Main Menu
Cyber Security
Vietnam Credit Bureau Leak Claims Expose 160 Million Financial Records
Retina Group of Florida and Hampton Regional Medical Center Report Patient Data Breaches
Apple Warns Users of Sophisticated Spyware Attacks Across Multiple Countries
Microsoft to Roll Out Built-In Link Warnings for Teams Chats
National Cyber Director Pushes for Aggressive Cyber Strategy to Shift Risk to Adversaries
U.S. Sanctions Southeast Asian Cybercrime Networks That Stole $10 Billion from Americans
Temu Fined $2 Million for INFORM Consumers Act Violations
NSW Health Data Breach Exposes Personal and Professional Records Of Nearly 600 Doctors
Threat Actor Upgrades Docker API Attacks, Moves Toward Botnet Development
Dynatrace Confirms Customer Data Exposure in Salesforce Supply Chain Breach
Wealthsimple Data Breach Exposes Government IDs in Third-Party Attack
External Attack Surface Management: CISO’s Guide to Mitigating Risk Before It Strikes
U.S. Charges Ukrainian National for Administering Ransomware
Salesloft Data Breach Exposes 700 Companies Through OAuth Token Attack
Doctors Outraged After NSW Health Department Leaks Personal and Professional Data
Salt Typhoon Breach Exposes U.S. Telecom Wiretap Systems
China Is Blurring the Lines Between Civilian AI and Military Power
Rose Acre Farms Targeted in Alleged Lynx Ransomware Attack
Lovesac Confirms Data Breach Following Ransomware Attack
GhostAction Supply Chain Attack on GitHub Exposes 3,325 Secrets
Qantas Airways Reduces CEO’s Bonus Following July Data Breach
Czech Cybersecurity Agency Warns Against Chinese Technology in Critical Infrastructure
Social Engineering Breach Opens Door to Google Salesforce Data Leak
This Week In Cybersecurity: September 1–5, 2025
Cybersecurity Leadership: An Expert Talks Executive Risk
Hack on In-Flight Connectivity Provider Anuvu Exposes Starlink User Data
Wealthsimple Data Breach Leaked Client Information Online
Jaguar Land Rover Cyberattack Severely Disrupts Production, Systems Taken Offline
GPS Jamming Attack Forces Ursula Von Der Leyen’s Plane to Land Without Navigation
Santa Fe County Website “Hack” Likely Based on Old Source Code
Rose Acre Farms Targeted in Alleged Lynx Ransomware Attack
Cybersecurity
Rose Acre Farms Targeted in Alleged Lynx Ransomware Attack
Gabby Lee September 9, 2025
Rose Acre Farms, America’s second-largest egg producer, was allegedly hit by Lynx ransomware, with attackers claiming encrypted data in a breach that threatens food supply ...
Lovesac Confirms Data Breach Following Ransomware Attack
Cybersecurity
Lovesac Confirms Data Breach Following Ransomware Attack
Mitchell Langley September 9, 2025
Lovesac confirmed a ransomware-linked data breach impacting personal information. Attackers accessed systems in February 2025, with stolen data linked to the RansomHub ransomware group’s extortion ...
GhostAction Supply Chain Attack on GitHub Exposes 3,325 Secrets
Cybersecurity
GhostAction Supply Chain Attack on GitHub Exposes 3,325 Secrets
Mitchell Langley September 9, 2025
The GhostAction supply chain attack on GitHub compromised 3,325 secrets, including npm, PyPI, AWS, and GitHub tokens, after attackers injected malicious workflows into 817 repositories.
Qantas Airways Reduces CEO's Bonus Following July Data Breach
Cybersecurity
Qantas Airways Reduces CEO’s Bonus Following July Data Breach
Andrew Doyle September 9, 2025
Qantas Airways reduced CEO Vanessa Hudson’s pay by $250,000 following a July cyber attack that exposed 4.5 million customer records, reflecting leadership accountability and strengthened ...
This Week In Cybersecurity: September 1–5, 2025
Cybersecurity
This Week In Cybersecurity: September 1–5, 2025
Andrew Doyle September 8, 2025
News Stories Jaguar Land Rover Cyberattack Severely Disrupts Production Systems Taken Offline Jaguar Land Rover halted operations after a cyberattack ...
Czech Cybersecurity Agency Warns Against Chinese Technology in Critical Infrastructure
Cybersecurity
Czech Cybersecurity Agency Warns Against Chinese Technology in Critical Infrastructure
Mitchell Langley September 8, 2025
The Czech Republic’s cybersecurity agency warns critical infrastructure operators against Chinese technology, elevates threat level to “High,” and cites confirmed malicious activity, data access risks, ...
Social Engineering Breach Opens Door to Google Salesforce Data Leak
Cybersecurity
Social Engineering Breach Opens Door to Google Salesforce Data Leak
Gabby Lee September 8, 2025
A phishing attack on a Google employee led to a Salesforce breach, exposing business contact data. Gmail remained secure, but the incident underscores the power ...
Cybersecurity Leadership: An Expert Talks Executive Risk
Cybersecurity
Cybersecurity Leadership: An Expert Talks Executive Risk
Andrew Doyle September 8, 2025
Leah Santos, CISO and Cyber Resilience Advisor Talks Executive Risk
Hack on In-Flight Connectivity Provider Anuvu Exposes Starlink User Data
Cybersecurity
Hack on In-Flight Connectivity Provider Anuvu Exposes Starlink User Data
Andrew Doyle September 8, 2025
Hackers breached inflight connectivity provider Anuvu, exposing sensitive data including Starlink service records, user credentials, and corporate details linked to major airline and maritime customers ...
Wealthsimple Data Breach Leaked Client Information Online
Cybersecurity
Wealthsimple Data Breach Leaked Client Information Online
Andrew Doyle September 8, 2025
Wealthsimple confirmed a September 2025 data breach affecting under one percent of clients. Personal details were exposed, but passwords and funds remained fully secure throughout ...
Jaguar Land Rover Cyberattack Severely Disrupts Production, Systems Taken Offline
Cybersecurity
Jaguar Land Rover Cyberattack Severely Disrupts Production, Systems Taken Offline
Andrew Doyle September 5, 2025
Jaguar Land Rover confirmed a cyberattack that forced factories offline and disrupted production. Systems remain down, though the automaker says no customer data has been ...
GPS Jamming Attack Forces Ursula Von Der Leyen’s Plane to Land Without Navigation
Cybersecurity
GPS Jamming Attack Forces Ursula Von Der Leyen’s Plane to Land Without Navigation
Mitchell Langley September 5, 2025
Ursula von der Leyen’s plane was hit by a suspected Russian GPS jamming attack over Bulgaria, forcing pilots to land manually with paper maps after ...
Embassy Breach Alert Iranian Hackers Exploit 100+ Email Accounts via Phishing
News
Embassy Breach Alert: Iranian Hackers Exploit 100+ Email Accounts via Phishing
Gabby Lee September 5, 2025
Iranian state-backed hackers have launched a phishing campaign compromising 104 email accounts and targeting 50+ embassies, ministries, and organizations worldwide. Using hijacked government emails and ...
Santa Fe County Website “Hack” Likely Based on Old Source Code
Cybersecurity
Santa Fe County Website “Hack” Likely Based on Old Source Code
Gabby Lee September 4, 2025
Hackers claimed to leak Santa Fe County’s website source code, but researchers found the data outdated, likely from the early 2010s, raising doubts about its ...
Salesforce Supply Chain Breach Hits Palo Alto Networks Customers
Application Security
Salesforce Supply Chain Breach Hits Palo Alto Networks Customers
Mitchell Langley September 4, 2025
Palo Alto Networks confirmed exposure of customer records in a Salesforce breach via Drift tokens, as Unit 42 warned attackers mass-exfiltrated sensitive data and credentials ...
Evertec Confirms 130M Fraud Attempt in Sinqia Pix Cyberattack
Cybersecurity
Evertec Confirms $130M Fraud Attempt in Sinqia Pix Cyberattack
Gabby Lee September 4, 2025
Hackers breached Evertec’s Brazilian subsidiary Sinqia, attempting a $130 million theft via Pix. Using stolen vendor credentials, they initiated unauthorized transfers before operations were suspended ...
Cloudflare Confirms Salesforce Breach in Growing Supply Chain Attack
Cybersecurity
Cloudflare Confirms Salesforce Breach in Growing Supply Chain Attack
Andrew Doyle September 4, 2025
Cloudflare confirmed its Salesforce instance was breached through compromised SalesLoft and Drift integrations, exposing customer data in a campaign affecting 700+ companies. The company’s detailed ...
Exploring Ransomware EDR-Killer Tools How New Tactics Undermine Endpoint Security
Blog
Exploring Ransomware EDR-Killer Tools: How New Tactics Undermine Endpoint Security
Gabby Lee September 4, 2025
A new wave of EDR-killer tools is reshaping ransomware tactics, enabling groups like RansomHub, Medusa, and Blacksuit to disable endpoint defenses. By exploiting vulnerable drivers ...
Agentic AI Steals Spotlight at Black Hat 2025 with Real-Time Threat Response
Blog
Agentic AI Steals Spotlight at Black Hat 2025 with Real-Time Threat Response
Mitchell Langley September 4, 2025
Agentic AI took center stage at Black Hat USA 2025, marking a definitive pivot from conceptual discussions to real-world deployment. ...
DHS Cuts 27M Cybersecurity Support Impact on 19,000 Local Governments
Cybersecurity
DHS Cuts $27M Cybersecurity Support: Impact on 19,000 Local Governments
Gabby Lee September 4, 2025
The Department of Homeland Security (DHS) will halt $27 million in annual federal funding for the Multi-State Information Sharing and ...
Security Flaw in Yellow.ai Chatbot Allowed Cookie Theft and Account Hijacking
Cybersecurity
Security Flaw in Yellow.ai Chatbot Allowed Cookie Theft and Account Hijacking
Mitchell Langley September 18, 2025
Evertec Confirms 130M Fraud Attempt in Sinqia Pix Cyberattack
Cybersecurity
Evertec Confirms $130M Fraud Attempt in Sinqia Pix Cyberattack
Gabby Lee September 4, 2025
Maryland’s Paratransit Ransomware Strike Cyberattack Disrupts Disabled Transit Services
News
Maryland’s Paratransit Ransomware Strike: Cyberattack Disrupts Disabled Transit Services
Mitchell Langley September 2, 2025
Inotiv Ransomware Attack Disrupts Operations After Qilin Claims 176GB Data Theft
News
Inotiv Ransomware Attack Disrupts Operations After Qilin Claims 176GB Data Theft
Gabby Lee August 19, 2025

TOP CYBERSECURITY HEADLINES

Vietnam Credit Bureau Leak Claims Expose 160 Million Financial Records
Cybersecurity
Vietnam Credit Bureau Leak Claims Expose 160 Million Financial Records
Retina Group of Florida and Hampton Regional Medical Center Report Patient Data Breaches
Cybersecurity
Retina Group of Florida and Hampton Regional Medical Center Report Patient Data Breaches
Apple Warns Users of Sophisticated Spyware Attacks Across Multiple Countries
Cybersecurity
Apple Warns Users of Sophisticated Spyware Attacks Across Multiple Countries
Microsoft to Roll Out Built-In Link Warnings for Teams Chats
Cybersecurity
Microsoft to Roll Out Built-In Link Warnings for Teams Chats

This Week’s Security Spotlight

This Week In Cybersecurity: September 1–5, 2025
Cybersecurity
This Week In Cybersecurity: September 1–5, 2025
Andrew Doyle September 8, 2025
Cloudflare Confirms Salesforce Breach in Growing Supply Chain Attack
Cybersecurity
Cloudflare Confirms Salesforce Breach in Growing Supply Chain Attack
Andrew Doyle September 4, 2025
Hackers Threaten Google with Data Leak Unless it Fires Threat Intelligence Employees
Cybersecurity
Hackers Threaten Google with Data Leak Unless it Fires Threat Intelligence Employees
Mitchell Langley September 3, 2025
SK Telecom Fined 96.9M After Data Breach Hits 23M Users
Cybersecurity
SK Telecom Hit with Record US$96.9 Million Fine After Data Breach Exposes 23 Million Users
Gabby Lee September 3, 2025
More In News
Trending
ClickFix Phishing Campaign Targets Booking.com Using Infostealers and RATs
Darcula PhaaS 3.0 Auto-Generates Phishing Kits for Any Brand
Sophisticated Gmail Attacks Target Users: FBI Issues “Do Not Click” Alert
This Facebook Phishing Attack Could Steal EVERYTHING!

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
How SystemBC’s 1,500 Infected VPS Servers Fuel Ransomware and Fraud
September 19, 2025
Podcasts
Tiffany & Co. Data Breach Exposes Gift Card Details of 2,500+ Customers
September 18, 2025
Podcasts
Lakera’s Gandalf Network Joins Check Point in $300M AI Security Deal
September 17, 2025

Cyber Security News

Microsoft to Roll Out Built-In Link Warnings for Teams Chats
Cybersecurity
Microsoft to Roll Out Built-In Link Warnings for Teams Chats
September 15, 2025
National Cyber Director Pushes for Aggressive Cyber Strategy to Shift Risk to Adversaries
Cybersecurity
National Cyber Director Pushes for Aggressive Cyber Strategy to Shift Risk to Adversaries
September 11, 2025
U.S. Sanctions Southeast Asian Cybercrime Networks That Stole $10 Billion from Americans
Cybersecurity
U.S. Sanctions Southeast Asian Cybercrime Networks That Stole $10 Billion from Americans
September 11, 2025
Temu Fined $2 Million for INFORM Consumers Act Violations
Cybersecurity
Temu Fined $2 Million for INFORM Consumers Act Violations
September 11, 2025
NSW Health Data Breach Exposes Personal and Professional Records Of Nearly 600 Doctors
Cybersecurity
NSW Health Data Breach Exposes Personal and Professional Records Of Nearly 600 Doctors
September 11, 2025
Threat Actor Upgrades Docker API Attacks, Moves Toward Botnet Development
Cybersecurity
Threat Actor Upgrades Docker API Attacks, Moves Toward Botnet Development
September 11, 2025
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Detection Tools
National Cyber Director Pushes for Aggressive Cyber Strategy to Shift Risk to Adversaries
September 11, 2025
National Cyber Director Sean Cairncross calls for a unified cyber strategy, urging CISA 2015 reauthorization, IT modernization, and stronger deterrence measures to shift risk onto ...
U.S. Sanctions Southeast Asian Cybercrime Networks That Stole $10 Billion from Americans
September 11, 2025
The U.S. Treasury sanctioned 19 Southeast Asian cybercrime networks tied to forced labor, trafficking, and scams that stole over $10 billion from Americans in 2024.
Temu Fined $2 Million for INFORM Consumers Act Violations
September 11, 2025
Temu will pay $2 million to settle FTC and DoJ claims it violated the INFORM Consumers Act by failing to disclose seller details and suspicious ...
Threat Actor Upgrades Docker API Attacks, Moves Toward Botnet Development
September 11, 2025
Attackers targeting exposed Docker APIs have upgraded their tools, enabling persistent access, lateral movement, and self-replication—laying the groundwork for a potential large-scale botnet campaign.
NSW Health Data Breach Exposes Personal and Professional Records Of Nearly 600 Doctors
September 11, 2025
A major data privacy lapse has rattled the New South Wales (NSW) health system after confidential records of nearly 600 medical staff — including 67 ...
Wealthsimple Data Breach Exposes Government IDs in Third-Party Attack
September 11, 2025
Wealthsimple confirmed a third-party data breach exposing account numbers, government IDs, and SINs of 30,000 clients. No funds stolen, but identity theft risks remain significant.
Dynatrace Confirms Customer Data Exposure in Salesforce Supply Chain Breach
September 11, 2025
Dynatrace confirmed customer data exposure in the Salesforce supply chain breach via Salesloft Drift, joining Cloudflare, Google, and others hit by the Scattered LapSus$ Hunters ...
External Attack Surface Management: CISO’s Guide to Mitigating Risk Before It Strikes
September 11, 2025
External Attack Surface Management gives CISOs continuous visibility into internet-facing assets, prioritizes risks by context, and enables proactive remediation—shrinking exposure before attackers exploit vulnerabilities.
Salesloft Data Breach Exposes 700 Companies Through OAuth Token Attack
September 11, 2025
A major security breach at Salesloft has compromised sensitive information from more than 700 companies, marking one of the largest enterprise incidents linked to OAuth ...
U.S. Charges Ukrainian National for Administering Ransomware
September 11, 2025
The U.S. charged Ukrainian national Volodymyr Tymoshchuk for administering LockerGoga, MegaCortex, and Nefilim ransomware, linked to hundreds of corporate breaches and millions in damages worldwide.
Doctors Outraged After NSW Health Department Leaks Personal and Professional Data
September 11, 2025
NSW Health exposed passports, medical credentials, and IDs of nearly 600 doctors, sparking outrage and raising serious risks of identity theft, fraud, and professional impersonation.
Salt Typhoon Breach Exposes U.S. Telecom Wiretap Systems
September 10, 2025
Chinese-linked APT group Salt Typhoon infiltrated major U.S. telecom providers in 2024, compromising surveillance systems and metadata from millions of users. The breach exposed lawful ...
China Is Blurring the Lines Between Civilian AI and Military Power
September 9, 2025
China is merging civilian AI with military applications. Everyday tools like drones and voice apps are being leveraged by the PLA, according to a CSET ...
Rose Acre Farms Targeted in Alleged Lynx Ransomware Attack
September 9, 2025
Rose Acre Farms, America’s second-largest egg producer, was allegedly hit by Lynx ransomware, with attackers claiming encrypted data in a breach that threatens food supply ...
Lovesac Confirms Data Breach Following Ransomware Attack
September 9, 2025
Lovesac confirmed a ransomware-linked data breach impacting personal information. Attackers accessed systems in February 2025, with stolen data linked to the RansomHub ransomware group’s extortion ...
GhostAction Supply Chain Attack on GitHub Exposes 3,325 Secrets
September 9, 2025
The GhostAction supply chain attack on GitHub compromised 3,325 secrets, including npm, PyPI, AWS, and GitHub tokens, after attackers injected malicious workflows into 817 repositories.
Qantas Airways Reduces CEO’s Bonus Following July Data Breach
September 9, 2025
Qantas Airways reduced CEO Vanessa Hudson’s pay by $250,000 following a July cyber attack that exposed 4.5 million customer records, reflecting leadership accountability and strengthened ...
The “s1ngularity” Attack: How Hackers Hijacked Nx and Leaked Thousands of Repositories
September 8, 2025
In late August 2025, the open-source software ecosystem was rocked by a sophisticated two-phase supply chain attack, now known as “s1ngularity.” The incident began when ...
Canadian Investment Giant Wealthsimple Hit by Vendor Compromise
September 8, 2025
Wealthsimple, one of Canada’s largest online investment platforms, has confirmed a data breach that exposed the sensitive information of fewer than 1% of its three ...
FireCompass Raises $20M to Scale AI-Powered Offensive Security
September 8, 2025
In a year when cybercrime is projected to cost the world over $10.5 trillion, FireCompass has emerged as one of the most closely watched AI-driven ...
WatchGuard Firebox Vulnerability Could Let Hackers Take Over Networks
How SystemBC’s 1,500 Infected VPS Servers Fuel Ransomware and Fraud
Tiffany & Co. Data Breach Exposes Gift Card Details of 2,500+ Customers
Security Flaw in Yellow.ai Chatbot Allowed Cookie Theft and Account Hijacking
Russian Gang Claims Breach of U.S. Broadcaster; Executive Passport Exposed
FBI Warns of UNC6040 and UNC6395 Threat Actors Targeting Salesforce
Retina Group of Florida and Hampton Regional Medical Center Report Patient Data Breaches
Vietnam Credit Bureau Leak Claims Expose 160 Million Financial Records
Lakera’s Gandalf Network Joins Check Point in $300M AI Security Deal
Shai-Hulud Exposes Fragility of the Open-Source Software Supply Chain
ChatGPT Calendar Vulnerability Exposes User Emails in New AI Attack
CrowdStrike Acquires Pangea to Launch AI Detection and Response (AIDR)
RaccoonO365: $100K Phishing-as-a-Service Scheme Taken Down
AI-Generated Phishing and Deepfakes Supercharge Social Engineering Attacks
Phoenix Attack Breaks DDR5 Rowhammer Defenses: Root in 109 Seconds
Silent Push Raises $10M Series B to Expand Threat Intelligence Platform
Google Accused of Shadow Lobbying Against California Privacy Opt-Out Law
FinWise Bank Data Breach Exposes 700K Customers Amid Predatory Lending Allegations
Apple Warns Users of Sophisticated Spyware Attacks Across Multiple Countries
Microsoft to Roll Out Built-In Link Warnings for Teams Chats