Main Menu
Cyber Security
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0 Exploited
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Netherlands Seizes 800 Stark Industries Servers, Arrests Two
ShinyHunters Claims 260K Baker Distributing Salesforce Records
Ubiquiti Patches 3 Max-Severity UniFi OS Flaws, 100K Exposed
Trump Mobile Exposes 27,000 Customer Records via Insecure API
Mysk: WhatsApp Stores Chats Unencrypted, Meta Apps Can Read Them
Wireshark 4.6.6 Patches ROHC Crash and MACsec Buffer Overflow
FBI Warns Kali365 PhaaS Platform Bypasses Microsoft 365 MFA
Lenovo BootRepair.sys Driver Exposes BYOVD Attack on CrowdStrike
Splunk CVE-2026-20239 Logs Session Cookies in Plaintext
DPRK npm Packages Use Hugging Face to Exfiltrate Developer Credentials
Deleted Google API Keys Stay Active for Up to 23 Minutes
Chromium Service Worker PoC Exploit Published for 42-Month-Old Bug
Texas AG Sues Meta Over WhatsApp Encryption Claims
Banana RAT Hijacks Brazil Pix QR Codes via NF-e Lures
UNG0002 Hides Cobalt Strike in macOS Folder Structures
INJ3CTOR3 Deploys JOMANGY Webshell in FreePBX Campaign
Operation Dragon Whistle Uses VS Code Tunnels as C2
Cisco Secure Workload CVE-2026-20223 Earns CVSS 10.0
NGINX 1.31.0 Zero-Day nginx-poolslip Bypasses ASLR
WantToCry Ransomware Hits SMB Ports, Evades EDR Tools
DOJ Secures Guilty Pleas From Tech-Support Fraud Executives
BadIIS Malware-as-a-Service Hijacks IIS Servers for SEO Fraud
GhostTree Exploit Hangs Windows Defender With NTFS Junctions
SilverFox APT Spreads ValleyRAT via Fake Microsoft Teams Sites
TamperedChef Hides Malware Inside Signed Apps
Chrome 148 Patches Critical WebRTC Use-After-Free
P2PInfect Botnet Infiltrates Kubernetes Clusters via Redis
OnePoint Patient Care Breach: 800,000 Patients Affected, Law Firm Launches Investigation
News
OnePoint Patient Care Breach: 800,000 Patients Affected, Law Firm Launches Investigation
Mitchell Langley November 29, 2024
nePoint Patient Care (OPPC) experienced a data breach affecting nearly 800,000 customers. Sensitive personal and protected health information was compromised, prompting an investigation by Levi ...
WUTH Cyberattack Forces UK Hospital Network to Postpone Procedures
News
WUTH Cyberattack Forces UK Hospital Network to Postpone Procedures
Gabby Lee November 29, 2024
The cyberattack on Wirral University Teaching Hospital (WUTH), part of the NHS, has resulted in the postponement of numerous procedures and widespread service disruption across ...
HDFC Life Insurance Data Breach: HDFC Life Insurance Confirms Data Leak, Launches Investigation
News
HDFC Life Insurance Data Breach: HDFC Life Insurance Confirms Data Leak, Launches Investigation
Mitchell Langley November 28, 2024
HDFC Life Insurance confirms a data breach involving customer information. An investigation is underway to determine the extent of the breach and implement remedial ...
GoodSmile Data Breach: Customers Report Credit Card Theft After Security Compromise
News
GoodSmile Data Breach: Customers Report Credit Card Theft After Security Compromise
Gabby Lee November 28, 2024
Good Smile Company's US store suffered a data breach, resulting in customer credit card theft. The company remains silent, prompting concern and calls for immediate ...
Andrew Tate's Real World Hacked: 800,000 Users Exposed in Andrew Tate leaks
News
Andrew Tate’s Real World Hacked: 800,000 Users Exposed in Data Breach
Mitchell Langley November 28, 2024
Andrew Tate's Real World, formerly Hustler's University, suffered a major data breach exposing nearly 800,000 users. Learn about the hack, the leaked data, and how ...
RansomHub Cyberattack: Coppell, Texas, and Minneapolis Agency Targeted
News
RansomHub Cyberattack: Coppell, Texas, and Minneapolis Agency Targeted
Mitchell Langley November 27, 2024
RansomHub's ransomware attacks crippled Coppell, Texas, and the Minneapolis Park and Recreation Board, causing widespread system outages and potential data breaches.
Starbucks Cyberattack Leaves Workers Facing Pay Issues and Frustration
News
Starbucks Cyberattack Leaves Workers Facing Pay Issues and Frustration
Gabby Lee November 27, 2024
A ransomware attack on a Starbucks software vendor has caused widespread payroll problems for Starbucks employees, leaving many baristas struggling with delayed and potentially inaccurate ...
LifeLabs Data Breach Report Finally Public After Four-Year Legal Battle
Cybersecurity
LifeLabs Data Breach Report Finally Public After Four-Year Legal Battle
Mitchell Langley November 27, 2024
After a four-year legal battle, the report on the 2019 LifeLabs data breach, affecting millions of Canadians, has been released, detailing security failures and the ...
Microsoft 365 Outage: Service Disruption Impacts Exchange Online, Teams, and SharePoint
News
Microsoft 365 Outage: Service Disruption Impacts Exchange Online, Teams, and SharePoint
Mitchell Langley November 26, 2024
Microsoft 365 outage severely impacted Exchange Online, Teams, and SharePoint, causing widespread disruption for users globally. Microsoft acknowledged the issue and deployed a fix, but ...
Starbucks and Other Retailers Face Widespread Disruption After Ransomware Attack on Tech Provider
News
Starbucks and Other Retailers Face Widespread Disruption After Ransomware Attack on Tech Provider
Mitchell Langley November 26, 2024
A ransomware attack targeting a tech provider crippled Starbucks and other retailers, causing widespread operational disruptions and highlighting cybersecurity vulnerabilities.
Blue Yonder Ransomware Attack Cripples Grocery Store Supply Chains
News
Blue Yonder Ransomware Attack Cripples Grocery Store Supply Chains
Gabby Lee November 26, 2024
Blue Yonder ransomware attack disrupts grocery store supply chains across the UK, impacting major retailers and highlighting vulnerabilities in critical infrastructure.
BianLian Ransomware Updated Advisory: CISA and Australian Agencies Detail Evolving Tactics and Techniques
News
BianLian Ransomware Updated Advisory: CISA and Australian Agencies Detail Evolving Tactics and Techniques
Mitchell Langley November 25, 2024
US and Australian cybersecurity agencies have issued an updated advisory on the BianLian ransomware group, detailing new tactics, techniques, and indicators of compromise (IoCs) following ...
Thala Recovers $25.5 Million After Security Breach
Cybersecurity
Thala Recovers $25.5 Million After Security Breach
Mitchell Langley November 25, 2024
DeFi protocol Thala recouped $25.5 million stolen in a security breach by negotiating a $300,000 bounty with the attacker, showcasing effective crisis management in the ...
Bojangles' Restaurant Data Breach Exposes Sensitive Customer Information
News
Bojangles’ Restaurant Data Breach Exposes Sensitive Customer Information
Mitchell Langley November 25, 2024
Bojangles' Restaurants suffered a significant data breach between February and March 2024, exposing the personal information of tens of thousands of customers. The Murphy Law ...
Columbus Data Leak Has Exposed Half a Million Residents;City Offers Limited Protection
News
Columbus Data Leak Has Exposed Half a Million Residents City Offers Limited Protection
Gabby Lee November 25, 2024
Columbus data leak has compromised the personal information of an estimated 500,000 residents. The city's response has been criticized for offering credit monitoring to only ...
BianLian Ransomware Shifts Focus Exclusively to Data Theft, CISA Warns
News
BianLian Ransomware Shifts Focus Exclusively to Data Theft, CISA Warns
Gabby Lee November 22, 2024
Chinese state-sponsored hackers are using a new Linux backdoor called WolfsBane, a sophisticated malware tool that includes a dropper, launcher, and backdoor, alongside a modified ...
WolfsBane Linux Malware Unleashed by Chinese Hackers
Cybersecurity
WolfsBane Linux Malware Unleashed by Chinese Hackers
Mitchell Langley November 22, 2024
Chinese state-sponsored hackers are using a new Linux backdoor called WolfsBane, a sophisticated malware tool that includes a dropper, launcher, and backdoor, alongside a modified ...
This Week In Cybersecurity: 18th to 22nd November
Cybersecurity
This Week In Cybersecurity: 18th to 22nd November
Mitchell Langley November 22, 2024
This Week In Cybersecurity: 18th to 22nd November
HeptaX Cyberattack: A Deep Dive into the Multi-Stage RDP Exploitation Targeting Enterprises
Application Security
HeptaX Cyberattack: A Deep Dive into the Multi-Stage RDP Exploitation Targeting Enterprises
Mitchell Langley November 21, 2024
The HeptaX cyberattack represents a sophisticated, multi-stage threat targeting enterprises, particularly in healthcare. This in-depth analysis details the attack chain, technical analysis, and crucial mitigation ...
Finastra Data Breach: 400GB of Sensitive Financial Data Compromised
News
Finastra Data Breach: 400GB of Sensitive Financial Data Compromised
Mitchell Langley November 21, 2024
Finastra, serving 45 of the world's top 50 banks, is investigating a potential data breach involving its secure file transfer platform. A threat actor claimed ...
Application Security
Ghost CMS CVE-2026-26980 Exploited in ClickFix Campaign
Mitchell Langley May 25, 2026
Cybersecurity
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Gabby Lee May 25, 2026
Cybersecurity
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Gabby Lee May 25, 2026
Cybersecurity
ShinyHunters Claims 260K Baker Distributing Salesforce Records
Mitchell Langley May 25, 2026

TOP CYBERSECURITY HEADLINES

Application Security
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
Application Security
LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0 Exploited
Cybersecurity
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Cybersecurity
Netherlands Seizes 800 Stark Industries Servers, Arrests Two

This Week’s Security Spotlight

Application Security
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
Mitchell Langley May 25, 2026
Application Security
Trump Mobile Exposes 27,000 Customer Records via Insecure API
Gabby Lee May 25, 2026
CVE Vulnerability Alerts
Cisco Secure Workload CVE-2026-20223 Earns CVSS 10.0
Gabby Lee May 22, 2026
Cybersecurity
NYC Health + Hospitals Breach Exposes 1.8M Patients’ Fingerprints
Gabby Lee May 21, 2026
More In News
Trending
INTERPOL Operation Ramz: 201 Arrests in 13-Nation MENA Sweep
Tycoon2FA Adds Device-Code Attack to Bypass Microsoft 365 MFA
Operation HookedWing: 4-Year Campaign Compromises 500 Orgs
ShinyHunters Leaks 50GB After Vishing Breach at Cushman & Wakefield

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Inside Security News : GitHub Supply Chain Attacks, Ransomware Defense, and the Future of Cloud Security
April 15, 2025
Podcasts
Next.js Security Vulnerability: Middleware Bypass (CVE-2025-29927)
April 14, 2025
Podcasts
Cyberattack Roundup: Lessons from the Latest Breaches & Ransomware Strikes
March 26, 2025

Cyber Security News

Arrests in Nigeria Reveal Cyberattack Links to Raccoon0365 and Microsoft 365
Cybersecurity
Arrests in Nigeria Reveal Cyberattack Links to Raccoon0365 and Microsoft 365
December 22, 2025
Newly Disclosed Vulnerability in WatchGuard Firebox Active Exploitation Underway
Application Security
Newly Disclosed Vulnerability in WatchGuard Firebox: Active Exploitation Underway
December 22, 2025
Microsoft Teams Outage Affects Thousands of Users Trying to Send Messages
Application Security
Microsoft Teams Outage Affects Thousands of Users Trying to Send Messages
December 22, 2025
Thailand Conference Launches International Initiative to Fight Online Scams
Cybersecurity
Thailand Conference Launches International Initiative to Fight Online Scams
December 22, 2025
Latest Charges Amplify Indictments Against Alleged Tren de Aragua Members
Cybersecurity
Latest Charges Amplify Indictments Against Alleged Tren de Aragua Members
December 22, 2025
Vulnerabilities in SonicWall Remote-Access Appliance Threaten Security
Cybersecurity
Vulnerabilities in SonicWall Remote-Access Appliance Threaten Security
December 22, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Everest Ransomware’s Dark Web Leak Site Defaced and Taken Offline
April 8, 2025
Everest ransomware's dark web leak site was defaced, disrupting their double-extortion scheme. This highlights the vulnerability of even sophisticated cybercriminal operations and the importance of ...
EncryptHub Has a Double Life of a Cybercriminal and Bug Bounty Hunter
April 8, 2025
Threat actor EncryptHub, responsible for compromising 618 organizations, secretly reported two Windows zero-day vulnerabilities to Microsoft, revealing a complex figure operating in both cybercrime and ...
Europcar Data Breach Affects 200,000 Customers
April 7, 2025
Europcar's data breach potentially affects up to 200,000 customers after threat actors accessed GitLab repositories. The company confirms the breach but disputes the full extent ...
WinRAR Vulnerability Bypasses Windows Mark of the Web Security
April 7, 2025
WinRAR vulnerability (CVE-2025-31334) bypasses Windows Mark of the Web security, enabling silent malicious code execution. Update to version 7.11 immediately.
Port of Seattle Ransomware Attack Impacts 90,000 Individuals
April 7, 2025
A ransomware attack on the Port of Seattle exposed the personal data of 90,000 individuals. The Rhysida ransomware group was responsible, and the Port refused ...
E-ZPass Phishing Scam Targets E-ZPass
April 7, 2025
A massive wave of phishing texts impersonating E-ZPass is stealing personal and financial data. Scammers use urgency and encrypted messaging to bypass security measures.
CISA Warns of Fast Flux DNS Evasion Used by Cybercrime Gangs
April 4, 2025
CISA warns of Fast Flux DNS evasion, a technique used by cybercrime gangs to mask malicious activity by rapidly changing DNS records, making detection and ...
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
April 4, 2025
The IT world is constantly changing, and so are the frameworks that govern it. This blog post delves into the significant differences between COBIT 5 ...
Texas State Bar Data Breach: INC Ransomware Gang Claims Responsibility
April 4, 2025
The Texas State Bar suffered a data breach between January 28 and February 9, 2025, with the INC ransomware gang claiming responsibility and leaking stolen ...
GitHub Supply Chain Attack Traced to Leaked SpotBugs Token
April 4, 2025
A devastating GitHub supply chain attack, targeting Coinbase, stemmed from a leaked SpotBugs token, exposing secrets in 218 repositories and highlighting critical vulnerabilities in open-source ...
Oracle Cloud Breach Confirmed, Data Theft Impacts Legacy Systems
April 4, 2025
Oracle confirms a data breach impacting its legacy Oracle Cloud Classic system, resulting in the theft of client credentials. Investigations are underway, but the company's ...
Hunters International Shifts to Data Extortion and Rebrands as World Leaks
April 4, 2025
Hunters International, a notorious ransomware operation, has rebranded as World Leaks, shifting its focus to data extortion.
$500,000 Lost in Australian Superannuation Fund Data Breach
April 4, 2025
Major Australian superannuation funds experienced a data breach, resulting in $500,000 in losses and impacting thousands of members via a credential stuffing attack.
KillSec: Hacktivists Turned RaaS Syndicate
April 4, 2025
KillSec, a Russia-linked RaaS group, targets healthcare and finance, leveraging OSINT and affiliates for extortion, showing a preference for Asian victims over Western ones.
CVE Vulnerability Alerts – 18th March, 2025
April 4, 2025
This post summarizes various vulnerabilities from recent CVE alerts that could potentially be exploited by malicious actors. Each entry includes brief information on the vulnerability, ...
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
April 4, 2025
The cost of data breach is skyrocketing. This in-depth analysis reveals the staggering financial impact and strategies for mitigation. Learn more.
ChatGPT is Down Worldwide Impacting Millions
April 3, 2025
Global ChatGPT outage caused widespread disruption, displaying a "Something went wrong" error. OpenAI acknowledged the problem and implemented a fix.
Royal Mail Data Breach: No Operational Impact Reported
April 3, 2025
Royal Mail investigates a data breach involving third-party supplier Spectos GmbH. Over 144GB of data, including customer PII, was leaked; however, Royal Mail operations remain ...
Triada Malware Preloaded on Counterfeit Android Devices
April 3, 2025
Counterfeit Android phones are infecting users with Triada malware pre-installed in the firmware, stealing data and cryptocurrency. This supply chain attack highlights the risks of ...
Urgent Security Alert: Exploited CSLU Backdoor Threatens Cisco Systems
April 3, 2025
Exploited Cisco CSLU backdoor admin account enables unauthorized access and control. Immediate patching is critical to prevent attacks.
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0 Exploited
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Netherlands Seizes 800 Stark Industries Servers, Arrests Two
ShinyHunters Claims 260K Baker Distributing Salesforce Records
Ubiquiti Patches 3 Max-Severity UniFi OS Flaws, 100K Exposed
Trump Mobile Exposes 27,000 Customer Records via Insecure API
Mysk: WhatsApp Stores Chats Unencrypted, Meta Apps Can Read Them
Wireshark 4.6.6 Patches ROHC Crash and MACsec Buffer Overflow
FBI Warns Kali365 PhaaS Platform Bypasses Microsoft 365 MFA
Lenovo BootRepair.sys Driver Exposes BYOVD Attack on CrowdStrike
Splunk CVE-2026-20239 Logs Session Cookies in Plaintext
DPRK npm Packages Use Hugging Face to Exfiltrate Developer Credentials
Deleted Google API Keys Stay Active for Up to 23 Minutes
Chromium Service Worker PoC Exploit Published for 42-Month-Old Bug
Texas AG Sues Meta Over WhatsApp Encryption Claims
Banana RAT Hijacks Brazil Pix QR Codes via NF-e Lures
UNG0002 Hides Cobalt Strike in macOS Folder Structures
INJ3CTOR3 Deploys JOMANGY Webshell in FreePBX Campaign
Operation Dragon Whistle Uses VS Code Tunnels as C2