Welcome to the Triad Situation Report, your trusted source for the latest cybersecurity and compliance news. In this edition, we bring you crucial updates on emerging cyber threats, including data breaches, phishing schemes, and sophisticated malware campaigns. Stay informed and take proactive steps to protect your business from evolving cyber risks.
6,500 Axis Servers Expose Remoting Protocol
Security researchers discovered critical flaws in Axis Communications’ Device Manager and Camera Station software that expose approximately 6,500 systems—4,000 of which are in the U.S.—to remote attacks. Vulnerabilities include remote code execution, authentication bypasses, and privilege escalation. Exploiting these could allow adversaries to hijack camera feeds or shut down surveillance systems entirely. Updates are available in recent patched versions.
Read more here
Misconfigurations Are Not Vulnerabilities: The Costly Confusion Behind Security Risks
This article clarifies the critical difference between misconfigurations and actual software vulnerabilities in SaaS security discussions. It argues that conflating the two can lead to inaccurate risk assessments and poor mitigation strategies, increasing organizational exposure despite the terminology overlap.
Read more here
Microsoft Warns of High-Severity Flaw in Hybrid Exchange Deployments
Microsoft has flagged a serious security flaw (CVE-2025-53786, CVSS score: 8.0) in hybrid Exchange environments. The issue could allow attackers with admin access to on-premises Exchange servers to escalate privileges into Exchange Online without detection—since activity may not be logged properly. Affected versions include Exchange Server 2016, 2019, and Subscription Edition. Microsoft recommends applying April 2025 hotfixes, resetting service principal credentials, and using the Hybrid app. CISA has also issued a mitigation advisory.
Read more here
Google Suffers Data Breach in Ongoing Salesforce Data Theft Attacks
Google confirmed that a Salesforce instance was compromised by the ShinyHunters hacker group (also known as UNC6040), resulting in unauthorized access to customer data. The breach, identified in June 2025, likely involved contact information and internal notes but did not include payment or ads data. Google hasn’t disclosed how many were affected. The incident is part of a broader wave of CRM data theft targeting enterprise cloud systems.
Read more here
Hacker Used a Voice Phishing Attack to Steal Cisco Customers’ Personal Information
A cybercriminal used a voice phishing (vishing) attack to deceive a Cisco employee into granting access to a cloud CRM system. The attacker obtained personal data—including names, email addresses, phone numbers, organization names, and user IDs—of Cisco.com users. No passwords or sensitive credentials were exposed. Cisco has notified affected users and strengthened its security controls.
Read more here
How Triad InfoSec Can Assist Your Business:
Navigating the complexities of cybersecurity compliance can be challenging. Triad InfoSec is dedicated to helping businesses prepare for CMMC audits, ensuring compliance, and optimizing cybersecurity strategies. Our services include:
- CMMC Audit Preparation: Guiding your organization through the necessary steps to achieve CMMC certification.
- MSP Partnerships: Collaborating with Managed Service Providers to ensure your business remains compliant while reducing cyber insurance premiums.
- Comprehensive Cybersecurity Solutions: Offering a range of services tailored to meet all your cybersecurity needs.
Partner with Triad InfoSec to secure your business’s future.
