ministry of Justice that oversees billions in legal funding, warned law firms of a security incident and said the attackers might have…
www.bleepingcomputer.com
May 7, 2025 at 7:25 AM
jonrolfe.com
Incidents impacting UK retailers – recommendations from the #NCSC - NCSC.GOV.UK www.ncsc.gov.uk/blog-post/in...
#cybersecurity #cyberbreach
Incidents impacting retailers – recommendations from the NCSC
A joint blog post by the NCSC’s National Resilience Director, Jonathon Ellison, and Chief Technology Officer, Ollie Whitehouse.
www.ncsc.gov.uk
May 6, 2025 at 12:26 PM
jonrolfe.com
#Harrods#Cyberattack: #Cybersecurity Leaders Weigh In | Security Magazine www.securitymagazine.com/articles/101...
Harrods’ Cyberattack: Cybersecurity Leaders Weigh In
Harrods experienced a cyberattack, and cybersecurity leaders are sharing their insights.
www.securitymagazine.com
May 6, 2025 at 6:58 AM