Main Menu
Cyber Security
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns
React Native’s Metro Server Vulnerability: A Growing Cyber Threat
Reconnaissance Attack On Citrix NetScaler Targets Login Panels with Proxy Networks
State-Sponsored Cyber Espionage: Notepad++ Update Traffic Hijacked
Cybercriminals Exploit Weak Security in 1,400 MongoDB Servers
Malicious VS Code Extensions Spread GlassWorm Loader
Surge in Fake Investment Platforms Exploiting Social Media
Fast Food Giant McDonald Calls for Creative Passwords to Enhance Security
Identity Challenges in User Data Storage and Security Maintenance
Microsoft’s Strategy to Eliminate NTLM in Favor of Kerberos
ClawHub’s Third-Party Skills Security Risks: User Data at Stake
Firefox Introduces Options to Control AI Features
Microsoft Acknowledges Shutdown Issue in Windows 10 and 11 Systems
Increasing Threats from Automated Data Extortion Targeting MongoDB
Apple Enhances Location Privacy With New Feature for iPhone and iPad
Zero-Day Vulnerabilities in Ivanti EPMM Exploited
Instagram’s Privacy Controls Data Exposure: Review of Recent Findings
Former Google Engineer Found Guilty of Stealing AI Data for Chinese Firms
eScan Antivirus Compromised: Supply Chain Security Breach Uncovered
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Android Malware Incident: Hugging Face Repository Misuse
Chrome Extensions Prove Malicious with Data Hijacking Tricks
White House Revokes Software Security Rules But Keeps Key Resources
Microsoft Sets Retirement for NTLM Protocol in Windows for Enhanced Security
Startup Aisy Secures $2.3 Million Seed Fund to Enhance Vulnerability Management
Surge in Illegal Cryptocurrency Flows Reaches $158 Billion by 2025
Legal Repercussions Mount for Cognizant After TriZetto Incident
Global Crackdown Disrupts Illegal IPTV Services and Sends Strong Message
More Than 175,000 Exposed Hosts Pose Risks for Ollama LLM Misuse
Wells Fargo Announces Data Breach Cause by Unauthorized Access by Former Employee
News
Wells Fargo Announces Data Breach Cause by Unauthorized Access by Former Employee
Gabby Lee October 2, 2024
Wells Fargo has reported a data breach due to unauthorized access by a former employee. Sensitive customer information was compromised, prompting immediate notifications.
New York Sports Club Data Breach: 19,836 Individuals Affected
News
New York Sports Club Data Breach: 19,836 Individuals Affected
Elizbeth Grant October 2, 2024
The New York Sports Club data breach has affected 19,836 individuals, exposing sensitive employee information such as Social Security numbers and passport numbers.
Community Clinic of Maui Data Breach: LockBit Ransomware Attack Exposes Patient Data
News
Community Clinic of Maui Data Breach: LockBit Ransomware Attack Exposes Patient Data
Mitchell Langley October 2, 2024
The Community Clinic of Maui suffered a significant data breach after a LockBit ransomware attack in May, exposing sensitive patient information. The clinic is working ...
FCC Fines T-Mobile US $31.4 Million for Data Breaches
News
FCC Fines T-Mobile US $31.4 Million for Data Breaches
Mitchell Langley October 2, 2024
The FCC fined T-Mobile US $31.4 million for multiple data breaches, impacting millions of customers and mandating significant cybersecurity improvements.
Top 5 Dangerous Cyberattack Techniques in 2024
Blog
Top 5 Dangerous Cyberattack Techniques in 2024
Mitchell Langley October 2, 2024
SANS Institute reveals the top 5 dangerous cyberattack techniques for 2024. Learn how to protect your enterprise from these evolving threats.
AFP Cyberattack: Security Breach at French News Agency Exposes Critical Infrastructure Vulnerabilities
Cybersecurity
AFP Cyberattack: Security Breach at French News Agency Exposes Critical Infrastructure Vulnerabilities
Andrew Doyle September 30, 2024
The AFP cyberattack disrupted the French news agency's systems, highlighting the growing threat to media outlets and critical infrastructure. The perpetrators and motives remain unknown.
Critical Flaw in NVIDIA Container Toolkit Allows Full Host Takeover
News
Critical Flaw in NVIDIA Container Toolkit Allows Full Host Takeover
Mitchell Langley September 30, 2024
A critical flaw (CVE-2024-0132) in NVIDIA Container Toolkit allows container escape, granting full host access and enabling attackers to execute commands and exfiltrate data.
UMC Hospital Lubbock Still Crippled by Devastating Ransomware Attack
News
UMC Hospital Lubbock Still Crippled by Devastating Ransomware Attack
Gabby Lee September 30, 2024
UMC hospital in Lubbock faces a crippling ransomware attack, diverting ambulances and impacting patient care. The emergency room remains open, but the IT outage persists. ...
What is DNS SpoofingDNS Cache Poisoning and How Can It Compromise Your Network
Blog
What is DNS Spoofing/DNS Cache Poisoning and How Can It Compromise Your Network?
Mitchell Langley September 30, 2024
DNS spoofing, also known as DNS cache poisoning, is a malicious technique that exploits vulnerabilities in the DNS system to redirect users to fraudulent websites, ...
This Week In Cybersecurity: 23rd September to 27th September
Cybersecurity
This Week In Cybersecurity: 23rd September to 27th September
Gabby Lee September 27, 2024
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack Harvey Nichols has confirmed a data breach affecting ...
Meta Fined €91 Million: DPC Concludes Inquiry into Data Breach
News
Meta Fined €91 Million: DPC Concludes Inquiry into Data Breach
Mitchell Langley September 27, 2024
Meta Platforms Ireland Limited has been fined €91 million by the Data Protection Commission for failing to protect user passwords adequately, highlighting the importance of ...
MC2 Data Leak: Over 100 Million Americans Exposed in Massive Data Breach
News
MC2 Data Leak: Over 100 Million Americans Exposed in Massive Data Breach
Mitchell Langley September 27, 2024
The MC2 Data breach has exposed the sensitive personal information of over 100 million Americans, representing nearly a third of the US population.
FBI and Homeland Security Investigate Critical Water Facility Cyberattack in Kansas
News
FBI and Homeland Security Investigate Critical Water Facility Cyberattack in Kansas
Mitchell Langley September 27, 2024
FBI and Homeland Security investigate a Kansas water facility cyberattack, forcing manual operations but ensuring uninterrupted service. The incident highlights critical infrastructure vulnerabilities.
AutoCanada Ransomware Attack: Employee Data Compromised
News
AutoCanada Ransomware Attack: Employee Data Compromised
Mitchell Langley September 25, 2024
AutoCanada's August ransomware attack, claimed by Hunters International, may have exposed employee data including payroll, addresses, and social security numbers.
US Capitol Dark Web Cyber Attack: Thousands of Staffers' Data Leaked
News
US Capitol Dark Web Cyber Attack: Thousands of Staffers’ Data Leaked
Mitchell Langley September 25, 2024
A massive Dark Web Cyber Attack on the US Capitol has exposed personal information of over 3,000 congressional staffers.
MoneyGram Cyberattack: Outage Enters Day Three, Ransomware Suspected
News
MoneyGram Cyberattack: Outage Enters Day Three, Ransomware Suspected
Mitchell Langley September 25, 2024
MoneyGram, a leading global money transfer company, is facing a major outage that has disrupted its systems and payment services for three days. The company ...
Dell Data Breached Again! Hackers Claim Second Attack Within a Week, Exposing 3.5GB of Data
News
Dell Data Breached Again! Hackers Claim Second Attack Within a Week, Exposing 3.5GB of Data
Gabby Lee September 25, 2024
Hackers claim a second Dell data breach within a week, accessing 3.5GB of company data, including internal infrastructure information and user credentials.
The Chaser Cyberattack: Hong Kong Diaspora Media in Britain Reports 'Government-Backed' Attacks
News
The Chaser Cyberattack: Hong Kong Diaspora Media in Britain Reports ‘Government-Backed’ Attacks
Gabby Lee September 25, 2024
A Hong Kong diaspora news website in Britain, The Chaser, has reported a "government-backed" cyberattack targeting its company email, raising concerns about the growing pressure ...
Kansas Water Facility Cyberattack: Arkansas City Water Treatment Plant Targeted
News
Kansas Water Facility Cyberattack: Arkansas City Water Treatment Plant Targeted
Gabby Lee September 25, 2024
Hackers targeted the water treatment plant in Arkansas City, Kansas, prompting a federal investigation. The city assured residents that the water supply is safe, and ...
Dell Investigates Data Breach Claims After Hacker Leaks Employee Info
News
Dell Investigates Data Breach Claims After Hacker Leaks Employee Info
Mitchell Langley September 25, 2024
Dell Data Breach: Hacker Leaks Employee Information, Company Investigates
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
CVE Vulnerability Alerts
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
Andrew Doyle February 4, 2026
UK Data Protection Authority Probes X's Grok AI for Generating Inappropriate Images
Cybersecurity
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
Mitchell Langley February 4, 2026
Everest Extortion Group and Iron Mountain Data Incident Key Insights
News
Everest Extortion Group and Iron Mountain Data Incident: Key Insights
Mitchell Langley February 4, 2026
Osiris Ransomware Disables Security Tools in Novel Attack
News
Osiris Ransomware Disables Security Tools in Novel Attack
Andrew Doyle January 28, 2026

TOP CYBERSECURITY HEADLINES

RapidFort Secures $42 Million to Enhance Software Security Automation
Cybersecurity
RapidFort Secures $42 Million to Enhance Software Security Automation
UK Data Protection Authority Probes X's Grok AI for Generating Inappropriate Images
Cybersecurity
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
The DockerDash Vulnerability Understanding Its Impact on Docker Desktop and CLI
Application Security
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA's Vulnerability Notice Revisions Spark Concerns
Cybersecurity
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns

This Week’s Security Spotlight

Revelations from Epstein Files Allegations of a Personal Hacker
Cybersecurity
Revelations from Epstein Files: Allegations of a “Personal Hacker”
Andrew Doyle February 4, 2026
Nike Investigates Breach as Hackers Threaten Data Disclosure
Cybersecurity
Nike Investigates Breach as Hackers Threaten Data Disclosure
Andrew Doyle January 28, 2026
Microsoft Investigates Outlook Crashing on iPad Devices due to Coding Error
Application Security
Microsoft Investigates Outlook Crashing on iPad Devices due to Coding Error
Andrew Doyle January 28, 2026
TP-Link's Vulnerability Critical Patch for VIGI Cameras
Network Security
TP-Link’s Vulnerability: Critical Patch for VIGI Cameras
Gabby Lee January 20, 2026
More In News
Trending
Multi-Stage Phishing Campaign Targets Russia With Ransomware and Amnesia RAT
ShinyHunters Claims Responsibility for Recent Okta Phishing Attack
LastPass Users Targeted by Deceptive Phishing Campaign
Cybercriminals Exploit Social Media Messages for Malicious Payloads

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
DragonForce Breaches MSPs via SimpleHelp Flaws: Inside CVE-2024-57726
May 28, 2025
Podcasts
Fentanyl, Firearms, and $200M in Crypto: Dark Web Crime Meets Global Law Enforcement
May 27, 2025
Podcasts
Marlboro-Chesterfield Pathology Ransomware Breach: 235,000 Patients Affected
May 27, 2025

Cyber Security News

Hackers Target Hundreds of Federal Agents in Targeted Attacks
Cybersecurity
Hackers Target Hundreds of Federal Agents in Targeted Attacks
October 22, 2025
Hackers Threaten to Leak 47GB of Data from Leading Golf Apparel Company
Cybersecurity
Hackers Threaten to Leak 47GB of Data from Leading Golf Apparel Company
October 22, 2025
Attackers Exploit OAuth Tokens After Password Resets
Cybersecurity
Attackers Exploit OAuth Tokens After Password Resets
October 22, 2025
Hackers Exploit Windows SMB Flaw to Gain SYSTEM Privileges
Cybersecurity
Hackers Exploit Windows SMB Flaw to Gain SYSTEM Privileges
October 22, 2025
CISA Confirms Hackers Exploited Oracle E-Business Suite SSRF Vulnerability
Application Security
CISA Confirms Hackers Exploited Oracle E-Business Suite SSRF Vulnerability
October 22, 2025
CISA Updates KEV Catalog 5 Exploited Vulnerabilities Confirmed
CVE Vulnerability Alerts
CISA Updates KEV Catalog: 5 Exploited Vulnerabilities Confirmed
October 22, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Japanese telco NTT Communications hacked hackers accessed details of almost 18,000 organizations
March 10, 2025
panese telecommunications giant NTT Communications Corporation (NTT Com) has disclosed a data breach affecting information from nearly 18,000 corporate clients. The breach was identified on ...
NBA and NASCAR Accounts on X Hacked to Promote Cryptocurrency Scams
March 10, 2025
The official NBA and NASCAR accounts on X were hacked to promote fake cryptocurrencies, raising serious concerns about cybersecurity and user safety on social media.
$5 Million Stolen from 1inch Due to Smart Contract Flaw
March 10, 2025
On March 5, 2025, 1inch confirmed a $5 million theft due to a smart contract flaw, affecting only resolver funds, not end-user assets.
US Cities Warn of Parking Phishing Texts Used to Steal Personal Data
March 10, 2025
US cities warn residents about a new wave of phishing texts claiming unpaid parking fees, threatening fines and attempting to steal personal information.
Chicago Public Schools Data Breach Exposes Hundreds of Thousands of Student Records
March 10, 2025
Hundreds of thousands of Chicago Public School students' data was exposed in a recent data breach, affecting names, birthdates, and student IDs. The FBI and ...
Bank of America Issues Warning on Data Breach: Millions of Accounts at Risk
March 10, 2025
Bank of America has announced a massive data breach affecting millions, with customers' sensitive information potentially compromised due to a vendor's mishandling of documents.
Data Breach Settlement: Rite Aid Agrees to Pay $6.8 Million to Affected Customers
March 10, 2025
Rite Aid has agreed to a $6.8 million settlement following a data breach affecting over 2 million customers, emphasizing the need for robust cybersecurity measures.
New Chirp Tool Using Audio Tones for Data Transit Between Devices
March 10, 2025
The new Chirp tool allows data transfer between devices using audio tones, offering a unique and engaging way to communicate.
1 Million Devices Hit: Inside the Massive Malvertising Campaign
March 7, 2025
A massive malvertising campaign has compromised one million devices worldwide, using malicious ads on illegal streaming websites to distribute malware. Dubbed Storm-0408, this cybercrime operation ...
Inside the $635K Taylor Swift Ticket Heist: Cybercrime, Loopholes, and Insider Threats
March 7, 2025
A cybercrime operation involving the theft and resale of $635,000 worth of concert tickets—primarily for Taylor Swift’s Eras Tour—has been uncovered. New York prosecutors revealed ...
Akira Ransomware Uses Webcam to Bypass EDR
March 7, 2025
The Akira ransomware gang has found a way to bypass EDR by exploiting unsecured webcams, demonstrating a new level of sophistication in cyberattacks.
Microsoft Reports Malvertising Campaign Impacted 1 Million PCs
March 7, 2025
Microsoft reports a large malvertising campaign has impacted nearly one million PCs, using malicious ads on streaming sites to deploy malware.
Taylor Swift Ticket Scam: Cybercrime Crew Steals $635,000
March 7, 2025
A cybercrime crew stole $635,000 worth of concert tickets, primarily for Taylor Swift's Eras Tour, exploiting a StubHub vendor loophole. Two employees were arrested and ...
Scott County Breach: Email Account Compromises Patient Data
March 7, 2025
The Scott County breach involved unauthorized access to email accounts, compromising protected health information for thousands of individuals across Iowa.
Silk Typhoon Strikes: From Direct Breaches to Stealthy Supply Chain Attacks
March 6, 2025
In this episode, we take an in-depth look at Silk Typhoon, the Chinese state-sponsored cyber espionage group that’s radically shifting its tactics. Moving away from ...
12,000 API Keys and Passwords Found in AI Training Datasets
March 6, 2025
Nearly 12,000 API keys and passwords were discovered in the Common Crawl dataset used for training AI models, highlighting significant security risks for enterprises. Many ...
Open-Source Tool Rayhunter Helps Users Detect Stingray Attacks
March 6, 2025
The EFF has introduced Rayhunter, an open-source tool for detecting Stingray attacks, helping users safeguard their sensitive data from unauthorized access.
Fake BianLian Ransom Notes Mailed to US CEOs in Postal Mail Scam
March 6, 2025
Scammers are impersonating the BianLian group, mailing fake ransom notes to US CEOs, threatening data leaks unless Bitcoin payments are made.
BadBox Malware Disrupted on 500K Infected Android Devices
March 6, 2025
The BadBox malware disruption has impacted over 500,000 devices, revealing the urgency of addressing cybersecurity threats in low-cost Android devices.
Silk Typhoon Hackers Now Target IT Supply Chains to Breach Networks
March 6, 2025
The Silk Typhoon hackers have shifted tactics, now focusing on IT supply chains to infiltrate networks and exploit sensitive data across multiple industries.
RapidFort Secures $42 Million to Enhance Software Security Automation
UK Data Protection Authority Probes X’s Grok AI for Generating Inappropriate Images
The DockerDash Vulnerability: Understanding Its Impact on Docker Desktop and CLI
U.S. CISA’s Vulnerability Notice Revisions Spark Concerns
React Native’s Metro Server Vulnerability: A Growing Cyber Threat
Reconnaissance Attack On Citrix NetScaler Targets Login Panels with Proxy Networks
State-Sponsored Cyber Espionage: Notepad++ Update Traffic Hijacked
Cybercriminals Exploit Weak Security in 1,400 MongoDB Servers
Malicious VS Code Extensions Spread GlassWorm Loader
Surge in Fake Investment Platforms Exploiting Social Media
Fast Food Giant McDonald Calls for Creative Passwords to Enhance Security
Identity Challenges in User Data Storage and Security Maintenance
Russian Hackers Exploit Vulnerability in Microsoft Office to Target Ukraine
Microsoft’s Strategy to Eliminate NTLM in Favor of Kerberos
ClawHub’s Third-Party Skills Security Risks: User Data at Stake
Firefox Introduces Options to Control AI Features
Microsoft Acknowledges Shutdown Issue in Windows 10 and 11 Systems
Increasing Threats from Automated Data Extortion Targeting MongoDB
Apple Enhances Location Privacy With New Feature for iPhone and iPad
Zero-Day Vulnerabilities in Ivanti EPMM Exploited