Main Menu
Cyber Security
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Maine AG Portal Abused to Post Fabricated Breach Notices
Fortinet FortiSandbox CVE-2026-25089 Allows Unauthenticated RCE
OpenSSL Patches 16 Flaws Including Heap Use-After-Free RCE Risk
Akira Claims Industrial Finisher, NJ Country Club, Architecture Firm
Chaos Ransomware Lists Airespring as Iranian False-Flag History Looms
Shai-Hulud Hades Wave Poisons 29 Bioinformatics PyPI Packages
Oracle PeopleSoft CVE-2026-35273: ShinyHunters Breaches 100+ Orgs
Nottingham University Breach Exposes Data on 454,600 Students
FBI Seizes 13 Chinese Spy Sites Targeting U.S. Clearance Holders
China-Linked JDY Botnet Hits 1,500 Devices Targeting U.S. Military
CISA BOD 26-04 Mandates 3-Day Patch Window for Federal Agencies
RoguePlanet Zero-Day Gives Attackers SYSTEM on Patched Windows
Ivanti Sentry CVE-2026-10520 Actively Exploited, Devices Backdoored
Langflow CVE-2026-5027: Path Traversal Becomes Unauthenticated RCE
WorldLeaks Claims Apple Supplier Tata Electronics and Two More Firms
What is Cloud Detection and Response (CDR) and How Does it Work
Google Patches 5th Chrome Zero-Day; V8 Flaw Chains for OS Access
LiteLLM CVE-2026-42271 Added to CISA KEV: AI API Keys at Risk
France’s Tchap Messaging App Breached, 643K Messages Exposed
SAP Patches CVSS 9.9 SAML Flaw and ABAP Memory Corruption
Exploit Published for Linux Kernel nf_tables CVE-2026-23111
Byte Federal Data Breach Exposes Sensitive Information of 58,000 Users
News
Byte Federal Data Breach Exposes Sensitive Information of 58,000 Users
Gabby Lee December 13, 2024
A major Byte Federal data breach exposed the personal data of 58,000 users due to a GitLab vulnerability. The breach included sensitive information like names, ...
AWS Cyberattack Exposes Sensitive Data of Customers: Stolen Credentials Found in Plain Sight
News
AWS Cyberattack Exposes Sensitive Data of Customers: Stolen Credentials Found in Plain Sight
Mitchell Langley December 12, 2024
A significant cyberattack exploited misconfigured AWS cloud instances, resulting in the theft of sensitive customer data, including credentials and API keys. The stolen information was ...
EagleMsgSpy Spyware Used by Chinese Police
News
EagleMsgSpy Spyware Used by Chinese Police
Gabby Lee December 12, 2024
Researchers uncover EagleMsgSpy, a sophisticated Android spyware developed by Wuhan Chinasoft and used by Chinese law enforcement to steal sensitive data from mobile devices, including ...
Data Breach Exposes 765,000 Senior Dating Website Users
News
Data Breach Exposes 765,000 Senior Dating Website Users
Mitchell Langley December 12, 2024
A significant data breach at Senior Dating, a platform for users aged 40+, exposed the personal details of 765,517 individuals. The exposed data included email ...
Krispy Kreme Cyberattack Disrupts Online Orders, Impacts US Operations
Cybersecurity
Krispy Kreme Cyberattack Disrupts Online Orders, Impacts US Operations
Mitchell Langley December 11, 2024
Krispy Kreme Cyberattack: A Detailed Look at the Incident On November 29th, 2024, Krispy Kreme, Inc., the renowned American multinational ...
Ransomware Attack Cripples Leading Heart Surgery Device Maker, Artivion
News
Artivion, Leading US Heart Surgery Device Maker, Crippled by Ransomware Attack
Gabby Lee December 11, 2024
Artivion, a prominent heart surgery device manufacturer, suffered a ransomware attack on November 21st, causing operational disruptions and data theft. The incident involved file encryption ...
Equifax Data Breach Settlement Update Payments, Eligibility, and Identity Theft Recovery
News
Equifax Data Breach Settlement Update Payments, Eligibility, and Identity Theft Recovery
Mitchell Langley December 11, 2024
The Equifax data breach settlement offers compensation and identity theft recovery services to affected individuals. Payments are expected in December 2024, with identity theft services ...
Children's Hospital Colorado Hit with $500,000 Fine for HIPAA Violation Following Data Breach
News
Children’s Hospital Colorado Hit with $500,000 Fine for HIPAA Violation Following Data Breach
Mitchell Langley December 10, 2024
Children's Hospital Colorado was fined $500,000 by HHS for HIPAA violations related to two data breaches in 2017 and 2020, impacting over 10,000 patients' protected ...
Amergis Healthcare Staffing Data Breach: Compromised Email Accounts Expose Sensitive Consumer Information
News
Amergis Healthcare Staffing Data Breach: Compromised Email Accounts Expose Sensitive Consumer Information
Gabby Lee December 10, 2024
Amergis Healthcare Staffing, Inc. announced a data breach stemming from compromised email accounts, potentially exposing sensitive consumer information. The breach led to data breach notification ...
Electrica Cyberattack: Romanian Energy Giant Faces Ransomware Attack, Assures Customers of Safety
News
Electrica Cyberattack: Romanian Energy Giant Faces Ransomware Attack, Assures Customers of Safety
Mitchell Langley December 10, 2024
Romanian energy provider Electrica is battling a ransomware cyberattack, disrupting customer interactions but assuring critical systems remain unaffected. Authorities are investigating.
Data Breach Exposes 17,000 Hong Kong Residents' Data; EMSD Violates Privacy Ordinance
News
Data Breach Exposes 17,000 Hong Kong Residents’ Data; EMSD Violates Privacy Ordinance
Mitchell Langley December 9, 2024
The Office of the Privacy Commissioner for Personal Data uncovered a data breach by the Electrical and Mechanical Services Department (EMSD), exposing sensitive information of ...
Atrium Health Data Breach Impacts 585,000 Patients
News
Atrium Health Data Breach Impacts 585,000 Patients
Gabby Lee December 9, 2024
Atrium Health, a major healthcare provider, has disclosed a data security incident affecting 585,000 individuals. The cyberattack compromised sensitive personal information, raising concerns about patient ...
Anna Jaques Hospital Ransomware Breach Exposes Data of 300K Patients
News
Anna Jaques Hospital Ransomware Breach Exposes Data of 300K Patients
Mitchell Langley December 9, 2024
Anna Jaques Hospital, a Massachusetts-based healthcare provider, suffered a ransomware attack in December 2023, resulting in the exposure of sensitive data for over 316,000 patients. ...
Ryuk Ransomware: A Big Game Hunting Cyberthreat
Resources
Ryuk Ransomware: A Big Game Hunting Cyberthreat
Mitchell Langley December 6, 2024
Ryuk operates under a RaaS model, meaning the developers provide the ransomware to other cybercriminals who then carry out the attacks. The developers receive a ...
Lazarus Ransomware Group - The North Korean Cyber Menace
Resources
Lazarus Ransomware Group – The North Korean Cyber Menace
Gabby Lee December 6, 2024
Lazarus Group is a highly sophisticated and adaptable APT group with a diverse range of targets and objectives.
This Week In Cybersecurity: 2nd December to 06th December
News
This Week In Cybersecurity: 2nd December to 06th December
Mitchell Langley December 6, 2024
Alder Hey Cyber Attack: Two More Hospitals Fall Victim A significant cyberattack has disrupted Alder Hey Children’s Hospital and two ...
Chemonics 2023 Data Breach: 263,000 Individuals Affected
News
Chemonics 2023 Data Breach: 263,000 Individuals Affected
Gabby Lee December 6, 2024
Major USAID contractor Chemonics suffered a 2023 data breach exposing the personal information of over 263,000 individuals, including Social Security numbers and biometric data.
Black Basta Ransomware Breaches BT Conferencing
News
Black Basta Ransomware Breaches BT Conferencing
Mitchell Langley December 6, 2024
BT Conferencing division was hit by a Black Basta ransomware attack, resulting in the immediate shutdown of affected servers. The attackers claim to have stolen ...
Deloitte Hacked: Over 1TB Stolen in Cyberattack
News
Deloitte Hacked: Over 1TB Stolen in Cyberattack
Mitchell Langley December 5, 2024
Deloitte UK faces a major alleged cyber incident, with the Brain Cipher ransomware gang claiming to have stolen over 1TB of data. The attack follows ...
Salt Typhoon: Chinese Hacking Group Behind Metadata Theft Targets US Telecoms
Cybersecurity
Salt Typhoon: Chinese Hacking Group Behind Metadata Theft Targets US Telecoms
Gabby Lee December 5, 2024
The US blames the Chinese hacking group, Salt Typhoon, for a massive metadata theft impacting US telecoms and government officials, prompting China's denial and accusations ...
Application Security
Chrome 149 Patches 28 Flaws, Including 12 Use-After-Free Bugs
Gabby Lee June 12, 2026
Cybersecurity
Kyushu Electric Loses Drive With Data on 10.9M Customers
Mitchell Langley June 12, 2026
Blog
Triple Extortion Ransomware: How It Works and How to Stop It
Andrew Doyle June 12, 2026
Cybersecurity
Europol Dismantles AudiA6 Crypto Laundering Service
Gabby Lee June 12, 2026

TOP CYBERSECURITY HEADLINES

Cybersecurity
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Application Security
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
Application Security
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers

This Week’s Security Spotlight

Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
Application Security
SAP Patches CVSS 9.9 SAML Flaw and ABAP Memory Corruption
Andrew Doyle June 10, 2026
Application Security
Veeam CVE-2026-44963 Exposes Backup Servers to Low-Privilege RCE
Gabby Lee June 10, 2026
Application Security
Claude Opus Finds 4-Year Zcash Flaw Enabling Silent Coin Forgery
Gabby Lee June 8, 2026
More In News
Trending
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT
5,000 Election Phishing Domains Pre-Stage US Midterm Attacks
PSNI Phone Number Spoofed in Gift Card Vishing Campaign
PSNI Phone Number Spoofed in Gift Card Vishing Campaign

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Silk Typhoon Strikes: From Direct Breaches to Stealthy Supply Chain Attacks
March 6, 2025
Podcasts
Tracking Stingrays: How Rayhunter Shields Your Mobile Privacy
March 6, 2025
Podcasts
AI-Generated Video of YouTube’s CEO Used In Phishing Attack
March 5, 2025

Cyber Security News

Aikido Security Secures $60 Million Investment at $1 Billion Valuation
Cybersecurity
Aikido Security Secures $60 Million Investment at $1 Billion Valuation
January 15, 2026
PLUGGYAPE Malware Targets Ukraine's Defense Amid Rising Cyber Threats
Cybersecurity
PLUGGYAPE Malware Targets Ukraine’s Defense Amid Rising Cyber Threats
January 15, 2026
Verizon Wireless Faces Widespread U.S. Outage and Service Issues
Cybersecurity
Verizon Wireless Faces Widespread U.S. Outage and Service Issues
January 15, 2026
GoBruteforcer Botnet Exploits Weak Server Credentials to Target Crypto Ventures
Cybersecurity
GoBruteforcer Botnet Exploits Weak Server Credentials to Target Crypto Ventures
January 15, 2026
Chrome Extension Impersonates Trading Tool to Steal MEXC API Keys
Application Security
Chrome Extension Impersonates Trading Tool to Steal MEXC API Keys
January 14, 2026
Android Users Encounter Issue with Volume Buttons When Accessibility Features are Enabled
Application Security
Android Users Encounter Issue with Volume Buttons When Accessibility Features are Enabled
January 14, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
April 16, 2025
Skyward Specialty Insurance Group reports a data breach involving unauthorized access to sensitive personal information, prompting investigations and notifications to affected individuals.
DaVita Confirms Ransomware Attack, Activates Containment Measures
April 16, 2025
DaVita, a major dialysis provider, confirmed a ransomware attack impacting operations. Patient care continues as investigations progress and potential links to the Landmark Admin data ...
Landmark Admin Data Breach: 1.6 Million Affected Individuals
April 16, 2025
Landmark Admin's data breach has expanded to affect over 1.6 million individuals, compromising sensitive personal information and prompting enhanced security measures.​
Inside Security News : GitHub Supply Chain Attacks, Ransomware Defense, and the Future of Cloud Security
April 15, 2025
In this deep-dive episode, we untangle some of today’s most critical cybersecurity threats—from GitHub’s complex quadruple supply chain attack to the rising concerns over Kubernetes ...
Hertz Data Breach: Customer Information and Driver’s Licenses Compromised in Cleo Zero-Day Attack
April 15, 2025
Hertz confirms a data breach exposing customer data due to Cleo zero-day exploits. Clop ransomware gang leaked some of the stolen information on their site. ...
B.C. Healthcare Data Breach Exposes 28,000 SINs; Leads to CRA Account Hacks and Identity Theft
April 15, 2025
A massive Interior Health data breach in B.C. exposed 28,000 Social Insurance Numbers, leading to hacked CRA accounts, identity theft, and fraudulent tax filings.
Planned Parenthood Data Breach Exposes Sensitive Information of 1.6 Million Patients Across 30 States
April 15, 2025
A data breach at a Planned Parenthood lab vendor exposed personal, financial, and health information of 1.6 million people across 30 states in October 2024.
Conduent Confirms Client Data Breach from January 2025 Cyberattack
April 15, 2025
Conduent confirms that client data was stolen during a January 2025 cyberattack, involving personal information of end-users. The company is notifying affected clients accordingly.
Qilin Ransomware Gang Claims Attack on SK Group, Steals 1TB of Corporate Data
April 14, 2025
Qilin ransomware gang claims responsibility for cyberattack on SK Group, stealing 1TB of data from the South Korean conglomerate with deep investments in U.S. industries. ...
Next.js Security Vulnerability: Middleware Bypass (CVE-2025-29927)
April 14, 2025
Is your web app truly secure? In this episode, we break down a critical NextJS vulnerability (CVE-2025-29927) that could allow attackers to bypass authentication and ...
Mercury Corp. Data Breach Exposes Personal Information of Thousands in Aerospace Manufacturing Sector
April 14, 2025
A cyberattack targeting Mercury Corp. exposed sensitive personal information of over 3,000 individuals, including Social Security and driver’s license numbers, in a one-day breach.
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
April 14, 2025
Hacker forum Cracked is back online after an FBI takedown, reactivating its services under a new domain with a fresh admin and millions of users.
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
April 14, 2025
A hacker claims to have breached Wolters Kluwer, leaking sensitive contact data linked to Fortune 500 firms and global enterprises. The company is investigating.
This Week In Cybersecurity: April 14th to April 18th
April 14, 2025
This week in cybersecurity highlights critical incidents, including multiple data breaches affecting educational and legal institutions, the resurgence of the Mirai botnet, and the evolving ...
IKEA Ransomware Attack Cost Fourlis Group Millions in Revenue
April 14, 2025
Cybersecurity incident disrupted IKEA operations across multiple countries just before Black Friday The IKEA ransomware attack that struck just two days before Black Friday in ...
Neptune RAT Malware Spreading Through YouTube and GitHub, Targeting Windows PCs
April 10, 2025
Neptune RAT malware is spreading through YouTube and GitHub, infecting Windows PCs. This dangerous Trojan allows hackers complete system control, demanding immediate action from businesses ...
FortiSwitch Flaw Allows Remote Admin Password Changes
April 10, 2025
FortiSwitch vulnerability (CVE-2024-48887) lets attackers remotely change admin passwords. Fortinet released patches; immediate updates are crucial.
Oracle Denies Major Cloud Breach, Confirms Hack of “Obsolete Servers”
April 10, 2025
Oracle denies a major cloud breach, confirming instead a hack of obsolete servers. No Oracle Cloud customer data was compromised, the company claims.
Hackers Exploit SSRF Bug in EC2-Hosted Sites to Steal AWS Credentials
April 10, 2025
Hackers exploited SSRF bugs in EC2-hosted sites to steal AWS credentials, accessing EC2 Metadata and potentially IAM credentials via IMDSv1. This highlights the ongoing threat ...
Western Sydney University Data Breach Exposes 10,000 Student Records
April 10, 2025
Western Sydney University confirms a data breach exposing the personal information of 10,000 students. The university is investigating and has contacted authorities.
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Maine AG Portal Abused to Post Fabricated Breach Notices
Fortinet FortiSandbox CVE-2026-25089 Allows Unauthenticated RCE
OpenSSL Patches 16 Flaws Including Heap Use-After-Free RCE Risk
Akira Claims Industrial Finisher, NJ Country Club, Architecture Firm
Chaos Ransomware Lists Airespring as Iranian False-Flag History Looms
Shai-Hulud Hades Wave Poisons 29 Bioinformatics PyPI Packages
Oracle PeopleSoft CVE-2026-35273: ShinyHunters Breaches 100+ Orgs
Nottingham University Breach Exposes Data on 454,600 Students
FBI Seizes 13 Chinese Spy Sites Targeting U.S. Clearance Holders
China-Linked JDY Botnet Hits 1,500 Devices Targeting U.S. Military
CISA BOD 26-04 Mandates 3-Day Patch Window for Federal Agencies