Jedai tricks, human risks.

A Chroma database exposed personal information of Canva creators, and a researcher was able to brute-force phone numbers in minutes. Five zero-day vulnerabilities were found in Salesforce Industry Cloud, and a group called "Librarian Ghouls" is targeting Russian organizations with malware. SAP released multiple security patches, including a critical fix for a NetWeaver bug, and Sensata Technologies confirmed the theft of sensitive personal data during a ransomware attack. SentinelOne warned of targeted cyber-espionage attempts by China-linked threat actors, and Skitnet malware is being adopted by ransomware gangs. The UK's NHS issued an urgent appeal for blood donors due to low stocks following a cyberattack. The FBI's Cyber Division welcomed a new leader, Brett Leatherman. On the Threat Vector segment, host discussed the importance of protecting digital privacy with Arjun Bhatnagar, CEO of Cloaked. The discussion covered building better cybersecurity habits and understanding risks in everyday apps. The CyberWire is a production of N2K Networks, and it provides strategic workforce intelligence.