Main Menu
Cyber Security
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach
What Is Scareware? How Fake Security Warnings Lead to Real Malware
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Triple Extortion Ransomware: How It Works and How to Stop It
Chrome 149 Patches 28 Flaws, Including 12 Use-After-Free Bugs
OpenClaw AI Agent Hijacked via Malicious vCard Injection
Kyushu Electric Loses Drive With Data on 10.9M Customers
Anthropic Disputes Jailbreak Claim Against Claude Fable 5
Six Proto6 Flaws in protobuf.js Enable Node.js RCE
npm v12 Disables Auto-Run Scripts to Cut Supply Chain Risk
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Novo Nordisk Discloses Breach of Clinical Trials Patient Data
Europol Dismantles AudiA6 Crypto Laundering Service
Three LangGraph Flaws Chain to Remote Code Execution
OnyxC2 Stealer Targets 200+ Apps for $250 Per Month
Patelco Credit Union Suffers Ransomware Data Breach, Affecting 726,000 Customers
News
Patelco Credit Union Suffers Ransomware Data Breach, Affecting 726,000 Customers
Mitchell Langley August 27, 2024
Patelco Credit Union Faces Ransomware Attack and Data Theft
French Government Websites Under Siege Following Telegram CEO Arrest
Cybersecurity
French Government Websites Under Siege Following Telegram CEO Arrest
Gabby Lee August 27, 2024
A Cyberattack in the Wake of Durov's Detention
This Week in Cybersecurity: 19th August to 23rd August, Halliburton Hit by Cyberattack
Cybersecurity
This Week in Cybersecurity: 19th August to 23rd August, Halliburton Hit by Cyberattack
Mitchell Langley August 24, 2024
Halliburton Hit by Cyberattack, Toyota, Microchip, CannonDesign, and Flint all faced significant cyberattacks in recent months, highlighting the growing threat of ransomware and data breaches. ...
The Financial Fallout of Ransomware in 2024
Blog
The Financial Fallout of Ransomware in 2024
Mitchell Langley August 23, 2024
Ransomware has proved an immensely profitable criminal model in 2024. Statistics show ransoms totalling over $450 million already, putting this year on track to surpass ...
Qilin Ransomware Now Steals Credentials from Chrome Browsers
News
Qilin Ransomware Now Steals Credentials from Chrome Browsers
Mitchell Langley August 23, 2024
The Qilin ransomware group has adopted a dangerous new tactic, deploying a custom stealer to steal account credentials stored in Google Chrome browsers. This alarming ...
Halliburton Hit by Cyberattack, Operations Disrupted
News
Halliburton Hit by Cyberattack, Operations Disrupted
Mitchell Langley August 23, 2024
Halliburton Oilfield Services Company Faces Cyber Disruption
QNAP Bolsters NAS Security with Enhanced Ransomware Protection in Latest QTS Update
Cybersecurity
QNAP Bolsters NAS Security with Enhanced Ransomware Protection in Latest QTS Update
Gabby Lee August 23, 2024
QNAP's New Security Center Aims to Safeguard Against Growing Ransomware Threats
Toyota Confirms That Third-Party Data Breach Impacted its Customers
News
Toyota Confirms That Third-Party Data Breach Impacted its Customers
Gabby Lee August 22, 2024
Toyota has confirmed that customer data was exposed in a third-party data breach after a threat actor leaked an archive of 240GB of stolen data ...
CannonDesign Confirms Avos Locker Ransomware Data Breach
News
CannonDesign Confirms Avos Locker Ransomware Data Breach
Mitchell Langley August 22, 2024
CannonDesign, a renowned architectural, engineering, and consulting firm with a portfolio of high-profile projects, has confirmed a data breach that occurred in early 2023.
Microchip Technology Cyberattack: Manufacturing Incapacitated  
News
Microchip Technology Cyberattack: Manufacturing Incapacitated  
Mitchell Langley August 22, 2024
Microchip Technology Cyberattack Disrupts Manufacturing
What is Maze Ransomware? A Comprehensive Guide for Enterprises
Blog
What is Maze Ransomware? A Comprehensive Guide for Enterprise Businesses
Gabby Lee August 21, 2024
This comprehensive guide covers the threat posed by Maze ransomware. It explores infection vectors, encryption process, extortion tactics, and examples of high-profile victims.
CISA Warns of Critical Jenkins RCE Bug Exploited in Ransomware Attacks
News
CISA Warns of Critical Jenkins RCE Bug Exploited in Ransomware Attacks
Gabby Lee August 21, 2024
Jenkins RCE Vulnerability: (CISA) issues a critical warning regarding a serious Jenkins RCE Bug, a popular open-source automation server.
Toyota Data Breach Confirmed After 240GB of Stolen Data Leaked on Hacking Forum
News
Toyota Data Breach Confirmed After 240GB of Stolen Data Leaked on Hacking Forum
Mitchell Langley August 21, 2024
Automotive Giant Toyota Data Breached After Files Exposed Online
Cyber Resilience Your Lifeline Against Cyberattacks
Blog
Cyber Resilience: Your Lifeline Against Cyberattacks
Andrew Doyle August 19, 2024
Cyber resilience ensures that when a breach occurs, businesses are prepared to respond effectively, minimize damage, and recover swiftly.
Columbus Mayor Provides More Details on Ransomware Attack, Major Data Breach
News
Mayor Provides More Details on Columbus Ransomware Attack, Major Data Breach
Gabby Lee August 19, 2024
Columbus Ransomware Attack Compromises Personal Data of Half a Million Residents
Flint Reeling from Ransomware Attack, City Services Disrupted
News
Flint Reeling from Ransomware Attack, City Services Disrupted
Mitchell Langley August 19, 2024
The City of Flint, Michigan, is currently in the midst of a major crisis after falling victim to a ransomware attack on August 14, 2024. ...
This Week in Cybersecurity: 12th August to 16th August, National Public Data Breach Exposed Personal Information of Billions
Cybersecurity
This Week in Cybersecurity: 12th August to 16th August, National Public Data Breach Exposed Personal Information of Billions
Gabby Lee August 16, 2024
National Public Data Breach Exposed Personal Information of Billions
Ransomware Attack Targets Iranian Banks
News
Ransomware Attack Targets Iranian Banks
Mitchell Langley August 16, 2024
Cybercriminals steal user data and disrupt banking systems across Iran
NetSuite Stores Leak: Sensitive Customer Data Exposed due to Access Control Misconfiguration
Cybersecurity
NetSuite Stores Leak: Sensitive Customer Data Exposed due to Access Control Misconfiguration
Mitchell Langley August 16, 2024
Research finds critical security flaw exposes PII data in Oracle's popular ERP platform
Massive National Public Data Breach may have Exposed Personal Information of Billions, Lawsuit Claims
News
Massive National Public Data Breach may have Exposed Personal Information of Billions, Lawsuit Claims
Mitchell Langley August 15, 2024
Background Check Company Allegedly Failed to Protect Sensitive Data
Cybersecurity
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Mitchell Langley June 16, 2026
Cybersecurity
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach
Gabby Lee June 16, 2026
Cybersecurity
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Andrew Doyle June 15, 2026
Cybersecurity
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Andrew Doyle June 15, 2026

TOP CYBERSECURITY HEADLINES

Application Security
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
Cybersecurity
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
Cybersecurity
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
Cybersecurity
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims

This Week’s Security Spotlight

Application Security
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
Mitchell Langley June 16, 2026
Application Security
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Mitchell Langley June 15, 2026
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
Application Security
SAP Patches CVSS 9.9 SAML Flaw and ABAP Memory Corruption
Andrew Doyle June 10, 2026
More In News
Trending
Fake Claude Code Installers on Google Sites Steal AI API Keys
Fake Chrome Web Store DMCA Notices Target Extension Developers
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT
5,000 Election Phishing Domains Pre-Stage US Midterm Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

Generative AI Elevates Active Directory Password Attacks
Identity and Access Management
Generative AI Elevates Active Directory Password Attacks
January 7, 2026
Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk
Cybersecurity
Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk
January 7, 2026
Chrome Extensions Compromise Privacy by Exfiltrating ChatGPT and DeepSeek Conversations
Application Security
Chrome Extensions Compromise Privacy by Exfiltrating ChatGPT and DeepSeek Conversations
January 7, 2026
Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability
Cybersecurity
Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability
January 6, 2026
D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability
Endpoint Security
D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability
January 6, 2026
NordVPN Denies Salesforce Server Breach Claims, Clarifying Access to Dummy Data
Application Security
NordVPN Denies Salesforce Server Breach Claims, Clarifying Access to Dummy Data
January 6, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Bybit Hack: $1.5 Billion Ethereum Theft in Biggest Crypto Heist Ever
February 24, 2025
Hackers stole $1.5 billion in Ethereum from Bybit, the world's second-largest crypto exchange. The heist is the largest digital theft ever recorded. Bybit is offering ...
Cyber Attack on Rainbow District School Board Had Personal Data Stolen in Data Leak
February 24, 2025
Rainbow District School Board confirms a cyber attack resulting in a data breach, exposing staff and student personal data, including social insurance numbers and bank ...
This Week In Cybersecurity: 17th February to 21st February
February 21, 2025
This week highlights significant cybersecurity incidents, including the rise of BlackLock ransomware, a data breach at Insight Partners, and the emergence of FinalDraft malware. Stay ...
Chinese Hackers from Salt Typhoon Deploy Custom Malware in US Telecom Cyberespionage Campaign
February 21, 2025
Chinese state-sponsored hackers, the Salt Typhoon group, used custom malware, JumbledPath, to infiltrate US telecom networks, stealing data and monitoring communications.
CISA and FBI Report Ghost Ransomware Breached 70 Countries
February 21, 2025
CISA and the FBI warn of a global Ghost ransomware attack impacting organizations across 70 countries, exploiting known vulnerabilities in various software and systems. Immediate ...
Black Basta Ransomware Data Leak Exposes Internal Communications and Targets
February 21, 2025
The Black Basta ransomware gang's internal chat logs leaked, exposing victims, tactics, and key members. The data leak reveals internal conflicts and potential Russian bank ...
Darcula PhaaS 3.0 Auto-Generates Phishing Kits for Any Brand
February 21, 2025
Darcula PhaaS, a phishing-as-a-service platform, now offers a DIY phishing kit generator. This allows users to easily create phishing attacks targeting any brand, significantly increasing ...
The Rise of AI Agents: A New Era of AI Cyberthreats
February 20, 2025
AI agents are transforming cybersecurity, enabling autonomous attacks that overwhelm defenses. This new AI cyberthreat demands proactive strategies and advanced defenses to mitigate the risks.
Cayuga Medical Center Suffers Cyberattack, Operations Temporarily Disrupted
February 20, 2025
Cayuga Medical Center experienced a cyberattack on February 19th, temporarily halting ER admissions and diverting ambulances. The hospital is now fully operational.
Australian Fertility Services Giant Genea Hit by Major Security Breach
February 20, 2025
Australian fertility services giant Genea suffered a significant security breach, exposing potentially sensitive patient data. The company is investigating the extent of the unauthorized ...
NailaoLocker Ransomware Targets EU Healthcare Sector in a Cyberattack
February 20, 2025
NailaoLocker ransomware, a newly discovered threat, targeted EU healthcare organizations between June and October 2024, exploiting a Check Point vulnerability. The attack leveraged ShadowPad and ...
Hunters International Ransomware: Hive Ransomware Ressurected
February 20, 2025
Hunters International is a Ransomware-as-a-Service (RaaS) group that emerged in October 2023, following the disruption of the Hive ransomware group. They've conducted over 200 attacks ...
The Cost of a Data Breach: How to Stay Secure in 2025
February 19, 2025
Data security is no longer just about backing up files—it’s about protecting your business from sophisticated cyber threats like ransomware, malicious insiders, and compliance violations. ...
Hacking Nations: How Cybercrime is Becoming a National Security Crisis
February 19, 2025
In today’s hyper-connected world, cybercrime is no longer just about stolen credit card numbers or ransomware payouts—it’s a full-scale national security threat. In this episode, ...
Russia vs. Ransomware: A Game of Cybersecurity Chess
February 19, 2025
Russia’s recent crackdown on cybercriminals—especially ransomware gangs—has raised eyebrows in the cybersecurity world. After years of perceived tolerance, what’s behind this sudden shift? In this ...
Venture Capital Giant Insight Partners Hit by Cyber Attack
February 19, 2025
Insight Partners, a venture capital giant, suffered a cyber attack in January via social engineering. The firm manages over $90 billion in assets and is ...
BlackLock Ransomware: A Rapidly Rising Cyber Threat
February 19, 2025
BlackLock ransomware, emerging in March 2024, has seen a 1425% surge in activity, making it a prominent player in the ransomware-as-a-service (RaaS) ecosystem and a ...
Latvian Document Management System Leak Exposes 25 Million Records
February 19, 2025
A Latvian document management system leak exposed 25 million records, including names, national IDs, and addresses, highlighting critical data security vulnerabilities.
OpenSSH Flaws Expose SSH Servers to Critical DoS Attacks and MiTM Vulnerabilities
February 19, 2025
Critical OpenSSH vulnerabilities enable devastating DoS attacks and sophisticated MiTM attacks on SSH servers. Immediate updates are crucial to prevent data breaches and service disruptions.
MacOS Malware FrigidStealer Employ Sophisticated Web Injection Attacks
February 19, 2025
New MacOS malware, FrigidStealer, uses web injection attacks by cybercriminal groups TA2726 and TA2727, distributing malware based on browser and operating system, bypassing security ...
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach
What Is Scareware? How Fake Security Warnings Lead to Real Malware
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Triple Extortion Ransomware: How It Works and How to Stop It
Chrome 149 Patches 28 Flaws, Including 12 Use-After-Free Bugs