Main Menu
Cyber Security
Qilin Ransomware Batch-Lists 7 Victims Across Five Countries
Nightspire Ransomware Hits US Healthcare in Nine-Victim Batch
Ghost CMS CVE-2026-26980 Exploited in ClickFix Campaign
Laravel Lang Supply Chain Attack Hijacks 700 Package Versions
Underminr Flaw Lets Attackers Hide C2 Traffic on 88M Domains
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0 Exploited
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Netherlands Seizes 800 Stark Industries Servers, Arrests Two
ShinyHunters Claims 260K Baker Distributing Salesforce Records
Ubiquiti Patches 3 Max-Severity UniFi OS Flaws, 100K Exposed
Trump Mobile Exposes 27,000 Customer Records via Insecure API
Mysk: WhatsApp Stores Chats Unencrypted, Meta Apps Can Read Them
Wireshark 4.6.6 Patches ROHC Crash and MACsec Buffer Overflow
FBI Warns Kali365 PhaaS Platform Bypasses Microsoft 365 MFA
Lenovo BootRepair.sys Driver Exposes BYOVD Attack on CrowdStrike
Splunk CVE-2026-20239 Logs Session Cookies in Plaintext
DPRK npm Packages Use Hugging Face to Exfiltrate Developer Credentials
Deleted Google API Keys Stay Active for Up to 23 Minutes
Chromium Service Worker PoC Exploit Published for 42-Month-Old Bug
Texas AG Sues Meta Over WhatsApp Encryption Claims
Banana RAT Hijacks Brazil Pix QR Codes via NF-e Lures
UNG0002 Hides Cobalt Strike in macOS Folder Structures
INJ3CTOR3 Deploys JOMANGY Webshell in FreePBX Campaign
Operation Dragon Whistle Uses VS Code Tunnels as C2
Cisco Secure Workload CVE-2026-20223 Earns CVSS 10.0
NGINX 1.31.0 Zero-Day nginx-poolslip Bypasses ASLR
WantToCry Ransomware Hits SMB Ports, Evades EDR Tools
DOJ Secures Guilty Pleas From Tech-Support Fraud Executives
BadIIS Malware-as-a-Service Hijacks IIS Servers for SEO Fraud
Ukrainian Hacker Group Takes Down Moscow ISP as a Revenge for Kyivstar Cyber Attack
Security Spotlight
Ukrainian Hacker Group Takes Down Moscow ISP as a Revenge for Kyivstar Cyber Attack
Gabby Lee January 11, 2024
A Ukrainian hacker group, believed to be connected to Ukraine’s intelligence took and carried out a destructive attack on the ...
Hackers Can Now Access Your Google Accounts without Password
News
Hackers Can Now Access Your Google Accounts Without Password
Gabby Lee January 9, 2024
Security researchers have recently discovered a sophisticated hacking technique that enables cyber criminals to gain unauthorized entry into individuals’ Google ...
CISA Identifies Actively Exploited Bugs in Chrome and Excel Parsing Library
Cybersecurity
CISA Identifies Actively Exploited Bugs in Chrome and Excel Parsing Library
Andrew Doyle January 5, 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified two Actively Exploited Bugs in Chrome and Excel Parsing Library ...
Mandiant Security Breached: Account on X Hacked for Crypto Scam
News
Mandiant Security Breached: Account on X Hacked for Crypto Scam
Andrew Doyle January 5, 2024
The X account of Mandiant, an American cybersecurity firm and subsidiary of Google, was compromised. The Mandiant Security Breach resulted ...
Russian Sandworm Hackers Lurked Inside KyivStar Systems in KyivStar Cyber Attack
News
Russian Sandworm Hackers Lurked Inside KyivStar Systems in KyivStar Cyber Attack
Mitchell Langley January 5, 2024
The Russian Sandworm hackers successfully breached Kyivstar and stayed inside KyivStar systems for several months. Ukraine’s largest telecommunications service provider, ...
HealthEC Data Breach Exposes Data of Almost 4.5 Million Patients
News
HealthEC Data Breach Exposes Data of Almost 4.5 Million Patients
Gabby Lee January 4, 2024
HealthEC LLC, a New Jersey-based provider of health management solutions, has suffered a major data breach that exposed personally identifiable ...
Orbit Chain Lost $86 Million in a Cross-Chain Bridge Exploit Attack
News
Orbit Chain Lost $86 Million in a Cross-Chain Bridge Exploit Attack
Gabby Lee January 3, 2024
Orbit Chain Lost $86 Million in cryptocurrency, specifically Ether, Dai, Tether, and USD Coin. Orbit Chain is a blockchain platform ...
Victoria Court Hack Exposes Victorian Court Recordings: Sensitive Witness Testimonies Stolen
News
Victoria Court Hack Exposes Victorian Court Recordings: Sensitive Witness Testimonies Stolen
Mitchell Langley January 3, 2024
The Victoria Court Hack resulted in hackers gaining unauthorized access to the audio-visual network and stealing Victorian court recordings. The ...
Ohio Lottery Cyber Attack: Another Cybersecurity Incident Claimed by DragonForce Ransomware
News
Ohio Lottery Cyber Attack: Another Cybersecurity Incident Claimed by DragonForce Ransomware
Gabby Lee January 2, 2024
The Ohio Lottery cyber attack on Christmas Eve resulted in the shutdown of certain internal applications. While the exact details ...
Eagers Automotive Cyberattack Forces the Company to Suspend Trades
Security Spotlight
Eagers Automotive Cyberattack Forces the Company to Suspend Trades
Mitchell Langley January 2, 2024
Eagers Automotive cyberattack lead to a temporary suspension of trading on the stock exchange. Eagers Automotive operates a vast network ...
Black Basta Decryptor Recovers Files Exploiting a Ransomware Flaw
Blog
Black Basta Decryptor Recovers Files Exploiting a Ransomware Flaw
Mitchell Langley January 2, 2024
A team of researchers has developed a Black Basta decryptor that takes advantage of a vulnerability in the Black Basta ...
Google Settles $5 Billion Lawsuit for Tracking Users in 'Incognito' Mode
Cybersecurity
Google Settles $5 Billion Lawsuit for Tracking Users in Incognito Mode
Mitchell Langley January 2, 2024
Google settles $5 billion lawsuit that revolved around Google’s Chrome browser’s “incognito” mode. The plaintiffs argued that this feature misled ...
Albanian Parliament Cyber Attack: Homeland Justice Hits Albanian Parliament and One Albania Telecom
Cybersecurity
Albanian Parliament Cyber Attack: Homeland Justice Hits Albanian Parliament and One Albania Telecom
Andrew Doyle January 2, 2024
In the complex realm of cyber warfare, the Albanian Parliament and One Albania Telecom have made the headlines. As the ...
Anna Jaques Hospital Cyberattack on Christmas Day Hits Medical Record Systems
News
Anna Jaques Hospital Cyberattack on Christmas Day Disrupts Medical Record Systems
Gabby Lee January 2, 2024
On Christmas Day, Anna Jaques Hospital in Newburyport, MA, was targeted by a cyberattack. The Anna Jaques Hospital Cyberattack on ...
Steam Game Mod Breached to Push Password-Stealing Malware
News
Steam Game Mod Breached to Push Password-Stealing Malware
Gabby Lee January 2, 2024
On Christmas Day, the fan expansion called “Downfall” for the indie strategy game Slay the Spire was compromised in the ...
APT28 Hacking Collective Targets Ukraine with MASEPIE Malware – Ukraine’s CERT-UA Issues Security Alert
Security Spotlight
APT28 Hacking Collective Targets Ukraine with MASEPIE Malware – CERT-UA Issues Security Alert
Andrew Doyle December 29, 2023
The Computer Emergency Response Team (CERT) of Ukraine has issued a warning regarding a recent phishing campaign. The threat actor ...
Lockbit Ransomware Disrupts Healthcare Systems at German KHO Network of Hospitals
Ransomware
Lockbit Ransomware Disrupts Healthcare Systems at German KHO Network of Hospitals
Mitchell Langley December 29, 2023
Katholische Hospitalvereinigung Ostwestfalen (KHO), a hospital network in Germany, has confirmed that the recent service disruptions experienced at three of ...
First American Cyber Attack Disrupts Closings: No New Updates from the American Title Insurance Firm
Security Spotlight
First American Cyber Attack Disrupts Closings: No New Updates from the American Title Insurance Firm
Andrew Doyle December 28, 2023
The nation’s second-largest title insurer, and its subsidiaries are currently experiencing an ongoing system outage following the First American cyber ...
Liberty Hospital Cyber Attack Forces Kansas City to Transfer Patients and Reschedule Appointments
Ransomware
Liberty Hospital Cyber Attack Forces Kansas City to Transfer Patients and Reschedule Appointments
Mitchell Langley December 27, 2023
A hospital in the vicinity of Kansas City, Missouri, is facing challenges in delivering patient care due to a cyberattack ...
Yakult Cyber Incident Leads to 95 GB Data Leak – DragonForce Claims the Cyber Attack
Security Spotlight
Yakult Cyber Incident Leads to 95 GB Data Leak – DragonForce Claims the Cyber Attack
Gabby Lee December 27, 2023
Yakult Australia, the manufacturer of a popular probiotic milk drink, recently faced a cyber incident. The Yakult Cyber Incident has ...
Cybersecurity
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
Gabby Lee May 26, 2026
Cybersecurity
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
Gabby Lee May 26, 2026
Cybersecurity
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
Gabby Lee May 26, 2026
Cybersecurity
DragonForce Lists Indiana Greenhouse Firm Heartland Growers
Andrew Doyle May 26, 2026

TOP CYBERSECURITY HEADLINES

Cybersecurity
Qilin Ransomware Batch-Lists 7 Victims Across Five Countries
Cybersecurity
Nightspire Ransomware Hits US Healthcare in Nine-Victim Batch
Application Security
Ghost CMS CVE-2026-26980 Exploited in ClickFix Campaign
Application Security
Laravel Lang Supply Chain Attack Hijacks 700 Package Versions

This Week’s Security Spotlight

Application Security
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
Mitchell Langley May 25, 2026
Application Security
Trump Mobile Exposes 27,000 Customer Records via Insecure API
Gabby Lee May 25, 2026
CVE Vulnerability Alerts
Cisco Secure Workload CVE-2026-20223 Earns CVSS 10.0
Gabby Lee May 22, 2026
Cybersecurity
NYC Health + Hospitals Breach Exposes 1.8M Patients’ Fingerprints
Gabby Lee May 21, 2026
More In News
Trending
INTERPOL Operation Ramz: 201 Arrests in 13-Nation MENA Sweep
Tycoon2FA Adds Device-Code Attack to Bypass Microsoft 365 MFA
Operation HookedWing: 4-Year Campaign Compromises 500 Orgs
ShinyHunters Leaks 50GB After Vishing Breach at Cushman & Wakefield

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Sorry, we couldn't find any posts. Please try a different search.

Cyber Security News

HashJack Attack Unveils a New Cybersecurity Vulnerability
Cybersecurity
HashJack Attack Unveils a New Cybersecurity Vulnerability
November 26, 2025
AI Agent Security Firm Vijil Secures $17 Million to Enhance Platform
Cybersecurity
AI Agent Security Firm Vijil Secures $17 Million to Enhance Platform
November 26, 2025
Tor Introduces Counter Galois Onion Encryption for Improved Security
Cybersecurity
Tor Introduces Counter Galois Onion Encryption for Improved Security
November 26, 2025
Microsoft Exchange Online Outage Customer Access Disrupted
Cybersecurity
Microsoft Exchange Online Outage: Customer Access Disrupted
November 26, 2025
Delta Dental of Virginia Incident Exposes Personal and Health Information
Data Security
Delta Dental of Virginia Incident Exposes Personal and Health Information
November 25, 2025
Vulnerabilities in Fluent Bit Cloud Logging Tool Pose Significant Security Risks
Cybersecurity
Vulnerabilities in Fluent Bit Cloud Logging Tool Pose Significant Security Risks
November 25, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
38,000 Tools Shoppers Compromised in Total Tools Data Breach
September 20, 2024
Australian hardware retailer Total Tools has confirmed a data breach affecting 38,000 customers, potentially exposing sensitive information including names, login details, and credit card information.
Harvey Nichols Data Breach: High-End Retailer Confirms Customer Data Exposure in Cyberattack
September 20, 2024
High-end British department store Harvey Nichols has confirmed a data breach affecting its customers, exposing personal information including names, addresses, phone numbers, and email addresses. ...
What is Secure by Design? A Guide for Enterprise Businesses
September 20, 2024
Secure by Design is a philosophy that emphasizes building security into the very core of software development, from the initial conceptualization to deployment and beyond. ...
Dr.Web Suffers Major Data Breach, Disconnects All Servers
September 19, 2024
Dr.Web, A Cybersecurity Firm Was Targeted in a Cyberattack Resulting in Data Breach
Vanilla Tempest Hackers Use INC Ransomware to Target Healthcare
September 19, 2024
A recent report from Microsoft reveals that a ransomware affiliate known as Vanilla Tempest has been observed using the INC ransomware to target U.S. healthcare organizations.
Compass Group Hit by Medusa Ransomware
September 19, 2024
The Compass Group, a leading global food services company headquartered in Sydney, has confirmed a significant cyberattack targeting its systems.
German Radio Station Hit by Cyberattack: “Emergency Tape” Plays On as Hackers Demand Ransom
September 19, 2024
Radio Geretsried, a local radio station in Bavaria, has been forced to broadcast music from emergency backups after a ransomware attack crippled its systems.
Hunters International Ransomware Claims Breach of ICBC London, Threatens Data Leak
September 19, 2024
The ransomware group Hunters International has claimed responsibility for a data breach at the London branch of the Industrial and Commercial Bank of China (ICBC), ...
Data Breaches Surge to Three-Year High in Australia: A Growing Threat to Privacy and Security
September 19, 2024
Data Breaches Surge to Three-Year High in Australia
23andMe to Pay $30 Million in Class Action Settlement for Data Breach Exposing 6.4 Million Customers
September 19, 2024
DNA testing giant 23andMe has agreed to pay $30 million to settle a class-action lawsuit stemming from a data breach that compromised the personal ...
FlyCASS Cockpit Security Breach: A Case Study of SQL Injection and its Impact on Critical Infrastructure
September 19, 2024
The recent discovery of a critical SQL injection vulnerability in the FlyCASS cockpit access security system should serve as a stark reminder for enterprise businesses: cybersecurity ...
This Week In Cybersecurity: 9th September to 13th September
September 13, 2024
Avis has reported a data breach involving unauthorized access to its business application, exposing customer names and potentially sensitive information.
What is a Whaling Phishing Attack?
September 13, 2024
Whaling phishing, also known simply as whaling, is a highly targeted and sophisticated form of phishing attack that specifically targets high-level executives within an organization, such ...
Veeam Backup & Replication RCE Flaw: A Looming Threat for Enterprises
September 13, 2024
A critical vulnerability, CVE-2024-40711, affecting Veeam Backup & Replication (VBR), has emerged as a significant threat to enterprises, with ransomware gangs poised to exploit it for data ...
Cicada3301 Ransomware with New Linux Encryptor: A New Threat To VMware ESXi Systems
September 12, 2024
A new ransomware-as-a-service (RaaS) operation named Cicada3301 has emerged, posing a significant threat to businesses worldwide. The group has already claimed 19 victims on its ...
1.7 Million People Hit in Massive Credit Card Data Breach: What to Do Now?
September 11, 2024
A major credit card data breach has impacted nearly 1.7 million individuals, raising concerns about the security of sensitive financial information.
PIXHELL Acoustic Attack: Leaking Secrets from LCD Screen Noise
September 11, 2024
A novel acoustic attack named ‘PIXHELL’ can leak secrets from audio-gapped systems, and without requiring speakers, through the LCD monitors they connect to.
Indodax Hack: A Major Blow to Indonesian Crypto Security
September 11, 2024
Hackers targeted Indodax's hot wallet, which is a cryptocurrency wallet that is connected to the internet and used for frequent transactions.
LiteSpeed Cache Vulnerability Exposes 6 Million WordPress Sites to Takeover Attacks: A Critical Security Flaw
September 9, 2024
A critical severity vulnerability has been discovered in LiteSpeed Cache, a popular caching plugin used by over 6 million WordPress sites. The flaw, tracked as ...
Russian Military Hackers Linked to Critical Infrastructure Attacks: A Deep Dive into GRU Unit 29155
September 9, 2024
GRU Unit 29155: A Growing Threat to Global Security
Qilin Ransomware Batch-Lists 7 Victims Across Five Countries
Nightspire Ransomware Hits US Healthcare in Nine-Victim Batch
Ghost CMS CVE-2026-26980 Exploited in ClickFix Campaign
Laravel Lang Supply Chain Attack Hijacks 700 Package Versions
Underminr Flaw Lets Attackers Hide C2 Traffic on 88M Domains
Anthropic’s Project Glasswing Finds 10,000+ CVEs in One Month
LiteSpeed cPanel Plugin CVE-2026-48172 CVSS 10.0 Exploited
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
Netherlands Seizes 800 Stark Industries Servers, Arrests Two
ShinyHunters Claims 260K Baker Distributing Salesforce Records
Ubiquiti Patches 3 Max-Severity UniFi OS Flaws, 100K Exposed
Trump Mobile Exposes 27,000 Customer Records via Insecure API
Mysk: WhatsApp Stores Chats Unencrypted, Meta Apps Can Read Them
Wireshark 4.6.6 Patches ROHC Crash and MACsec Buffer Overflow
FBI Warns Kali365 PhaaS Platform Bypasses Microsoft 365 MFA
Lenovo BootRepair.sys Driver Exposes BYOVD Attack on CrowdStrike
Splunk CVE-2026-20239 Logs Session Cookies in Plaintext
DPRK npm Packages Use Hugging Face to Exfiltrate Developer Credentials
Deleted Google API Keys Stay Active for Up to 23 Minutes
Chromium Service Worker PoC Exploit Published for 42-Month-Old Bug