Main Menu
Cyber Security
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Three FortiSandbox CVEs Chained for Unauthenticated Root Execution
Cisco CVE-2026-20262 Added to CISA KEV; Eighth Exploited SD-WAN Flaw
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach
What Is Scareware? How Fake Security Warnings Lead to Real Malware
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
ADT Confirms Data Breach, Customer Information Impacted in Major Security Incident
Cybersecurity
ADT Data Breach, Customer Information Impacted in Major Security Incident
Gabby Lee August 9, 2024
ADT Data Breached: Security Giant ADT Notifies Customers of Data Breach after Attackers Leak Stolen Records Online American security company ...
Hunters International Ransomware Gang Targets IT Workers with New SharpRhino Malware
News
Hunters International Ransomware Gang Targets IT Workers with New SharpRhino Malware
Andrew Doyle August 8, 2024
Ransomware Gang Hunters International Targets IT Workers with New SharpRhino Malware
Judge Rules NSO Group Does Not Need to Provide Additional Witnesses in Pegasus WhatsApp Lawsuit
News
Judge Rules NSO Group Does Not Need to Provide Additional Witnesses in Pegasus WhatsApp Lawsuit
Andrew Doyle August 8, 2024
The lawsuit between Israel-based spyware manufacturer NSO Group and Meta owned messaging platform WhatsApp has been ongoing for a long time. NSO Group's spyware called ...
News
Kadokawa Data Breach Compromises Personal Data of Over 250,000 Individuals
Gabby Lee August 8, 2024
Cost of Data Breaches in UK Rise to £3.58 Million in 2023-24 with Financial Sector Worst Hit
News
‘The Biggest Fraud Are All Those Fees’ — Customers Express Fury Over Ticketmaster Data Breach Notification Letters
Mitchell Langley August 8, 2024
Ticketmaster Data Breach Leads to Public Outrage
Nearly Three Billion People' Personal Data Exposed in Major National Public Data Data Breach
News
Nearly Three Billion People’s Personal Data Exposed in Major National Public Data Data Breach
Andrew Doyle August 8, 2024
Background Check Firm National Public Data Suffers Massive Data Breach Impacting 2.9 Billion Individuals A recently filed class action lawsuit ...
Blog
Top 5 Cyber Scams to Watch Out for in 2024
Gabby Lee August 7, 2024
In this blog, we examine some of the major cyber scams businesses need to watch out for in 2024 based on trends seen in 2023. ...
Phishing Attacks on the Rise Businesses Face Growing Cyberthreat
Blog
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Mitchell Langley August 5, 2024
In the ever-evolving landscape of cyber threats, phishing attacks have emerged as one of the most formidable challenges for businesses worldwide. The year 2023 witnessed ...
The 911 S5 Botnet How FBI Dismantled the World’s Largest Botnet
Blog
The 911 S5 Botnet: How FBI Dismantled the World’s Largest Botnet
Mitchell Langley August 2, 2024
In June 2024, the FBI, in partnership with international law enforcement agencies, announced a major victory in the fight against cybercrime. Through a coordinated global ...
Blood Donation Center OneBlood Hit in Major Ransomware Attack
News
Blood Donation Center OneBlood Hit in Major Ransomware Attack
Gabby Lee August 1, 2024
Blood donation center left heavily disrupted after ransomware infection encrypts virtual infrastructure
The Rise of AI-Powered Cyberattacks Are We Prepared
Blog
The Rise of AI-Powered Cyberattacks: Are We Prepared?
Mitchell Langley July 31, 2024
As AI-powered cyber attacks become more prevalent and sophisticated, are businesses truly prepared to defend themselves against this emerging threat?
Dark Angels Ransomware Ransom the Group That Racked in a Record-Breaking $75 Million
Blog
Dark Angels Ransomware: The Group That Racked in a Record-Breaking $75 Million Ransom
Mitchell Langley July 31, 2024
This blog details the evolution of Dark Angels, its hacking techniques, encryption methods, and strategies for helping enterprise businesses understand this serious cyber threat and ...
Microsoft Confirms New Outage Was Triggered by Large-Scale Cyberattack
News
Microsoft Confirms New Outage Was Triggered by Large-Scale Cyberattack
Gabby Lee July 31, 2024
Major DDoS Attack Disrupts Access to Azure, Office 365 and Other Services
Critical ServiceNow Vulnerabilities Left Organizations Exposed to Data Breaches
News
Critical ServiceNow Vulnerabilities Left Organizations Exposed to Data Breaches
Mitchell Langley July 31, 2024
Three vulnerabilities identified in ServiceNow platform
Gemini Data Breach: Cryptocurrency Exchange Notifies Users of Breach
News
Gemini Data Breach: Cryptocurrency Exchange Notifies Users of Breach
Gabby Lee July 30, 2024
Gemini Trust Company, LLC, a leading cryptocurrency exchange based in New York, recently filed an official notice with the Attorney General of California announcing a ...
HealthEquity Data Breach Impacts 4.3 Million People
News
HealthEquity Data Breach Impacts 4.3 Million People
Gabby Lee July 30, 2024
HealthEquity, one of the largest HSA custodians in the US, disclosed a cybersecurity incident on July 2nd, 2024 through an SEC form 8-K filing.
Ransomware Gangs Exploiting VMware ESXi Authentication Bypass Vulnerability in Widespread Attacks
News
Ransomware Gangs Exploiting VMware ESXi Authentication Bypass Vulnerability in Widespread Attacks
Mitchell Langley July 30, 2024
Microsoft warns of active exploitation of CVE-2024-37085 flaw
Casper Network Halts Operations After Major Cyberattack
News
Casper Network Halts Operations After Major Cyberattack
Mitchell Langley July 30, 2024
Casper Network, a proof-of-stake blockchain platform known for its approach to decentralized applications, experienced a significant security breach that led to the immediate halting of ...
This Week in Cybersecurity: 22nd July to 26th, Microsoft CrowdStrike IT Outage Affects 8.5 Million
Cybersecurity
This Week in Cybersecurity: 22nd July to 26th, Microsoft CrowdStrike IT Outage Affects 8.5 Million
Mitchell Langley July 29, 2024
Microsoft CrowdStrike IT Outage Affects 8.5 Million, Greece's Land Registry Agency Suffers Data Breach, Play Ransomware Evolves and more.
BMW Data Breach Exposes Personal Information of 14,000 Customers in Hong Kong
News
BMW Data Breach Exposes Personal Information of 14,000 Customers in Hong Kong
Mitchell Langley July 29, 2024
Sensitive Customer Data Compromised in BMW Data Breach
Application Security
Mastra AI npm Supply Chain Attack Hits 1.1M Weekly Downloads
Mitchell Langley June 17, 2026
Cybersecurity
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
Gabby Lee June 17, 2026
Cybersecurity
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
Mitchell Langley June 17, 2026
Cybersecurity
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Andrew Doyle June 17, 2026

TOP CYBERSECURITY HEADLINES

Application Security
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
Cybersecurity
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Cybersecurity
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps

This Week’s Security Spotlight

Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Mitchell Langley June 17, 2026
Application Security
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
Mitchell Langley June 16, 2026
Application Security
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Mitchell Langley June 15, 2026
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
More In News
Trending
Storm-3075 Uses ChatGPT and Claude Brands to Harvest Credentials
Fake Claude Code Installers on Google Sites Steal AI API Keys
Fake Chrome Web Store DMCA Notices Target Extension Developers
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

Generative AI Elevates Active Directory Password Attacks
Identity and Access Management
Generative AI Elevates Active Directory Password Attacks
January 7, 2026
Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk
Cybersecurity
Unpatched Vulnerability in TOTOLINK EX200 Puts Devices at Risk
January 7, 2026
Chrome Extensions Compromise Privacy by Exfiltrating ChatGPT and DeepSeek Conversations
Application Security
Chrome Extensions Compromise Privacy by Exfiltrating ChatGPT and DeepSeek Conversations
January 7, 2026
Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability
Cybersecurity
Android’s January 2026 Update Patches Critical Dolby Audio Decoder Vulnerability
January 6, 2026
D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability
Endpoint Security
D-Link Routers Face New Threat as Attackers Exploit Legacy Vulnerability
January 6, 2026
NordVPN Denies Salesforce Server Breach Claims, Clarifying Access to Dummy Data
Application Security
NordVPN Denies Salesforce Server Breach Claims, Clarifying Access to Dummy Data
January 6, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Akira Ransomware Attack Targets Defunct Australian Media Company
February 17, 2025
Akira Ransomware claims a cyber attack on defunct Australian media company Regency Media, stealing 16GB+ of data, highlighting the risk of unmanaged legacy data post-business ...
Australian National University Faces Cyber Attack, FSociety Ransomware Threatens Data Leak
February 17, 2025
The Australian National University (ANU) is facing a serious cyber attack after being targeted by the FSociety ransomware group. The Canberra-based institution is currently investigating ...
Chinese Espionage Tools Fuel RA World Ransomware Attack Targeting Asian Firm
February 16, 2025
A China-based threat actor, Emperor Dragonfly, deployed RA World ransomware, demanding $2 million. The attack leveraged tools previously used in Chinese cyber espionage operations, blurring ...
Zacks Investment Data Breach Exposes 12 Million Users
February 14, 2025
A hacker leaked data from 12 million Zacks Investment accounts, including names, addresses, emails, and passwords. This is potentially the third major breach at Zacks ...
whoAMI Attacks: Exploiting Amazon EC2 Instances for Code Execution
February 14, 2025
whoAMI attacks allow hackers to gain code execution on Amazon EC2 instances by exploiting flaws in AMI selection. Attackers publish malicious AMIs with names mimicking ...
Chinese Hackers Breach More US Telecoms via Unpatched Cisco Routers despite Sanctions
February 14, 2025
Chinese hackers, exploiting Cisco router vulnerabilities, breached multiple US telecoms and accessed sensitive government communications, highlighting the ongoing threat of state-sponsored cyberattacks.
Port of Ostend Suffers Cyberattack, Ensor System Targeted
February 14, 2025
The Port of Ostend, a significant Belgian port, filed a complaint with the federal police following a cyberattack on Monday night.
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
February 13, 2025
A cyberattack on Papua New Guinea’s Internal Revenue Commission (IRC) in January 2025 compromised its systems, potentially exposing sensitive data. The PNG tax office cyber ...
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
February 13, 2025
Australia imposed sanctions on a Russian entity, ZServers, and five individuals for their alleged involvement in the 2022 Medibank cyberattack, impacting 9.7 million customers.
Rhysida Ransomware: The Silent Serpent
February 13, 2025
Rhysida Ransomware Threat Actor Profile
Top Cyber Threats Facing Enterprise Businesses in 2025: A Comprehensive Guide
February 13, 2025
While consumers grapple with phishing emails and social media scams, the scale and sophistication of cyberattacks targeting critical sectors are exponentially higher. These attacks aren’t ...
Botnets, Proxies, and Brute Force: How 2.8 Million IPs Target VPNs and Firewalls
February 12, 2025
In this episode, we dive deep into a massive, ongoing brute force attack that’s shaking up cybersecurity worldwide. With almost 2.8 million IP addresses involved ...
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
February 12, 2025
North Korean hackers use a PowerShell exploit in a new cyberattack, tricking victims into installing malware. A related scheme involved a woman facilitating North Korean ...
LockBit Sanctioned as US, UK, and Australia Join Hands Against the Russian Cybercrime Network
February 12, 2025
The US, UK, and Australia have sanctioned Zservers, a Russian-based service provider aiding the LockBit ransomware group, and two key administrators, Alexander Mishin and Aleksandr ...
OmniGPT Breach Exposes Data of 30,000 Users
February 12, 2025
OmniGPT data breach exposes over 30,000 users' data, including emails, API keys, and potentially crypto keys, now being sold on the dark web.
Cyber Attack Targets 2.8 Million IPs on VPN Devices
February 12, 2025
A massive cyber attack using 2.8 million IPs targets VPN devices and other network appliances via brute-force attacks, primarily impacting Brazil.
Critical Windows Zero-Day Vulnerabilities Actively Exploited: CISA Issues Warning to ‘Test and deploy quickly’
February 12, 2025
Critical Windows zero-days (CVE-2025-21418, CVE-2025-21391) are actively exploited. CISA urges immediate patching to prevent data loss and system compromise. Federal agencies have until March 4th.
Black Basta Ransomware: The Black Hand of Dark Web
February 12, 2025
Black Basta is a prolific ransomware-as-a-service (RaaS) group employing double-extortion tactics (data encryption and exfiltration).
Inside the Billion-Dollar Heist: Carbonak’s Audacious Cybercrime Saga
February 11, 2025
In this gripping episode, we uncover the audacious billion-dollar cyber heist orchestrated by the notorious Carbonak Group. Operating across 30 countries and targeting over 100 ...
Sault Tribe, Kewadin Casinos Hit by Cyber Attack
February 11, 2025
A ransomware cyber attack crippled the Sault Tribe and Kewadin Casinos, halting gaming operations and disrupting numerous tribal services. The Sault Tribe cyber attack is ...
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Three FortiSandbox CVEs Chained for Unauthenticated Root Execution
Cisco CVE-2026-20262 Added to CISA KEV; Eighth Exploited SD-WAN Flaw
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach