Main Menu
Cyber Security
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Three FortiSandbox CVEs Chained for Unauthenticated Root Execution
Cisco CVE-2026-20262 Added to CISA KEV; Eighth Exploited SD-WAN Flaw
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach
What Is Scareware? How Fake Security Warnings Lead to Real Malware
Lapsus$ Lists GitHub Internal Repos for Sale, Copilot Source Included
Nightspire Claims Blue Nile Medical and Silsbee Police as New Victims
Ukrainian Conti Developer Pleads Guilty to Ransomware Loader Coding
Awesome Motive CDN Compromised; Backdoor Served to OptinMonster Users
CVE-2026-42824: M365 Copilot SearchLeak Enables 1-Click Email Theft
Novo Nordisk Confirms Hack of Clinical Trial Biomarker Data
SearchJack: 23 Chrome Extensions Intercept 758,000 Users’ Searches
TheGentlemen Ransomware Posts 20 Victims Across 14 Countries
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
200,000 Impacted in 2023 Dallas County Ransomware Attack
News
200,000 Impacted in 2023 Dallas County Ransomware Attack
Mitchell Langley July 15, 2024
Dallas County, one of the largest counties in Texas, has notified over 200,000 individuals that their personal information was exposed in a ransomware attack carried ...
This Week in Cybersecurity: July 8th to July 12th, RockYou2024 Data Breach Compromises 10 Billion
News
This Week in Cybersecurity: July 8th to July 12th, RockYou2024 Data Breach Compromises 10 Billion
Gabby Lee July 15, 2024
RockYou2024 Data Breach, Volcano Demon Ransomware Extorts Through Phone, Formula 1 Data Breach and more.
AI Cybersecurity Leveraging Generative AI to Combat Threats & Data Breaches
Blog
AI Cybersecurity: Leveraging Generative AI to Combat Threats & Data Breaches
Mitchell Langley July 15, 2024
The digital landscape is a battlefield, with cybercriminals constantly upping their game. Traditional defenses are struggling to keep pace. But ...
Avast Releases Free Decryptor for DoNex Ransomware and Past Variants
News
Avast Releases Free Decryptor for DoNex Ransomware and Past Variants
Mitchell Langley July 10, 2024
A weakness discovered in DoNex ransomware's cryptographic scheme
Hackers Leak Taylor Swift Tickets Data, Increase Ticketmaster Extortion Demands
News
Hackers Leak Taylor Swift Tickets Data, Increase Ticketmaster Extortion Demands
Mitchell Langley July 10, 2024
Sp1d3rHunters threat actor leaks 166,000 Taylor Swift concert barcode data after Ticketmaster fails to pay ransom.
Neiman Marcus Data Breach Impacts Over 31 Million Customers
News
Neiman Marcus Data Breach Impacts Over 31 Million Customers
Gabby Lee July 10, 2024
Troy Hunt Analysis Reveals True Scale of Massive Breach Linked to Snowflake Attack
Major Data Breach at Angel One Impacts Over 8 Million Users
News
Major Data Breach at Angel One Impacts Over 8 Million Users
Mitchell Langley July 10, 2024
Angel One, one of the largest retail broking firms in India, confirmed that it has been a victim of a massive data breach which has ...
CISA Director Says Banning Ransomware Payments is an Unlikely Possibility
News
CISA Director Says Banning Ransomware Payments is an Unlikely Possibility
Gabby Lee July 9, 2024
Jen Easterly Clarifies Stance on Possible Ban of Ransomware Payments. Says it may do more harm than good.
Eldorado Ransomware Targets Windows and VMware ESXi Systems
News
Eldorado Ransomware Targets Windows and VMware ESXi Systems
Mitchell Langley July 9, 2024
Cybersecurity researchers have discovered a new ransomware-as-a-service (RaaS) operation called Eldorado that first emerged in March 2024.
The RockYou2024 Security Breach: 10 Billion Credentials Compromised
News
The RockYou2024 Security Breach: 10 Billion Credentials Compromised
Mitchell Langley July 8, 2024
10 Billion Credentials Compromised after the Largest Password Dump in History
Formula 1 Governing Body FIA Discloses Massive Data Breach After Email Hacks
News
Formula 1 Governing Body FIA Discloses Massive Data Breach After Email Hacks
Gabby Lee July 8, 2024
FIA notifies data breach after phishing attack compromised email accounts
Volcano Demon Ransomware Threat Emerges as Group Extort Victims Directly Through Phone Calls
News
Volcano Demon Ransomware Threat Emerges as Group Extort Victims Directly Through Phone Calls
Mitchell Langley July 8, 2024
Volcano Demon ransomware gang utilizes novel tactics for ransomware extortion.
Airtel India Denies Massive Data Breach Claims Involving 375 Million Users
News
Airtel India Denies Massive Data Breach Claims Involving 375 Million Users
Mitchell Langley July 8, 2024
Telecom Giant Says User Information is Secure After Dark Web Leak Allegations
OVHcloud Mitigated Record-Breaking DDoS Attack Reaching 840 Million Packets Per Second Powered by MikroTik Botnet
News
OVHcloud Mitigated Record-Breaking DDoS Attack Reaching 840 Million Packets Per Second Powered by MikroTik Botnet
Gabby Lee July 8, 2024
Cloud Services Provider Saw Large Increase in DDoS Attack Sizes in 2023 With Some Exceeding 1 Tbps
Iress Completes Investigation into May 2024 Data Breach
News
Iress Completes Investigation into May 2024 Data Breach
Gabby Lee July 3, 2024
In mid-May 2024, Australian financial technology firm Iress suffered a cyber breach that impacted their OneVue production environment containing client data.
Prudential Financial Data Breach Impacted Over 2.5 Million Customers
News
Prudential Financial Data Breach Impacted Over 2.5 Million Customers
Mitchell Langley July 3, 2024
Financial services giant Prudential reveals scale of February cyberattack. Over 2.5 Million Customers feel the burnt.
Patelco Data Breach Locks Out 500,000 Members from Accounts
News
Patelco Data Breach Locks Out 500,000 Members from Accounts
Mitchell Langley July 3, 2024
Dublin-based credit union faces major ransomware attack, locks out half a million members.
Geisinger Data Breach Compromises Information of Over 1 Million Patients
News
Geisinger Data Breach Compromises Information of Over 1 Million Patients
Gabby Lee July 2, 2024
Former Nuance Employee Accessed Data of Over 1 Million Patients from Prominent Pennsylvania Healthcare Provider Geisinger
BlackSuit Ransomware Gang Claims Attack on Major Japanese Media Conglomerate KADOKAWA
News
BlackSuit Ransomware Gang Claims Attack on Major Japanese Media Conglomerate KADOKAWA
Mitchell Langley July 2, 2024
Cybercriminals threaten to leak KADOKAWA's sensitive data if ransom is not paid
TeamViewer Confirms Breach by Notorious Russian Hacking Group Cozy Bear
News
TeamViewer Confirms Breach by Notorious Russian Hacking Group Cozy Bear
Mitchell Langley July 2, 2024
Software firm attributes corporate network intrusion to APT29 after initial disclosure
Application Security
Mastra AI npm Supply Chain Attack Hits 1.1M Weekly Downloads
Mitchell Langley June 17, 2026
Cybersecurity
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
Gabby Lee June 17, 2026
Cybersecurity
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
Mitchell Langley June 17, 2026
Cybersecurity
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Andrew Doyle June 17, 2026

TOP CYBERSECURITY HEADLINES

Application Security
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
Cybersecurity
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Cybersecurity
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps

This Week’s Security Spotlight

Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Mitchell Langley June 17, 2026
Application Security
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
Mitchell Langley June 16, 2026
Application Security
PromptSnatcher Extensions Stole AI Chats From 90,000 Users
Mitchell Langley June 15, 2026
Cybersecurity
Anthropic Releases Guardrail-Free Mythos 5 to Security Researchers
Andrew Doyle June 12, 2026
More In News
Trending
Storm-3075 Uses ChatGPT and Claude Brands to Harvest Credentials
Fake Claude Code Installers on Google Sites Steal AI API Keys
Fake Chrome Web Store DMCA Notices Target Extension Developers
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

The Trump Administration Lifts Sanctions With Implications for Spyware Distribution
Information Security
The Trump Administration Lifts Sanctions With Implications for Spyware Distribution
January 6, 2026
AI Agents Emerge as a Significant Challenge for Cybersecurity by 2026
Cybersecurity
AI Agents Emerge as a Significant Challenge for Cybersecurity by 2026
January 5, 2026
Trump Orders Emcore to Divest Chip Manufacturing Assets
Cybersecurity
Trump Orders Emcore to Divest Chip Manufacturing Assets
January 5, 2026
France Probes AI-Generated Sexual Deepfakes Targeting Women and Teens
Cybersecurity
France Probes AI-Generated Sexual Deepfakes Targeting Women and Teens
January 5, 2026
Adobe ColdFusion Cyberattacks Surge During Holiday Period
Application Security
Adobe ColdFusion Cyberattacks Surge During Holiday Period
January 5, 2026
British Security Researcher Earns Australia's Prestigious Visa for Vulnerability Discovery
Cybersecurity
British Security Researcher Earns Australia’s Prestigious Visa for Vulnerability Discovery
January 5, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Ransomware Payments Drop 35%: Chainalysis Reports Victims Refuse to Pay Ransom
February 6, 2025
Ransomware payments plummeted by 35% in 2024, totaling $814 million. This significant drop, reported by Chainalysis, suggests increased law enforcement effectiveness and victim resistance to ...
State-Sponsored Hackers Abuse Google’s Gemini AI for Attacks
February 4, 2025
Multiple state-sponsored groups are using Google's Gemini AI assistant. They use it primarily for productivity improvements. However, they also use it for reconnaissance and attack ...
US Healthcare Provider Data Breach at Connecticut Impacts 1 Million Patients
February 4, 2025
A massive healthcare provider data breach at Connecticut's Community Health Center exposed the personal and health data of over 1 million patients, including Social Security ...
Prevent Data Breaches with Amazon Redshift Enhanced Security
February 4, 2025
Amazon Redshift enhances security defaults to prevent data breaches and ransomware by restricting public access, enabling encryption, and enforcing SSL connections, mitigating risks like the ...
GrubHub Data Breach Exposes Customer, Driver, and Merchant Data
February 4, 2025
The GrubHub data breach has compromised the personal information of an unspecified number of customers, merchants, and drivers. The attack stemmed from a compromised account ...
Mississippi Electric Utility Data Breach Affects 20,000 Residents
February 4, 2025
The Mississippi electric utility, Yazoo Valley Electric Power Association, suffered a data breach affecting 20,000 residents. The breach exposed personal information, prompting identity theft protection ...
New York Blood Center Ransomware Attack: Critical Blood Supplies at Risk
February 4, 2025
The New York Blood Center Enterprises (NYBCe) suffered a ransomware attack on January 26th, disrupting operations and impacting blood supplies amid a pre-existing blood shortage.
BRS Cyber Attack: Data Breach at Business Registration Exposes Sensitive Business Information
February 3, 2025
Cyberattack on Kenya's Business Registration Services (BRS) has exposed sensitive company data, sold on the dark web. Authorities investigate, ruling out ransomware.
DeepSeek AI Data Breach Causes National Security Risks and Data Privacy Concerns
January 31, 2025
The DeepSeek AI data breach exposed sensitive user data, raising national security concerns and prompting warnings from U.S. officials about privacy violations and corporate espionage.
This Week In Cybersecurity: 27th January to 31st January
January 31, 2025
British Museum Forced to Close After IT Attack by Ex-worker The British Museum experienced an IT attack attributed to a dismissed contractor who accessed the ...
Phemex Crypto Firm Breached With $85 Million in Cryptocurrency Stolen
January 31, 2025
Phemex suffered a major security breach, resulting in the theft of over $85 million in cryptocurrency. The attack targeted hot wallets, prompting immediate suspension of ...
ENGlobal Cybersecurity Breach and CenterPoint Energy Data Leak Probes Investigation
January 31, 2025
Williams stated,
RCSD Warns Community of Data Breach: 134,000 Records Potentially Accessed
January 31, 2025
The Rochester City School District (RCSD) warns its community of a significant data breach. The breach exposed sensitive personal information, prompting immediate action and investigation. ...
UK’s Morrisons Breached: Cyber Attack at Technology Provider Dents Christmas Sales
January 31, 2025
A November cyber attack at Morrisons' technology provider, Blue Yonder, disrupted operations, impacting Christmas sales and resulting in lower-than-expected first-quarter growth.
All American Poly Data Breached, 2024 Cyberattack Exposes Sensitive Consumer Data
January 30, 2025
All American Poly Corporation (American Poly) confirmed a data breach stemming from a 2024 cyberattack, exposing customer names and Social Security numbers. A data breach ...
Microsoft Teams Exploited in Sophisticated Ransomware Attacks
January 29, 2025
Cybercriminals are exploiting Microsoft Teams for ransomware attacks, using spam emails, Teams messages, and calls to infiltrate companies, steal data, and deploy malware. Sophos identified ...
Apple CPU Side-Channel Attacks (SLAP & FLOP) Threaten Safari Browser Security
January 29, 2025
New Apple CPU side-channel attacks, dubbed SLAP and FLOP, exploit flaws in speculative execution to steal data from web browsers. Researchers demonstrated the attacks' ability ...
Clone2Leak Attacks Exploit Git Flaws to Steal Credentials
January 29, 2025
Clone2Leak attacks exploit Git vulnerabilities, allowing attackers to steal credentials from GitHub Desktop, Git LFS, and other tools via carriage return smuggling, newline injection, and ...
Microsoft and OpenAI Investigate Data Breach
January 29, 2025
Microsoft and OpenAI are investigating a data breach linked to DeepSeek, a Chinese AI startup, raising concerns about data security and intellectual property in the ...
DeepSeek AI Hit by Cyberattack: American AI Firms Trying to Poke Holes into DeepSeek
January 28, 2025
DeepSeek AI, a Chinese startup, faces a cyberattack after its AI assistant app skyrockets to the top of the US App Store, raising questions about ...
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
UNC6508 Abused Google Workspace Rules in Medical-Military Espionage
Three FortiSandbox CVEs Chained for Unauthenticated Root Execution
Cisco CVE-2026-20262 Added to CISA KEV; Eighth Exploited SD-WAN Flaw
LiteSpeed cPanel CVE-2026-54420 Escalates to Root on Shared Hosts
APT37 Deploys NarwhalRAT via Fake Microsoft Security Alerts
DOJ Seizes CFAKE.com and SOCFAKE.com in First TAKE IT DOWN Act Case
The Quarry PhaaS: IRS Lures, ConnectWise RAT, 500+ Victims
ESET Finds WIN_DRV: Earth Lusca’s First Windows SprySOCKS Rootkit
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
CVE-2026-48558 Exposes 14,000 SimpleHelp RMM Servers to Auth Bypass
ShinyHunters Claims 61M Sysco Salesforce Records in Unverified Breach