Main Menu
Cyber Security
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Triple Extortion Ransomware: How It Works and How to Stop It
Chrome 149 Patches 28 Flaws, Including 12 Use-After-Free Bugs
OpenClaw AI Agent Hijacked via Malicious vCard Injection
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Maine AG Portal Abused to Post Fabricated Breach Notices
Fortinet FortiSandbox CVE-2026-25089 Allows Unauthenticated RCE
OpenSSL Patches 16 Flaws Including Heap Use-After-Free RCE Risk
Akira Claims Industrial Finisher, NJ Country Club, Architecture Firm
Chaos Ransomware Lists Airespring as Iranian False-Flag History Looms
Shai-Hulud Hades Wave Poisons 29 Bioinformatics PyPI Packages
Oracle PeopleSoft CVE-2026-35273: ShinyHunters Breaches 100+ Orgs
Nottingham University Breach Exposes Data on 454,600 Students
FBI Seizes 13 Chinese Spy Sites Targeting U.S. Clearance Holders
China-Linked JDY Botnet Hits 1,500 Devices Targeting U.S. Military
CISA BOD 26-04 Mandates 3-Day Patch Window for Federal Agencies
North Korean Hackers Exploit Chrome Zero-Day to Deploy Rootkit
Cybersecurity
North Korean Hackers Exploit Chrome Zero-Day to Deploy Rootkit
Andrew Doyle September 2, 2024
North Korean hackers have successfully exploited a recently patched Google Chrome zero-day vulnerability (CVE-2024-7971) to deploy the FudModule rootkit.
Voldemort Malware: A New Threat Abusing Google Sheets for Data Exfiltration
Cybersecurity
Voldemort Malware: A New Threat Abusing Google Sheets for Data Exfiltration
Gabby Lee September 2, 2024
A new malware campaign has emerged, targeting organizations across the globe with a previously undocumented backdoor named "Voldemort."
Park 'N Fly Data Breach Impacts Nearly a Million Customers: Sensitive Information Compromised in Cyberattack
News
Park ‘N Fly Data Breach Impacts Nearly a Million Customers: Sensitive Information Compromised in Cyberattack
Mitchell Langley August 30, 2024
Park 'N Fly, a Canadian airport parking service, has confirmed a data breach affecting nearly a million customers. The cyberattack, occurring between July 11-13, 2024, ...
Cucamonga Valley Water District Hit by Ransomware Attack
News
Cucamonga Valley Water District Hit by Ransomware Attack
Gabby Lee August 30, 2024
The Cucamonga Valley Water District (CVWD) is investigating a ransomware attack that paralyzed its phone system earlier this month, preventing customers from making phone payments. ...
US Marshals Service Disputes Ransomware Gang's Breach Claims
News
US Marshals Service Disputes Ransomware Gang’s Breach Claims
Mitchell Langley August 28, 2024
US Marshals Service Denies Recent Breach
BlackSuit Ransomware Exposes Data of 950,000 Individuals in Software Vendor Breach
News
BlackSuit Ransomware Exposes Data of 950,000 Individuals in Software Vendor Breach
Gabby Lee August 28, 2024
A Major Data Breach Hits Atlanta-Based Software Solutions Provider, BlackSuit Ransomware Exposes Data of 950,000.
McDonald's Instagram Hacked in $700,000 Fake Crypto Scheme
News
McDonald’s Instagram Hacked in $700,000 Fake Crypto Scheme
Mitchell Langley August 27, 2024
A brazen cyberattack targeting McDonald's social media accounts has resulted in a $700,000 loss for unsuspecting investors.
Connecticut Nonprofit Pays $1 Million Ransom After Sophisticated Cyberattack
News
Connecticut Nonprofit Pays $1 Million Ransom After Sophisticated Cyberattack
Gabby Lee August 27, 2024
A Connecticut-based nonprofit, the National Association for Amateur Radio (ARRL), has fallen victim to a sophisticated cyberattack that cost them $1 million in ransom.
Sea-Tac Airport Hit by Cyberattack, Disrupting Services and Websites
News
Sea-Tac Airport Hit by Cyberattack, Disrupting Services and Websites
Mitchell Langley August 27, 2024
Airport and Port of Seattle Systems Down, Baggage Handling Disrupted after Sea-Tac Airport faces Cyberattack.
Patelco Credit Union Suffers Ransomware Data Breach, Affecting 726,000 Customers
News
Patelco Credit Union Suffers Ransomware Data Breach, Affecting 726,000 Customers
Mitchell Langley August 27, 2024
Patelco Credit Union Faces Ransomware Attack and Data Theft
French Government Websites Under Siege Following Telegram CEO Arrest
Cybersecurity
French Government Websites Under Siege Following Telegram CEO Arrest
Gabby Lee August 27, 2024
A Cyberattack in the Wake of Durov's Detention
This Week in Cybersecurity: 19th August to 23rd August, Halliburton Hit by Cyberattack
Cybersecurity
This Week in Cybersecurity: 19th August to 23rd August, Halliburton Hit by Cyberattack
Mitchell Langley August 24, 2024
Halliburton Hit by Cyberattack, Toyota, Microchip, CannonDesign, and Flint all faced significant cyberattacks in recent months, highlighting the growing threat of ransomware and data breaches. ...
The Financial Fallout of Ransomware in 2024
Blog
The Financial Fallout of Ransomware in 2024
Mitchell Langley August 23, 2024
Ransomware has proved an immensely profitable criminal model in 2024. Statistics show ransoms totalling over $450 million already, putting this year on track to surpass ...
Qilin Ransomware Now Steals Credentials from Chrome Browsers
News
Qilin Ransomware Now Steals Credentials from Chrome Browsers
Mitchell Langley August 23, 2024
The Qilin ransomware group has adopted a dangerous new tactic, deploying a custom stealer to steal account credentials stored in Google Chrome browsers. This alarming ...
Halliburton Hit by Cyberattack, Operations Disrupted
News
Halliburton Hit by Cyberattack, Operations Disrupted
Mitchell Langley August 23, 2024
Halliburton Oilfield Services Company Faces Cyber Disruption
QNAP Bolsters NAS Security with Enhanced Ransomware Protection in Latest QTS Update
Cybersecurity
QNAP Bolsters NAS Security with Enhanced Ransomware Protection in Latest QTS Update
Gabby Lee August 23, 2024
QNAP's New Security Center Aims to Safeguard Against Growing Ransomware Threats
Toyota Confirms That Third-Party Data Breach Impacted its Customers
News
Toyota Confirms That Third-Party Data Breach Impacted its Customers
Gabby Lee August 22, 2024
Toyota has confirmed that customer data was exposed in a third-party data breach after a threat actor leaked an archive of 240GB of stolen data ...
CannonDesign Confirms Avos Locker Ransomware Data Breach
News
CannonDesign Confirms Avos Locker Ransomware Data Breach
Mitchell Langley August 22, 2024
CannonDesign, a renowned architectural, engineering, and consulting firm with a portfolio of high-profile projects, has confirmed a data breach that occurred in early 2023.
Microchip Technology Cyberattack: Manufacturing Incapacitated  
News
Microchip Technology Cyberattack: Manufacturing Incapacitated  
Mitchell Langley August 22, 2024
Microchip Technology Cyberattack Disrupts Manufacturing
What is Maze Ransomware? A Comprehensive Guide for Enterprises
Blog
What is Maze Ransomware? A Comprehensive Guide for Enterprise Businesses
Gabby Lee August 21, 2024
This comprehensive guide covers the threat posed by Maze ransomware. It explores infection vectors, encryption process, extortion tactics, and examples of high-profile victims.
Application Security
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Andrew Doyle June 15, 2026
Application Security
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Andrew Doyle June 15, 2026
Cybersecurity
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Andrew Doyle June 15, 2026
Cybersecurity
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Andrew Doyle June 15, 2026

TOP CYBERSECURITY HEADLINES

Application Security
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
Application Security
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Cybersecurity
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
Application Security
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches

This Week’s Security Spotlight

Application Security
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Mitchell Langley June 15, 2026
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
Application Security
SAP Patches CVSS 9.9 SAML Flaw and ABAP Memory Corruption
Andrew Doyle June 10, 2026
Application Security
Veeam CVE-2026-44963 Exposes Backup Servers to Low-Privilege RCE
Gabby Lee June 10, 2026
More In News
Trending
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT
5,000 Election Phishing Domains Pre-Stage US Midterm Attacks
PSNI Phone Number Spoofed in Gift Card Vishing Campaign
PSNI Phone Number Spoofed in Gift Card Vishing Campaign

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

NordVPN Denies Salesforce Server Breach Claims, Clarifying Access to Dummy Data
Application Security
NordVPN Denies Salesforce Server Breach Claims, Clarifying Access to Dummy Data
January 6, 2026
CISA Expands Catalog to Include New Vulnerabilities Exploited by Ransomware Groups
Cybersecurity
CISA Expands Catalog to Include New Vulnerabilities Exploited by Ransomware Groups
January 6, 2026
Kimwolf Botnet A New Threat to Millions of Android Devices
Cybersecurity
Kimwolf Botnet: A New Threat to Millions of Android Devices
January 6, 2026
Ledger Breach Due to Global-e Attack Compromises Customer Data
Data Security
Ledger Breach Due to Global-e Attack Compromises Customer Data
January 6, 2026
Russia-Aligned Threat Actor UAC-0184 Utilizes Viber to Target Ukrainian Military and Government
Application Security
Russia-Aligned Threat Actor UAC-0184 Utilizes Viber to Target Ukrainian Military and Government
January 6, 2026
Sedgwick Breach Raises Concerns Over Security of Government Data Transfers
Data Security
Sedgwick Breach Raises Concerns Over Security of Government Data Transfers
January 6, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Data Breach at DISA Impacts 3.3 Million Compromising Social Security Numbers and Financial Data
February 26, 2025
DISA Global Solutions, a US drug testing firm, suffered a data breach exposing the sensitive data of 3.3 million individuals. Social Security numbers and financial ...
Have You Been Pwned As Well? The Data Breach Notification Service Adds 284 Million Accounts as Stolen by Infostealer Malware
February 26, 2025
Have I Been Pwned added 284 million accounts compromised by infostealer malware found on a Telegram channel. The breach includes emails, passwords, and website data.
Orange Group Confirms Data Breach, Hacker Leaks Internal Documents
February 25, 2025
A hacker leaked thousands of Orange Group's internal documents. The breach compromised user records and employee data. Orange Group confirmed the incident.
Boys & Girls Clubs of Tennessee Valley Data Breach Exposes Sensitive Information
February 25, 2025
The Boys & Girls Clubs of the Tennessee Valley experienced a data breach between November 19-23, 2024, exposing personal data including Social Security numbers and ...
IT Service Provider Hack in Russia Puts Financial Sector on High Alert
February 25, 2025
Russia's financial sector faces a significant threat after a major IT service provider, LANIT, was hacked. Authorities urge password and credential changes.
Lucent Health Data Breach: Law Firm Investigates Legal Claims
February 25, 2025
A data breach at Lucent Health exposed sensitive personal information, including Social Security numbers and medical records. The Murphy Law Firm is investigating legal claims ...
Genea IVF Clinic Data Leak: Medical Records, Addresses, and Phone Numbers at Risk
February 24, 2025
Genea, a major Australian IVF provider, suffered a data breach on February 14th. Sensitive patient data, including medical records and contact information, was compromised. The ...
CISA Warns of Craft CMS Code Injection Flaw
February 24, 2025
CISA warns of an actively exploited Craft CMS code injection flaw (CVE-2025-23209), urging users to upgrade to patched versions 5.5.8 and 4.13.8 or later.
Vivifi Data Leak: Millions of Loan Applicants’ Data Exposed
February 24, 2025
A massive vivifi data leak exposed 36 million files containing sensitive personal data of Indian loan applicants, including passports and bank details, due to a ...
Bybit Hack: $1.5 Billion Ethereum Theft in Biggest Crypto Heist Ever
February 24, 2025
Hackers stole $1.5 billion in Ethereum from Bybit, the world's second-largest crypto exchange. The heist is the largest digital theft ever recorded. Bybit is offering ...
Cyber Attack on Rainbow District School Board Had Personal Data Stolen in Data Leak
February 24, 2025
Rainbow District School Board confirms a cyber attack resulting in a data breach, exposing staff and student personal data, including social insurance numbers and bank ...
This Week In Cybersecurity: 17th February to 21st February
February 21, 2025
This week highlights significant cybersecurity incidents, including the rise of BlackLock ransomware, a data breach at Insight Partners, and the emergence of FinalDraft malware. Stay ...
Chinese Hackers from Salt Typhoon Deploy Custom Malware in US Telecom Cyberespionage Campaign
February 21, 2025
Chinese state-sponsored hackers, the Salt Typhoon group, used custom malware, JumbledPath, to infiltrate US telecom networks, stealing data and monitoring communications.
CISA and FBI Report Ghost Ransomware Breached 70 Countries
February 21, 2025
CISA and the FBI warn of a global Ghost ransomware attack impacting organizations across 70 countries, exploiting known vulnerabilities in various software and systems. Immediate ...
Black Basta Ransomware Data Leak Exposes Internal Communications and Targets
February 21, 2025
The Black Basta ransomware gang's internal chat logs leaked, exposing victims, tactics, and key members. The data leak reveals internal conflicts and potential Russian bank ...
Darcula PhaaS 3.0 Auto-Generates Phishing Kits for Any Brand
February 21, 2025
Darcula PhaaS, a phishing-as-a-service platform, now offers a DIY phishing kit generator. This allows users to easily create phishing attacks targeting any brand, significantly increasing ...
The Rise of AI Agents: A New Era of AI Cyberthreats
February 20, 2025
AI agents are transforming cybersecurity, enabling autonomous attacks that overwhelm defenses. This new AI cyberthreat demands proactive strategies and advanced defenses to mitigate the risks.
Cayuga Medical Center Suffers Cyberattack, Operations Temporarily Disrupted
February 20, 2025
Cayuga Medical Center experienced a cyberattack on February 19th, temporarily halting ER admissions and diverting ambulances. The hospital is now fully operational.
Australian Fertility Services Giant Genea Hit by Major Security Breach
February 20, 2025
Australian fertility services giant Genea suffered a significant security breach, exposing potentially sensitive patient data. The company is investigating the extent of the unauthorized ...
NailaoLocker Ransomware Targets EU Healthcare Sector in a Cyberattack
February 20, 2025
NailaoLocker ransomware, a newly discovered threat, targeted EU healthcare organizations between June and October 2024, exploiting a Check Point vulnerability. The attack leveraged ShadowPad and ...
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Triple Extortion Ransomware: How It Works and How to Stop It
Chrome 149 Patches 28 Flaws, Including 12 Use-After-Free Bugs
OpenClaw AI Agent Hijacked via Malicious vCard Injection
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Maine AG Portal Abused to Post Fabricated Breach Notices