Main Menu
Cyber Security
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
10 Key Benefits of Cyber Tabletop Exercises
Network Security in a Digital World: Understanding and Mitigating Risks
WhatsApp Patches Zero-Day Flaw Exploited by Paragon Spyware
The Mirai Botnet: The Infamous DDoS Weapon
Compliance Isn’t Security: Why a Checklist Alone Won’t Stop Cyberattacks
Outsourcing Cybersecurity Could Save Your Company Millions – Here’s How
CISA Warns of Craft CMS Code Injection Flaw
Top Cyber Threats Facing Enterprise Businesses in 2025: A Comprehensive Guide
State-Sponsored Hackers Abuse Google’s Gemini AI for Attacks
Apple CPU Side-Channel Attacks (SLAP & FLOP) Threaten Safari Browser Security
Sunflower Medical Group Data Breach: Rhysida Ransomware Attack Exposes 220,968 Records
News
Sunflower Medical Group Data Breach: Rhysida Ransomware Attack Exposes 220,968 Records
Andrew Doyle March 14, 2025
Kansas' Sunflower Medical Group suffered a data breach impacting 220,968 individuals. The Rhysida ransomware group claimed responsibility for the incident in January.
Infostealer Malware Infects 26 Million Devices, Steals Bank Card Data and Passwords
News
Infostealer Malware Infects 26 Million Devices, Steals Bank Card Data and Passwords
Mitchell Langley March 14, 2025
A devastating Infostealer malware campaign has compromised 26 million devices, stealing bank card details and passwords. Kaspersky's report highlights the scale of the threat.
LockBit Linked SuperBlack Ransomware Exploits Fortinet Authentication Bypass Flaws
News
LockBit Linked SuperBlack Ransomware Exploits Fortinet Authentication Bypass Flaws
Mitchell Langley March 14, 2025
New SuperBlack ransomware leverages Fortinet authentication bypass flaws (CVE-2024-55591 and CVE-2025-24472), showing strong ties to LockBit. Immediate patching is crucial.
ClickFix Phishing Campaign Targets Booking.com Using Infostealers and RATs
News
ClickFix Phishing Campaign Targets Booking.com Using Infostealers and RATs
Andrew Doyle March 14, 2025
A sophisticated ClickFix phishing campaign uses fake Booking.com emails to deliver infostealers and RATs, targeting hospitality businesses. Strong security measures are crucial.
Volt Typhoon Energy Grid Cyberattack Exposes US Infrastructure Vulnerabilities
News
Volt Typhoon Energy Grid Cyberattack Exposes US Infrastructure Vulnerabilities
Mitchell Langley March 14, 2025
The Volt Typhoon advanced persistent threat (APT) group maintained access to a Massachusetts power utility's OT network for almost a year, highlighting critical infrastructure vulnerabilities.
Australian Financial Firm FIIG Securities Faces Lawsuit After Massive Financial Data Breach
News
Australian Financial Firm FIIG Securities Faces Lawsuit After Massive Financial Data Breach
Andrew Doyle March 14, 2025
FIIG Securities faces legal action from ASIC for inadequate cybersecurity, leading to a data breach exposing 18,000 clients' sensitive information. The breach highlights the critical ...
MassJacker Malware: Clipboard Hijacking Malware Tartgets 778,000 CryptoWallets
News
MassJacker Malware: Clipboard Hijacking Malware Tartgets 778,000 CryptoWallets
Mitchell Langley March 12, 2025
MassJacker malware uses clipboard hijacking to steal cryptocurrency from 778,000 wallets, highlighting sophisticated obfuscation and a potentially massive financial impact.
Cyberattack on Sunflower Medical Group and Multiple Healthcare Providers Suffer Data Breaches
News
Cyberattack on Sunflower Medical Group and Multiple Healthcare Providers Suffer Data Breaches
Andrew Doyle March 12, 2025
Multiple healthcare providers suffered significant cyberattacks and data breaches in 2025, exposing sensitive patient information, highlighting the urgent need for enhanced cybersecurity measures.
Rhode Island's Community Care Alliance Data Breach Exposes 114K Records, Central Texas Pediatric Orthopedics and Whitman Hospital Report Cyberattacks
News
Rhode Island’s Community Care Alliance Data Breach Exposes 114K Records, Central Texas Pediatric Orthopedics and Whitman Hospital Report Cyberattacks
Andrew Doyle March 12, 2025
Community Care Alliance Data Breach with 114,975 Records Exposed, Central Texas Pediatric Orthopedics and Whitman Hospital Report Cyberattacks
PowerSchool Hacked Way Back in August, Before December's Data Breach
News
PowerSchool Hacked Way Back in August, Before December’s Data Breach
Mitchell Langley March 12, 2025
PowerSchool's December 2024 data breach was preceded by hacks in August and September, exposing sensitive data for millions of students and teachers. A CrowdStrike investigation ...
Hillcrest Convalescent Center, Bay Cove Human Services and SMC Corporation of America Report Data Breaches
News
Hillcrest Convalescent Center, Bay Cove Human Services and SMC Corporation of America Report Data Breaches
Mitchell Langley March 12, 2025
Hillcrest Convalescent Center, Bay Cove Human Services and SMC Corporation of America have all reported Data Breaches
Elon Musk Claims 'Massive Cyberattack' on X Originated from Ukraine
News
Elon Musk Claims ‘Massive Cyberattack’ on X Originated from Ukraine
Andrew Doyle March 11, 2025
Elon Musk confirmed a massive cyberattack on X, originating from the Ukraine area, causing widespread service disruptions and highlighting the vulnerability of major tech platforms.
New York Sues Allstate and National General Over Data Breaches
News
New York Sues Allstate and National General Over Data Breaches
Mitchell Langley March 11, 2025
New York sues Allstate and National General for failing to protect consumer data, resulting in two major data breaches exposing thousands of driver's license numbers.
Cl0p Ransomware Published Rackspace Files on Leak Site
News
Cl0p Ransomware Published Rackspace Files on Leak Site
Andrew Doyle March 11, 2025
Cl0p ransomware publishes Rackspace files after ignored demands, exposing hundreds of Cleo victims. This data breach highlights the ongoing threat to enterprise and cloud security.
WordPress Vulnerability Expolited to Hack Moroccan Data Protection Authority Website
News
WordPress Vulnerability Expolited to Hack Moroccan Data Protection Authority Website
Andrew Doyle March 11, 2025
Morocco's data protection authority website suffered a WordPress plugin vulnerability exploit, resulting in reputational damage despite no sensitive data loss.
NBA and NASCAR Accounts on X Hacked to Promote Cryptocurrency Scams
News
NBA and NASCAR Accounts on X Hacked to Promote Cryptocurrency Scams
Andrew Doyle March 10, 2025
The official NBA and NASCAR accounts on X were hacked to promote fake cryptocurrencies, raising serious concerns about cybersecurity and user safety on social media.
$5 Million Stolen from 1inch Due to Smart Contract Flaw
News
$5 Million Stolen from 1inch Due to Smart Contract Flaw
Mitchell Langley March 10, 2025
On March 5, 2025, 1inch confirmed a $5 million theft due to a smart contract flaw, affecting only resolver funds, not end-user assets.
US Cities Warn of Parking Phishing Texts Used to Steal Personal Data
News
US Cities Warn of Parking Phishing Texts Used to Steal Personal Data
Andrew Doyle March 10, 2025
US cities warn residents about a new wave of phishing texts claiming unpaid parking fees, threatening fines and attempting to steal personal information.
Chicago Public Schools Data Breach Exposes Hundreds of Thousands of Student Records
News
Chicago Public Schools Data Breach Exposes Hundreds of Thousands of Student Records
Mitchell Langley March 10, 2025
Hundreds of thousands of Chicago Public School students' data was exposed in a recent data breach, affecting names, birthdates, and student IDs. The FBI and ...
Bank of America Issues Warning on Data Breach: Millions of Accounts at Risk
News
Bank of America Issues Warning on Data Breach: Millions of Accounts at Risk
Andrew Doyle March 10, 2025
Bank of America has announced a massive data breach affecting millions, with customers' sensitive information potentially compromised due to a vendor's mishandling of documents.
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle May 12, 2025
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Syed Arslan May 8, 2025
Ransomware Victims on Dark Web – 04th March, 2025
Ransomware
Ransomware Victims on Dark Web – 04th March, 2025
Gabby Lee April 21, 2025
Interlock Ransomware Gang Deploys ClickFix Attacks Using Fake IT Tools to Compromise Networks
News
Interlock Ransomware Gang Deploys ClickFix Attacks Using Fake IT Tools to Compromise Networks
Andrew Doyle April 21, 2025

TOP CYBERSECURITY HEADLINES

Nucor Shuts Down Production Lines Following Cybersecurity Incident
News
Nucor Shuts Down Production Lines Following Cybersecurity Incident
Alleged Leak of 89 Million Steam User Records Tied to Supply Chain Breach
News
Alleged Leak of 89 Million Steam User Records Tied to Supply Chain Breach
HireClick Exposes 5.7 Million Resume Files Due to Misconfigured Cloud Storage
News
HireClick Exposes 5.7 Million Resume Files Due to Misconfigured Cloud Storage
Valve Denies Steam Data Breach, Dismisses Leaked Data as Useless Expired Codes
News
Valve Denies Steam Data Breach, Dismisses Leaked Data as Useless Expired Codes

SECURITYWEEK INDUSTRY EXPERTS

North Korean Hackers TA406 Target Ukraine to Gauge Russia's Military Demands
News
North Korean Hackers TA406 Target Ukraine to Gauge Russia’s Military Demands
Mitchell Langley May 15, 2025
Bank Street College of Education Exposes Half a Million Files with Sensitive Personal Data
News
Bank Street College of Education Exposes Half a Million Files with Sensitive Personal Data
Mitchell Langley May 15, 2025
Dior Confirms Data Breach Exposing Chinese Customer Information
News
Dior Confirms Data Breach Exposing Chinese Customer Information
Mitchell Langley May 15, 2025
Nucor Shuts Down Production Lines Following Cybersecurity Incident
News
Nucor Shuts Down Production Lines Following Cybersecurity Incident
Mitchell Langley May 15, 2025
More In News
Trending
What is a Whaling Phishing Attack?
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Email Spoofing 101: Understanding the Basics and How to Protect Your Enterprise Data
How AI is Revolutionizing Phishing Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Craft CMS Crisis: The 10.0-Rated RCE Flaw Every Developer Must Patch Now
April 28, 2025
Podcasts
Policy Puppetry: How a Single Prompt Can Trick ChatGPT, Gemini & More Into Revealing Secrets
April 28, 2025
Podcasts
Lazarus Strikes Again: Inside Operation SyncHole and the 1-Day Exploitation Crisis
April 25, 2025

Cyber Security News

This Week In Cybersecurity: 28th October to 1st November
Cybersecurity
This Week In Cybersecurity: 28th October to 1st November
November 3, 2024
Ticking Time Bomb or Opportunity How to Secure Remote Work Environments
Blog
Ticking Time Bomb or Opportunity? How to Secure Remote Work Environments
October 31, 2024
This Week In Cybersecurity: 21st October to 25th October
Cybersecurity
This Week In Cybersecurity: 21st October to 25th October
October 25, 2024
This Week In Cybersecurity: 14th October to 18th October
Cybersecurity
This Week In Cybersecurity: 14th October to 18th October
October 22, 2024
7 Best Patch Management Tools for Streamlining Enterprise Security
Application Security
7 Best Patch Management Tools for Streamlining Enterprise Security
October 15, 2024
This Week In Cybersecurity: 7th October to 11th October
Cybersecurity
This Week In Cybersecurity: 7th October to 11th October
October 14, 2024
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
April 4, 2025
The cost of data breach is skyrocketing. This in-depth analysis reveals the staggering financial impact and strategies for mitigation. Learn more.
ChatGPT is Down Worldwide Impacting Millions
April 3, 2025
Global ChatGPT outage caused widespread disruption, displaying a "Something went wrong" error. OpenAI acknowledged the problem and implemented a fix.
Royal Mail Data Breach: No Operational Impact Reported
April 3, 2025
Royal Mail investigates a data breach involving third-party supplier Spectos GmbH. Over 144GB of data, including customer PII, was leaked; however, Royal Mail operations remain ...
Triada Malware Preloaded on Counterfeit Android Devices
April 3, 2025
Counterfeit Android phones are infecting users with Triada malware pre-installed in the firmware, stealing data and cryptocurrency. This supply chain attack highlights the risks of ...
Urgent Security Alert: Exploited CSLU Backdoor Threatens Cisco Systems
April 3, 2025
Exploited Cisco CSLU backdoor admin account enables unauthorized access and control. Immediate patching is critical to prevent attacks.
SimonMed Imaging Confirms Cybersecurity Breach in January 2025
April 3, 2025
SimonMed Imaging confirmed a cybersecurity breach in January 2025, exposing patient data through a vendor, prompting investigations, security upgrades, and at least one class-action lawsuit. ...
173,000 Patients Affected by Chord Specialty Dental Partners Email Data Breach
April 3, 2025
Chord Specialty Dental Partners reports a data breach impacting 173,000 patients, exposing personal and health data, and offering free credit monitoring services to affected individuals. ...
openSNP to Shut Down: Genetic Data Privacy Concerns Lead to Platform Closure
April 3, 2025
openSNP, a genetic data sharing platform, will close and delete all data on April 30th due to escalating privacy concerns and the risk of government ...
RedCurl Cyberespionage Group Deploys Ransomware Targeting Hyper-V
March 27, 2025
RedCurl, a known cyberespionage group, has deployed QWCrypt ransomware targeting Hyper-V servers, marking a significant shift in their tactics and raising concerns about their motivations.
Garden of Life Faces Three Class-Action Lawsuits Following Data Breach
March 27, 2025
Garden of Life faces three class-action lawsuits after a data breach exposed customer payment card information, alleging negligence and inadequate data security.
NSW Government Website Data Breach With 9,000 Court files
March 27, 2025
major data breach exposed 9,000 sensitive NSW court files. Authorities are investigating, aiming to identify accessed data within a week. Victims are urged to ...
StreamElements Confirms Third-Party Data Breach Affecting 210,000 Users
March 27, 2025
StreamElements confirms a third-party data breach exposing data for 210,000 users, highlighting the risks of relying on external vendors.
Oracle Customers Validate Stolen Data from Cloud Server Breach
March 27, 2025
Oracle denies a data breach affecting 6 million users, but independent verification confirms the authenticity of stolen data, contradicting their claims.
Urgent Security Update: Authentication Bypass Vulnerability in VMware Tools for Windows (CVE-2025-22230)
March 26, 2025
Critical VMware Tools vulnerability (CVE-2025-22230) enables privilege escalation on Windows VMs. Immediate patching is paramount for enterprise security.
South Carolina Eye Clinic Suffers Data Breach: Ransomware Suspected
March 26, 2025
Columbia Eye Clinic in South Carolina suffered a data breach, potentially a ransomware attack, exposing patient data including names, contact information, and procedure codes.
Sydney Tools Data Breach Exposes 34 Million+ Customer Orders
March 26, 2025
A massive data breach at Sydney Tools exposed over 34 million customer orders and sensitive employee data, including names, addresses, and salaries. The unsecured database ...
Numotion Data Breach Impacts Nearly 500,000 Individuals
March 26, 2025
Numotion's latest data breach exposed the personal and health information of nearly 500,000 individuals, following a series of similar incidents, leading to multiple lawsuits.
Cloudflare R2 Service Outage: A Case Study in Human Error and System Design
March 26, 2025
Cloudflare's R2 service suffered a 77-minute outage due to a password rotation error, highlighting the risks of human error in cloud infrastructure.
Cyberattack Roundup: Lessons from the Latest Breaches & Ransomware Strikes
March 26, 2025
From data breaches at major banks to ransomware crippling healthcare and tech companies, cyber threats are hitting harder than ever. In this episode, we break ...
Mastering Incident Response: A Guide to Building a Resilient Plan
March 26, 2025
Cyber threats are inevitable, but a strong incident response plan can make all the difference. In this episode, we explore the essential steps for creating ...
Nucor Shuts Down Production Lines Following Cybersecurity Incident
Alleged Leak of 89 Million Steam User Records Tied to Supply Chain Breach
HireClick Exposes 5.7 Million Resume Files Due to Misconfigured Cloud Storage
Valve Denies Steam Data Breach, Dismisses Leaked Data as Useless Expired Codes
Memphis-Shelby County Schools Joins Growing Lawsuit Against PowerSchool After Data Breach
Exploited in the Wild: SAP NetWeaver Zero-Days Hit Fortune 500
Checkout Chaos: Inside the £3.5 Million-a-Day M&S Cyber-Shutdown
Targeted iOS Attacks: The Zero-Days Apple Had to Patch Fast
DragonForce Hackers Disrupt UK Retail Giant Co-op in Geopolitically Charged Cyberattack
EU Launches European Vulnerability Database (EUVD) Amid CVE Funding Crisis
Twilio Denies Breach After Leak Claims to Expose Steam 2FA Codes
Texas vs Google: The $1.4 Billion Wake-Up Call for Data Privacy Violations
Marbled Dust’s Zero-Day Exploit: Unveiling a Türkiye-linked Espionage Campaign Against Kurdish Forces
M&S Confirms Customer Data Breach Following Cyberattack
TeleMessage Exploit: Inside the Messaging Flaw That Hit Coinbase and CBP
VMware Tools Vulnerability Lets Attackers Tamper with Virtual Machines
Thousands of Node Developers Compromised by Malware in Popular npm Packages
Türkiye-Backed Group Exploits Output Messenger Zero-Day in Cyberespionage Attack on Kurdish Targets
Moldovan Authorities Arrest Suspect Tied to DoppelPaymer Ransomware Attacks
rand-user-agent: The NPM Package That Opened a Backdoor