Cyber Security
News
Imaflex Inc. Data Breach Exposes Personal and Employment Data
Andrew Doyle
April 22, 2025
Imaflex Inc. Data Breach Exposes Personal and Employment Data: Legal Investigation Underway Imaflex Inc. has disclosed a data breach that exposed sensitive personal and employment-related ...
Cybersecurity Newsletter
This Week In Cybersecurity: March 3rd to 7th, 2025
Gabby Lee
April 21, 2025
This Week in Cybersecurity: Data Breaches, Ransomware, Threat Actors, Ransomware Protection and more!
Ransomware
Ransomware Victims on Dark Web – 04th March, 2025
Gabby Lee
April 21, 2025
This report summarizes recent ransomware attacks across various sectors, detailing the victims, threat actors, and available information on the incidents. Due to the nature of ...
News
MGM Resorts to Pay $45 Million in Data Breach Settlement Covering 2019 and 2023 Incidents
Mitchell Langley
April 21, 2025
MGM Resorts will pay $45 million to settle a lawsuit over data breaches in 2019 and 2023, offering up to $75 per affected individual.
News
Attackers Abuse Google OAuth in Sophisticated DKIM Replay Phishing Scheme
Andrew Doyle
April 21, 2025
Attackers exploited Google’s OAuth and DKIM signing process to send phishing emails that appeared authentic, bypassing traditional security checks and targeting unsuspecting recipients.
News
State-Backed Threat Actors Adopt ClickFix Social Engineering in Espionage Campaigns
Andrew Doyle
April 21, 2025
State-backed hackers from North Korea, Iran, and Russia are now using ClickFix, a social engineering method that tricks users into manually executing malware payloads.
News
New Android Malware ‘SuperCard X’ Enables NFC Relay Attacks for Payment Card Theft
Mitchell Langley
April 21, 2025
A new Android malware called SuperCard X enables NFC relay attacks by stealing card data via fake banking support calls and emulating it on attacker ...
News
Interlock Ransomware Gang Deploys ClickFix Attacks Using Fake IT Tools to Compromise Networks
Andrew Doyle
April 21, 2025
Interlock ransomware operators now use ClickFix attacks with fake IT tools to deploy malware, exfiltrate data, and encrypt systems, targeting corporate environments through social engineering. ...
News
Critical Security Flaw in Asus AiCloud Routers Prompts Urgent Firmware Update
Mitchell Langley
April 21, 2025
Asus urges immediate firmware updates after a critical security flaw in AiCloud routers is discovered, allowing unauthorized function execution via crafted remote requests.
Cybersecurity Newsletter
This Week In Cybersecurity: 14th April to 18th April
Andrew Doyle
April 18, 2025
Sure! Here's a 25-word excerpt summarizing the entire newsletter: **Widespread service outages, ransomware attacks, zero-day exploits, and data breaches impacted major platforms including Jira, Binance, ...
News
Ahold Delhaize Data Breach Confirmed After INC Ransomware Claims Responsibility
Andrew Doyle
April 18, 2025
Ahold Delhaize confirms data theft from U.S. systems after INC Ransom's cyberattack. Investigation continues as stolen files appear on a dark web extortion site.
News
Legends International Confirms Data Breach Following Cyberattack in November 2024
Mitchell Langley
April 18, 2025
Legends International disclosed a data breach affecting venue visitors and employees after a November 2024 cyberattack. The breach involved unauthorized access and data exfiltration.
Cybersecurity
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Mitchell Langley
April 18, 2025
Google has been hit with a £5 billion antitrust lawsuit in the UK, alleging it used its dominance to inflate search advertising prices for British ...
News
Jira Down, Atlassian Users Face Widespread Service Disruption
Mitchell Langley
April 17, 2025
Atlassian's Jira platform is experiencing a global outage, affecting multiple products and causing significant disruptions for enterprise users.
News
UK Law Firm Fined £60,000 Over Ransomware Data Breach That Exposed Sensitive Case Files
Andrew Doyle
April 17, 2025
DPP Law was fined £60,000 after a ransomware data breach exposed sensitive client data, due to outdated systems, delayed reporting, and lack of cybersecurity controls. ...
News
Over 16,000 Fortinet Devices Compromised via Symlink Backdoor Exploit
Andrew Doyle
April 17, 2025
Over 16,000 Fortinet devices have been compromised via a symlink backdoor, allowing persistent read-only access to sensitive files despite applied patches.
News
Fake Binance Installers Spreading Malware in New Crypto -Themed Malvertising Campaign
Andrew Doyle
April 17, 2025
Cybercriminals are using fake Binance and TradingView installers to deliver stealthy malware that steals browser credentials and disables system security settings.
News
Pennsylvania State Education Association Data Breach Exposes Over 500,000 Individuals
Mitchell Langley
April 17, 2025
Class Action Lawsuit Filed Over Delayed Response to Pennsylvania State Education Association Data Breach
News
MedEx Ambulance Data Breach: 118,000 Patient Records Exposed
Andrew Doyle
April 16, 2025
MedEx ambulance service confirms a breach impacting 118,418 patients. Sensitive personal, medical, and financial data was exposed, adding to the expanding Landmark Admin data breach ...
News
Endue Software Data Breach Exposes Health Information of Over 118,000 Patients Across U.S. Infusion Centers
Mitchell Langley
April 16, 2025
Endue Software confirms a breach impacting 118,000 individuals, with sensitive healthcare data compromised. The incident adds to ongoing threats across the U.S. healthcare sector.
Blog
Stormous Ransomware: The Pro-Russian Cyber Gang Targeting Global Networks
Gabby Lee
July 3, 2025
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle
May 12, 2025
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Mitchell Langley
May 8, 2025
TOP CYBERSECURITY HEADLINES
SECURITYWEEK INDUSTRY EXPERTS
News
Phishing Scam Costs Nebraska School District $1.8 Million in Construction Funds
Mitchell Langley
July 17, 2025
News
Chinese Cyber-Espionage Group Infiltrates Army National Guard Network Across the US
Andrew Doyle
July 17, 2025
News
Chinese State-Backed Hackers Breach U.S. Army National Guard Network in Espionage Campaign
Mitchell Langley
July 17, 2025
News
Scattered Spider-Attack Hits Co-op, Exposes Data of 6.5 Million Members
Andrew Doyle
July 17, 2025
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.
Featured Videos
Podcasts
- All
- Application Security
- Blog
- CVE Vulnerability Alerts
- Cybersecurity
- Cybersecurity Newsletter
- Data Security
- Endpoint Security
- Identity and Access Management
- Information Security
- Network Security
- News
- Phishing
- Podcasts
- Ransomware
- Ransomware Victims
- Resources
- Security Spotlight
- Threat Actors
- Threat Detection Tools
- Uncategorized
German Cybersecurity Agency Flags Critical Windows Server 2025 Flaw Enabling Domain Takeover
May 29, 2025
BSI warns of an unpatched flaw in Windows Server 2025 Active Directory that allows domain takeover via dMSA. Microsoft rates it moderate; Germany rates it ...
Systemd as a Weapon: How PumaBot Exploits Linux Persistence
May 29, 2025
Linux systems are under siege—particularly in the world of IoT and internet-exposed servers. In this episode, we dissect PumaBot, a new GoLang-based botnet that’s turning ...
The LexisNexis Breach: 364,000 Records Exposed via GitHub
May 29, 2025
On December 25, 2024, while most businesses were offline, a serious data breach struck LexisNexis Risk Solutions—exposing the personal data of over 360,000 individuals. The ...
Everest Ransomware Targets Jordan Kuwait Bank in Alleged Data Breach
May 29, 2025
Everest ransomware group claims to have breached Jordan Kuwait Bank, stealing 11.7GB of internal data, including personal employee details, and demanding ransom by May 31. ...
1.6 Million Customer Emails Exposed in Etsy and TikTok Shop Data Leak
May 29, 2025
An exposed Azure storage bucket leaked 1.6 million customer emails from Etsy, TikTok Shop, and others, revealing names, addresses, and order data.
Chaos Ransomware Claims Attack on Global Charity Giant Salvation Army
May 29, 2025
Chaos ransomware has claimed a cyberattack on the Salvation Army, threatening to leak sensitive charity data unless demands are met. Scope and content remain undisclosed. ...
Ransomware Hits MathWorks: Week-Long Outage Disrupts Millions
May 28, 2025
On this episode, we dissect the ransomware attack that brought MathWorks—a cornerstone software provider for engineers, scientists, and educators—to a grinding halt. The attack, which ...
Zscaler Acquires Red Canary: What It Means for AI-Powered Security Operations
May 28, 2025
The cybersecurity market is booming, projected to triple in size from $215 billion in 2025 to $697 billion by 2035. This explosive growth is being ...
Alleged AT&T Data Breach Exposes 31 Million Records
May 28, 2025
Hackers claim to have leaked 31 million AT&T user records, including tax IDs and IPs, though researchers cannot confirm the breach due to limited data ...
Russian Espionage Group ‘Laundry Bear’ Hacks Dutch Police and NATO-Aligned Targets
May 28, 2025
Dutch intelligence links a new Russian cyber espionage group, Laundry Bear, to attacks on NATO entities and the Dutch police targeting sensitive military and diplomatic ...
DragonForce Breaches MSPs via SimpleHelp Flaws: Inside CVE-2024-57726
May 28, 2025
In this episode, we unpack a critical supply chain breach that’s rattled the cybersecurity world: the exploitation of multiple zero-day vulnerabilities in SimpleHelp Remote Support ...
Firmware and Bootloaders Under Attack as Hackers Target Pre-OS Environments
May 28, 2025
Hackers are escalating attacks on BIOS and bootloaders, exploiting pre-OS vulnerabilities to maintain persistence, evade detection, and bypass Secure Boot protections.
Everest Ransomware Gang Targets $5.4B Global Hospital Group Mediclinic
May 28, 2025
Everest ransomware gang claims cyberattack on global hospital group Mediclinic, stealing employee data and 4GB of internal files. Ransom deadline set for five days.
Coca-Cola Data Breach: Employee Details Leaked After Ignored Ransom Demand
May 28, 2025
Hackers leaked Coca-Cola employee data after the company ignored Everest ransomware’s ransom demand. The breach exposed passport scans, visa documents, and personal IDs online.
Rhysida Ransomware Gang Claims Cyberattack on Brazilian Chevrolet Retailer
May 28, 2025
Rhysida ransomware gang claims to have breached Carrera, a leading Brazilian Chevrolet dealership, demanding $1 million and threatening to leak passports and contracts.
Fentanyl, Firearms, and $200M in Crypto: Dark Web Crime Meets Global Law Enforcement
May 27, 2025
This episode dives deep into Operation RapTor, one of the largest international crackdowns on dark web crime to date. We analyze how coordinated law enforcement ...
Coinbase Faces Investor Lawsuit After Data Breach Exposes 69,000+ Customers
May 27, 2025
Coinbase faces a class action lawsuit after a breach exposed data of over 69,000 users. Insider involvement and financial impact raise enterprise security concerns.
Marlboro-Chesterfield Pathology Ransomware Breach: 235,000 Patients Affected
May 27, 2025
In this episode, we take a deep dive into the recent Marlboro-Chesterfield Pathology (MCP) ransomware attack—one of the most significant healthcare breaches of 2025. On ...
How Infostealers Like Stealc Use TikTok Accounts to Exfiltrate Stolen Data
May 27, 2025
In this episode, we dive deep into the underground cybercrime ecosystem powering the surge of modern infostealers—Stealc, Vidar, and LummaC2. These malware strains aren’t just ...
Global Data Breach Exposes 184 Million Credentials from Major Tech and Government Platforms
May 27, 2025
A global data breach exposed 184 million credentials from tech, government, and banking platforms, highlighting serious risks of credential stuffing, phishing, and ransomware attacks.