Main Menu
Cyber Security
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Maine AG Portal Abused to Post Fabricated Breach Notices
Fortinet FortiSandbox CVE-2026-25089 Allows Unauthenticated RCE
OpenSSL Patches 16 Flaws Including Heap Use-After-Free RCE Risk
Akira Claims Industrial Finisher, NJ Country Club, Architecture Firm
Chaos Ransomware Lists Airespring as Iranian False-Flag History Looms
Shai-Hulud Hades Wave Poisons 29 Bioinformatics PyPI Packages
Oracle PeopleSoft CVE-2026-35273: ShinyHunters Breaches 100+ Orgs
Nottingham University Breach Exposes Data on 454,600 Students
FBI Seizes 13 Chinese Spy Sites Targeting U.S. Clearance Holders
China-Linked JDY Botnet Hits 1,500 Devices Targeting U.S. Military
CISA BOD 26-04 Mandates 3-Day Patch Window for Federal Agencies
RoguePlanet Zero-Day Gives Attackers SYSTEM on Patched Windows
Ivanti Sentry CVE-2026-10520 Actively Exploited, Devices Backdoored
Langflow CVE-2026-5027: Path Traversal Becomes Unauthenticated RCE
WorldLeaks Claims Apple Supplier Tata Electronics and Two More Firms
What is Cloud Detection and Response (CDR) and How Does it Work
Google Patches 5th Chrome Zero-Day; V8 Flaw Chains for OS Access
LiteLLM CVE-2026-42271 Added to CISA KEV: AI API Keys at Risk
France’s Tchap Messaging App Breached, 643K Messages Exposed
SAP Patches CVSS 9.9 SAML Flaw and ABAP Memory Corruption
Exploit Published for Linux Kernel nf_tables CVE-2026-23111
This Week In Cybersecurity: 23rd September to 27th September
Cybersecurity
This Week In Cybersecurity: 23rd September to 27th September
Gabby Lee September 27, 2024
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack Harvey Nichols has confirmed a data breach affecting ...
Meta Fined €91 Million: DPC Concludes Inquiry into Data Breach
News
Meta Fined €91 Million: DPC Concludes Inquiry into Data Breach
Mitchell Langley September 27, 2024
Meta Platforms Ireland Limited has been fined €91 million by the Data Protection Commission for failing to protect user passwords adequately, highlighting the importance of ...
MC2 Data Leak: Over 100 Million Americans Exposed in Massive Data Breach
News
MC2 Data Leak: Over 100 Million Americans Exposed in Massive Data Breach
Mitchell Langley September 27, 2024
The MC2 Data breach has exposed the sensitive personal information of over 100 million Americans, representing nearly a third of the US population.
FBI and Homeland Security Investigate Critical Water Facility Cyberattack in Kansas
News
FBI and Homeland Security Investigate Critical Water Facility Cyberattack in Kansas
Mitchell Langley September 27, 2024
FBI and Homeland Security investigate a Kansas water facility cyberattack, forcing manual operations but ensuring uninterrupted service. The incident highlights critical infrastructure vulnerabilities.
AutoCanada Ransomware Attack: Employee Data Compromised
News
AutoCanada Ransomware Attack: Employee Data Compromised
Mitchell Langley September 25, 2024
AutoCanada's August ransomware attack, claimed by Hunters International, may have exposed employee data including payroll, addresses, and social security numbers.
US Capitol Dark Web Cyber Attack: Thousands of Staffers' Data Leaked
News
US Capitol Dark Web Cyber Attack: Thousands of Staffers’ Data Leaked
Mitchell Langley September 25, 2024
A massive Dark Web Cyber Attack on the US Capitol has exposed personal information of over 3,000 congressional staffers.
MoneyGram Cyberattack: Outage Enters Day Three, Ransomware Suspected
News
MoneyGram Cyberattack: Outage Enters Day Three, Ransomware Suspected
Mitchell Langley September 25, 2024
MoneyGram, a leading global money transfer company, is facing a major outage that has disrupted its systems and payment services for three days. The company ...
Dell Data Breached Again! Hackers Claim Second Attack Within a Week, Exposing 3.5GB of Data
News
Dell Data Breached Again! Hackers Claim Second Attack Within a Week, Exposing 3.5GB of Data
Gabby Lee September 25, 2024
Hackers claim a second Dell data breach within a week, accessing 3.5GB of company data, including internal infrastructure information and user credentials.
The Chaser Cyberattack: Hong Kong Diaspora Media in Britain Reports 'Government-Backed' Attacks
News
The Chaser Cyberattack: Hong Kong Diaspora Media in Britain Reports ‘Government-Backed’ Attacks
Gabby Lee September 25, 2024
A Hong Kong diaspora news website in Britain, The Chaser, has reported a "government-backed" cyberattack targeting its company email, raising concerns about the growing pressure ...
Kansas Water Facility Cyberattack: Arkansas City Water Treatment Plant Targeted
News
Kansas Water Facility Cyberattack: Arkansas City Water Treatment Plant Targeted
Gabby Lee September 25, 2024
Hackers targeted the water treatment plant in Arkansas City, Kansas, prompting a federal investigation. The city assured residents that the water supply is safe, and ...
Dell Investigates Data Breach Claims After Hacker Leaks Employee Info
News
Dell Investigates Data Breach Claims After Hacker Leaks Employee Info
Mitchell Langley September 25, 2024
Dell Data Breach: Hacker Leaks Employee Information, Company Investigates
23andMe Board Resigns Amidst CEO's Takeover Bid: A Battle for Control
Cybersecurity
23andMe Board Resigns Amidst CEO’s Takeover Bid: A Battle for Control
Gabby Lee September 20, 2024
All independent directors of 23andMe have resigned, citing disagreements with CEO Anne Wojcicki's plan to take the company private. This leaves Wojcicki as the sole ...
CrowdStrike Outage Sparks Security Vendor Switches: Businesses Seek Resilience After Widespread Downtime
News
CrowdStrike Outage Sparks Security Vendor Switches: Businesses Seek Resilience After Widespread Downtime
Mitchell Langley September 20, 2024
A CrowdStrike outage in July left millions of Windows devices offline, prompting some businesses to switch security vendors.
Change Healthcare Data Breach Class Action Lawsuits Update
Cybersecurity
Change Healthcare Data Breach Class Action Lawsuits Update
Gabby Lee September 20, 2024
Change Healthcare, a major healthcare technology company, suffered a massive data breach in February 2024, exposing the personal and medical information of an estimated 100 ...
Change Healthcare Data Breach Letter: What You Need to Know and How to Protect Yourself
News
Change Healthcare Data Breach Letter: What You Need to Know and How to Protect Yourself
Mitchell Langley September 20, 2024
Many in the Ozarks have received letters from Change Healthcare notifying them of a data breach. The letter details the breach, which occurred in February, ...
Disney’s Slack Data Breach Forces Disney’s to Ditch Slack
News
Disney’s Slack Data Breach Forces Disney’s to Ditch Slack
Gabby Lee September 20, 2024
Disney is severing ties with Slack after a major data breach exposed sensitive company information, highlighting the growing cybersecurity threat landscape.
DFA Data Breach: Cybersecurity Issues Put 28 Million Passports at Risk
News
DFA Data Breach: Cybersecurity Issues Put 28 Million Passports at Risk
Mitchell Langley September 20, 2024
The Department of Foreign Affairs (DFA) in the Philippines faces a potential DFA data breach affecting over 28 million passport holders due to a lack ...
38,000 Tools Shoppers Compromised in Total Tools Data Breach
News
38,000 Tools Shoppers Compromised in Total Tools Data Breach
Gabby Lee September 20, 2024
Australian hardware retailer Total Tools has confirmed a data breach affecting 38,000 customers, potentially exposing sensitive information including names, login details, and credit card information.
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack
News
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack
Mitchell Langley September 20, 2024
High-end British department store Harvey Nichols has confirmed a data breach affecting its customers, exposing personal information including names, addresses, phone numbers, and email addresses. ...
What is Secure by Design? A Guide for Enterprise Businesses
Application Security
What is Secure by Design? A Guide for Enterprise Businesses
Gabby Lee September 20, 2024
Secure by Design is a philosophy that emphasizes building security into the very core of software development, from the initial conceptualization to deployment and beyond. ...
Application Security
Chrome 149 Patches 28 Flaws, Including 12 Use-After-Free Bugs
Gabby Lee June 12, 2026
Cybersecurity
Kyushu Electric Loses Drive With Data on 10.9M Customers
Mitchell Langley June 12, 2026
Blog
Triple Extortion Ransomware: How It Works and How to Stop It
Andrew Doyle June 12, 2026
Cybersecurity
Europol Dismantles AudiA6 Crypto Laundering Service
Gabby Lee June 12, 2026

TOP CYBERSECURITY HEADLINES

Cybersecurity
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Application Security
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
Application Security
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers

This Week’s Security Spotlight

Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
Application Security
SAP Patches CVSS 9.9 SAML Flaw and ABAP Memory Corruption
Andrew Doyle June 10, 2026
Application Security
Veeam CVE-2026-44963 Exposes Backup Servers to Low-Privilege RCE
Gabby Lee June 10, 2026
Application Security
Claude Opus Finds 4-Year Zcash Flaw Enabling Silent Coin Forgery
Gabby Lee June 8, 2026
More In News
Trending
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT
5,000 Election Phishing Domains Pre-Stage US Midterm Attacks
PSNI Phone Number Spoofed in Gift Card Vishing Campaign
PSNI Phone Number Spoofed in Gift Card Vishing Campaign

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

Chrome Extensions Masquerading as AITOPIA Pose Risk
Application Security
Chrome Extensions Masquerading as AITOPIA Pose Risk
January 7, 2026
Microsoft Alters Exchange Online User Email Limitations After Customer Pushback
Cybersecurity
Microsoft Alters Exchange Online User Email Limitations After Customer Pushback
January 7, 2026
European Space Agency Confronts Repeated Data Breaches with Legal Action
Data Security
European Space Agency Confronts Repeated Data Breaches with Legal Action
January 7, 2026
Generative AI Elevates Active Directory Password Attacks
Identity and Access Management
Generative AI Elevates Active Directory Password Attacks
January 7, 2026
Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk
Cybersecurity
Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk
January 7, 2026
Chrome Extensions Compromise Privacy by Exfiltrating ChatGPT and DeepSeek Conversations
Application Security
Chrome Extensions Compromise Privacy by Exfiltrating ChatGPT and DeepSeek Conversations
January 7, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Inside the $635K Taylor Swift Ticket Heist: Cybercrime, Loopholes, and Insider Threats
March 7, 2025
A cybercrime operation involving the theft and resale of $635,000 worth of concert tickets—primarily for Taylor Swift’s Eras Tour—has been uncovered. New York prosecutors revealed ...
Akira Ransomware Uses Webcam to Bypass EDR
March 7, 2025
The Akira ransomware gang has found a way to bypass EDR by exploiting unsecured webcams, demonstrating a new level of sophistication in cyberattacks.
Microsoft Reports Malvertising Campaign Impacted 1 Million PCs
March 7, 2025
Microsoft reports a large malvertising campaign has impacted nearly one million PCs, using malicious ads on streaming sites to deploy malware.
Taylor Swift Ticket Scam: Cybercrime Crew Steals $635,000
March 7, 2025
A cybercrime crew stole $635,000 worth of concert tickets, primarily for Taylor Swift's Eras Tour, exploiting a StubHub vendor loophole. Two employees were arrested and ...
Scott County Breach: Email Account Compromises Patient Data
March 7, 2025
The Scott County breach involved unauthorized access to email accounts, compromising protected health information for thousands of individuals across Iowa.
Silk Typhoon Strikes: From Direct Breaches to Stealthy Supply Chain Attacks
March 6, 2025
In this episode, we take an in-depth look at Silk Typhoon, the Chinese state-sponsored cyber espionage group that’s radically shifting its tactics. Moving away from ...
12,000 API Keys and Passwords Found in AI Training Datasets
March 6, 2025
Nearly 12,000 API keys and passwords were discovered in the Common Crawl dataset used for training AI models, highlighting significant security risks for enterprises. Many ...
Open-Source Tool Rayhunter Helps Users Detect Stingray Attacks
March 6, 2025
The EFF has introduced Rayhunter, an open-source tool for detecting Stingray attacks, helping users safeguard their sensitive data from unauthorized access.
Fake BianLian Ransom Notes Mailed to US CEOs in Postal Mail Scam
March 6, 2025
Scammers are impersonating the BianLian group, mailing fake ransom notes to US CEOs, threatening data leaks unless Bitcoin payments are made.
BadBox Malware Disrupted on 500K Infected Android Devices
March 6, 2025
The BadBox malware disruption has impacted over 500,000 devices, revealing the urgency of addressing cybersecurity threats in low-cost Android devices.
Silk Typhoon Hackers Now Target IT Supply Chains to Breach Networks
March 6, 2025
The Silk Typhoon hackers have shifted tactics, now focusing on IT supply chains to infiltrate networks and exploit sensitive data across multiple industries.
YouTube Warns of AI-Generated Phishing Attacks Targeting Creators
March 6, 2025
AI-generated video of YouTube's CEO is being used in phishing attacks to steal creators' credentials. YouTube warns users to avoid suspicious private videos and links.
US Charges Chinese Hackers Targeting Critical Infrastructure Breaches
March 6, 2025
US charges Chinese state security officers and hackers from APT27 and i-Soon for global cyberattacks targeting critical infrastructure and government agencies since 2011.
Hunters International Claims Ransomware Attack on Tata Technologies: 1.4TB Data Breached
March 6, 2025
Hunters International ransomware claims responsibility for a major attack on Tata Technologies, stealing 1.4 TB of data and threatening to release it.
Black Basta and Cactus Ransomware: Shared Tactics and BackConnect Malware Connection
March 6, 2025
Black Basta and Cactus ransomware groups share similar tactics and use BackConnect malware, highlighting the need for robust cybersecurity measures in enterprise businesses.
Cisco Warns of BroadWorks Flaw Exposing Credentials
March 6, 2025
Cisco warns of a BroadWorks flaw that could allow unauthenticated attackers to access sensitive credentials. Users are advised to implement security measures.
Broadcom Fixes Three VMware Zero-Days Exploited in Attacks
March 6, 2025
Broadcom fixes three critical VMware zero-days exploited in attacks, enabling attackers to escape virtual machine sandboxes. Immediate patching is advised.
Major Data Breach at Lost & Found Tracking Site Exposes Over 800,000 Records
March 6, 2025
A massive data breach at Lost & Found, a German travel tracking firm, exposed over 800,000 records, including passport scans and driver's licenses, raising serious ...
Polish Space Agency Suffers Cyberattack, Takes Systems Offline
March 6, 2025
The Polish Space Agency (POLSA) disconnected its systems after a weekend cyberattack. The agency is working with national CSIRT teams to restore services and investigate ...
New Polyglot Malware Targets Aviation and Satellite Communication Firms
March 6, 2025
A new polyglot malware, Sosano, targets aviation and satellite communication firms in the UAE, enabling remote command execution and persistent access on infected devices.
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Maine AG Portal Abused to Post Fabricated Breach Notices
Fortinet FortiSandbox CVE-2026-25089 Allows Unauthenticated RCE
OpenSSL Patches 16 Flaws Including Heap Use-After-Free RCE Risk
Akira Claims Industrial Finisher, NJ Country Club, Architecture Firm
Chaos Ransomware Lists Airespring as Iranian False-Flag History Looms
Shai-Hulud Hades Wave Poisons 29 Bioinformatics PyPI Packages
Oracle PeopleSoft CVE-2026-35273: ShinyHunters Breaches 100+ Orgs
Nottingham University Breach Exposes Data on 454,600 Students
FBI Seizes 13 Chinese Spy Sites Targeting U.S. Clearance Holders
China-Linked JDY Botnet Hits 1,500 Devices Targeting U.S. Military
CISA BOD 26-04 Mandates 3-Day Patch Window for Federal Agencies