Main Menu
Cyber Security
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
10 Key Benefits of Cyber Tabletop Exercises
Network Security in a Digital World: Understanding and Mitigating Risks
WhatsApp Patches Zero-Day Flaw Exploited by Paragon Spyware
Vo1d Botnet Surpasses 1.59 Million Infected Android TVs Across 226 Countries
News
Vo1d Botnet Surpasses 1.59 Million Infected Android TVs Across 226 Countries
Mitchell Langley March 4, 2025
The Vo1d botnet has infected over 1.59 million Android TVs across 226 countries, enhancing its stealth and operational capabilities significantly.
ClickFix Attack Deploys Havoc C2 via Microsoft SharePoint
News
ClickFix Attack Deploys Havoc C2 via Microsoft SharePoint
Mitchell Langley March 4, 2025
A new ClickFix attack is exploiting Microsoft SharePoint to deploy the Havoc framework, tricking users into running malicious PowerShell commands.
CISA Tags Windows and Cisco Vulnerabilities as Actively Exploited
News
CISA Tags Windows and Cisco Vulnerabilities as Actively Exploited
Andrew Doyle March 4, 2025
CISA warns that critical vulnerabilities in Cisco and Windows systems are actively exploited, urging federal agencies to secure networks by March 23, 2025.
Freddie Mac Data Breach: Social Security Numbers Compromised
News
Freddie Mac Data Breach: Social Security Numbers Compromised
Andrew Doyle March 3, 2025
Freddie Mac confirms a significant data breach exposing customer names and Social Security numbers. The extent of the breach and its cause remain under investigation. ...
Belgian Intelligence Service Breach: Chinese Hackers Under Investigation
News
Belgian Intelligence Service Breach: Chinese Hackers Under Investigation
Andrew Doyle March 3, 2025
Belgian authorities investigate a potential Chinese state-sponsored cyberattack on its State Security Service (VSSE), compromising sensitive data and emails between 2021 and 2023. The breach ...
Via Credit Union Data Breach Impacts Thousands: Indiana Credit Unions Face Cybersecurity Challenges
News
Via Credit Union Data Breach Impacts Thousands: Indiana Credit Unions Face Cybersecurity Challenges
Mitchell Langley March 3, 2025
Via Credit Union suffered a significant data breach affecting over 60,000 members, exposing sensitive personal and financial data. Interra Credit Union also experienced a smaller ...
Angel One Data Leak: AWS Breach Exposes User Data
News
Angel One Data Leak: AWS Breach Exposes User Data
Andrew Doyle March 3, 2025
Angel One, a leading stockbroking firm, suffered a data leak. Unauthorized access to AWS resources exposed client data. An investigation is underway.
This Week In Cybersecurity: 24th February to 28th February
Cybersecurity Newsletter
This Week In Cybersecurity: 24th February to 28th February
Mitchell Langley March 3, 2025
Explore the latest cybersecurity incidents, including the EncryptHub ransomware affecting 618 organizations, a Jasper network breach, and the $1.5 billion Bybit hack. Southern Water faced ...
State of Code Security in 2025: A Wiz Report Reveals Critical Vulnerabilities
News
State of Code Security in 2025: A Wiz Report Reveals Critical Vulnerabilities
Mitchell Langley March 3, 2025
Wiz's 2025 State of Code Security Report exposes alarming vulnerabilities in code repositories: 61% of organizations have secrets exposed in public repositories, leaving sensitive data ...
Serbian Police Exploit Cellebrite Zero-Day to Unlock Android Phones
News
Serbian Police Exploit Cellebrite Zero-Day to Unlock Android Phones
Andrew Doyle March 3, 2025
Serbian authorities exploited Cellebrite's zero-day Android vulnerabilities (CVE-2024-53104, CVE-2024-53197, CVE-2024-50302) to unlock a phone, raising serious security concerns for enterprises.
Ransomware Groups Use BYOVD Attacks Exploiting Paragon Partition Manager Bug
News
Ransomware Groups Use BYOVD Attacks Exploiting Paragon Partition Manager Bug
Andrew Doyle March 3, 2025
Critical Paragon Partition Manager vulnerabilities are being exploited in BYOVD attacks, allowing ransomware gangs SYSTEM-level access and execution of malicious code. Urgent patching is advised. ...
Major Data Breach Exposes 33,000+ Users of Flat Earth Zodiac App
News
Major Data Breach Exposes 33,000+ Users of Flat Earth Zodiac App
Andrew Doyle March 3, 2025
A significant data breach impacting the "Flat Earth Sun, Moon and Zodiac" mobile application has exposed the personal information of over 33,000 users. This incident ...
EncryptHub Ransomware and Infostealer Campaign Targets 618 Organizations Globally
News
EncryptHub Ransomware and Infostealer Campaign Targets 618 Organizations Globally
Andrew Doyle February 27, 2025
EncryptHub Breach Affects 618 Organizations Hit Using Infostealers and Ransomware
Genea IVF Data Breach Claimed by Termite Ransomware Gang
News
Genea IVF Data Breach Claimed by Termite Ransomware Gang
Mitchell Langley February 27, 2025
Australian IVF provider Genea suffered a major data breach. The Termite ransomware gang stole 940GB of sensitive patient data. This includes medical histories, personal details, ...
Lazarus Group Stole $1.5 Billion in Bybit Hack by Exploiting a Safe{Wallet} Developer Machine
News
Lazarus Group Stole $1.5 Billion in Bybit Hack by Exploiting a Safe{Wallet} Developer Machine
Mitchell Langley February 27, 2025
Lazarus hackers stole $1.5 billion from Bybit by compromising a Safe{Wallet} developer machine. The attack involved malicious JavaScript, highlighting vulnerabilities in multisig wallet platforms.
Black Basta Ransomware Costs Southern Water £4.5 Million
News
Black Basta Ransomware Costs Southern Water £4.5 Million
Andrew Doyle February 27, 2025
Southern Water reveals a £4.5 million cost from a Black Basta ransomware attack in February 2024. The attack, while not impacting operations, triggered significant expenses ...
Jasper Network Breach: City Investigates Cybersecurity Incident
News
Jasper Network Breach: City Investigates Cybersecurity Incident
Mitchell Langley February 27, 2025
Jasper, Alabama, is investigating a network security breach. Experts are working to determine the extent of the unauthorized access. No personal data is believed compromised.
GitVenom Malware Campaign Targets Crypto Users via GitHub
News
GitVenom Malware Campaign Targets Crypto Users via GitHub
Mitchell Langley February 26, 2025
The GitVenom malware campaign uses hundreds of compromised GitHub repositories to distribute info-stealers, RATs, and clipboard hijackers, stealing cryptocurrency and credentials.
Auto-Color Linux Backdoor Malware Targets Governments and Universities
News
Auto-Color Linux Backdoor Malware Targets Governments and Universities
Andrew Doyle February 26, 2025
A new, highly evasive Auto-Color Linux backdoor targets North American and Asian governments and universities. The malware uses custom encryption and rootkit-like features for persistence.
Data Breach at DISA Impacts 3.3 Million Compromising Social Security Numbers and Financial Data
News
Data Breach at DISA Impacts 3.3 Million Compromising Social Security Numbers and Financial Data
Mitchell Langley February 26, 2025
DISA Global Solutions, a US drug testing firm, suffered a data breach exposing the sensitive data of 3.3 million individuals. Social Security numbers and financial ...
INC Ransom: Master of Double Extortion
Ransomware
INC Ransomware: Master of Double Extortion
Gabby Lee June 10, 2025
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle May 12, 2025
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Mitchell Langley May 8, 2025
Ransomware Victims on Dark Web – 04th March, 2025
Ransomware
Ransomware Victims on Dark Web – 04th March, 2025
Gabby Lee April 21, 2025

TOP CYBERSECURITY HEADLINES

BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
News
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
News
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
News
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection
News
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection

SECURITYWEEK INDUSTRY EXPERTS

Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
News
Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
Andrew Doyle June 19, 2025
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
News
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
Andrew Doyle June 19, 2025
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
News
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
Andrew Doyle June 19, 2025
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
News
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Mitchell Langley June 19, 2025
More In News
Trending
What is a Whaling Phishing Attack?
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Email Spoofing 101: Understanding the Basics and How to Protect Your Enterprise Data
How AI is Revolutionizing Phishing Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Ransomware Hits MathWorks: Week-Long Outage Disrupts Millions
May 28, 2025
Podcasts
Zscaler Acquires Red Canary: What It Means for AI-Powered Security Operations
May 28, 2025
Podcasts
DragonForce Breaches MSPs via SimpleHelp Flaws: Inside CVE-2024-57726
May 28, 2025

Cyber Security News

What is Maze Ransomware? A Comprehensive Guide for Enterprises
Blog
What is Maze Ransomware? A Comprehensive Guide for Enterprise Businesses
August 21, 2024
Cyber Resilience Your Lifeline Against Cyberattacks
Blog
Cyber Resilience: Your Lifeline Against Cyberattacks
August 19, 2024
This Week in Cybersecurity: 12th August to 16th August, National Public Data Breach Exposed Personal Information of Billions
Cybersecurity
This Week in Cybersecurity: 12th August to 16th August, National Public Data Breach Exposed Personal Information of Billions
August 16, 2024
NetSuite Stores Leak: Sensitive Customer Data Exposed due to Access Control Misconfiguration
Cybersecurity
NetSuite Stores Leak: Sensitive Customer Data Exposed due to Access Control Misconfiguration
August 16, 2024
APT31 and APT27 Target Russian Organizations in Sophisticated Cyberespionage Campaign
Cybersecurity
APT31 and APT27 Target Russian Organizations in Sophisticated Cyberespionage Campaign
August 12, 2024
This Week in Cybersecurity: 5th August to 9th August, National Public Data Breach
Cybersecurity
This Week in Cybersecurity: 5th August to 9th August, National Public Data Breach
August 9, 2024
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
Endue Software Data Breach Exposes Health Information of Over 118,000 Patients Across U.S. Infusion Centers
April 16, 2025
Endue Software confirms a breach impacting 118,000 individuals, with sensitive healthcare data compromised. The incident adds to ongoing threats across the U.S. healthcare sector.
4chan Offline After Cyberattack: Hackers Claim Full Admin Access and Leak Internal Data
April 16, 2025
4chan suffered a major cyberattack on April 14, 2025, with hackers leaking admin tools, emails, and source code while the site remains intermittently offline.
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
April 16, 2025
Skyward Specialty Insurance Group reports a data breach involving unauthorized access to sensitive personal information, prompting investigations and notifications to affected individuals.
DaVita Confirms Ransomware Attack, Activates Containment Measures
April 16, 2025
DaVita, a major dialysis provider, confirmed a ransomware attack impacting operations. Patient care continues as investigations progress and potential links to the Landmark Admin data ...
Landmark Admin Data Breach: 1.6 Million Affected Individuals
April 16, 2025
Landmark Admin's data breach has expanded to affect over 1.6 million individuals, compromising sensitive personal information and prompting enhanced security measures.​
Inside Security News : GitHub Supply Chain Attacks, Ransomware Defense, and the Future of Cloud Security
April 15, 2025
In this deep-dive episode, we untangle some of today’s most critical cybersecurity threats—from GitHub’s complex quadruple supply chain attack to the rising concerns over Kubernetes ...
Hertz Data Breach: Customer Information and Driver’s Licenses Compromised in Cleo Zero-Day Attack
April 15, 2025
Hertz confirms a data breach exposing customer data due to Cleo zero-day exploits. Clop ransomware gang leaked some of the stolen information on their site. ...
B.C. Healthcare Data Breach Exposes 28,000 SINs; Leads to CRA Account Hacks and Identity Theft
April 15, 2025
A massive Interior Health data breach in B.C. exposed 28,000 Social Insurance Numbers, leading to hacked CRA accounts, identity theft, and fraudulent tax filings.
Planned Parenthood Data Breach Exposes Sensitive Information of 1.6 Million Patients Across 30 States
April 15, 2025
A data breach at a Planned Parenthood lab vendor exposed personal, financial, and health information of 1.6 million people across 30 states in October 2024.
Conduent Confirms Client Data Breach from January 2025 Cyberattack
April 15, 2025
Conduent confirms that client data was stolen during a January 2025 cyberattack, involving personal information of end-users. The company is notifying affected clients accordingly.
Qilin Ransomware Gang Claims Attack on SK Group, Steals 1TB of Corporate Data
April 14, 2025
Qilin ransomware gang claims responsibility for cyberattack on SK Group, stealing 1TB of data from the South Korean conglomerate with deep investments in U.S. industries. ...
Next.js Security Vulnerability: Middleware Bypass (CVE-2025-29927)
April 14, 2025
Is your web app truly secure? In this episode, we break down a critical NextJS vulnerability (CVE-2025-29927) that could allow attackers to bypass authentication and ...
Mercury Corp. Data Breach Exposes Personal Information of Thousands in Aerospace Manufacturing Sector
April 14, 2025
A cyberattack targeting Mercury Corp. exposed sensitive personal information of over 3,000 individuals, including Social Security and driver’s license numbers, in a one-day breach.
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
April 14, 2025
Hacker forum Cracked is back online after an FBI takedown, reactivating its services under a new domain with a fresh admin and millions of users.
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
April 14, 2025
A hacker claims to have breached Wolters Kluwer, leaking sensitive contact data linked to Fortune 500 firms and global enterprises. The company is investigating.
This Week In Cybersecurity: April 14th to April 18th
April 14, 2025
This week in cybersecurity highlights critical incidents, including multiple data breaches affecting educational and legal institutions, the resurgence of the Mirai botnet, and the evolving ...
IKEA Ransomware Attack Cost Fourlis Group Millions in Revenue
April 14, 2025
Cybersecurity incident disrupted IKEA operations across multiple countries just before Black Friday The IKEA ransomware attack that struck just two days before Black Friday in ...
Neptune RAT Malware Spreading Through YouTube and GitHub, Targeting Windows PCs
April 10, 2025
Neptune RAT malware is spreading through YouTube and GitHub, infecting Windows PCs. This dangerous Trojan allows hackers complete system control, demanding immediate action from businesses ...
FortiSwitch Flaw Allows Remote Admin Password Changes
April 10, 2025
FortiSwitch vulnerability (CVE-2024-48887) lets attackers remotely change admin passwords. Fortinet released patches; immediate updates are crucial.
Oracle Denies Major Cloud Breach, Confirms Hack of “Obsolete Servers”
April 10, 2025
Oracle denies a major cloud breach, confirming instead a hack of obsolete servers. No Oracle Cloud customer data was compromised, the company claims.
The Nucor Cyberattack: How Ransomware Threatens American Steel
Inside the $225M Crypto Seizure: How Law Enforcement Traced Illicit Funds Across Borders
Inside CVE-2025-23121: Veeam RCE Flaw Opens Door to Ransomware
Fasana’s Collapse: How One Ransomware Attack Crippled a German Manufacturer
Inside the 16 Billion Credential Leak: The Infostealer Engine Behind the Biggest Breach Yet
Over 1,500 Minecraft Users Infected in Stargazers Ghost Malware Campaign
Oxford City Council Breach Exposes 21 Years of Data
Weaponized GitHub Repositories: How Banana Squad and Water Curse Are Hitting Devs
Chain IQ Breach Exposes UBS & Pictet Employee Data: A Supply Chain Failure
Citrix NetScaler Flaws Expose Enterprise Networks: CVE-2025-5349 & CVE-2025-5777
GerriScary: How CVE-2025-1568 Threatened Google’s Open-Source Supply Chain
Cisco & Atlassian Under Fire: High-Severity Flaws and What’s at Risk
Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Double Extortion, Biometric Data, and Donuts: How Play Ransomware Hit Krispy Kreme
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection