Main Menu
Cyber Security
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
10 Key Benefits of Cyber Tabletop Exercises
Network Security in a Digital World: Understanding and Mitigating Risks
WhatsApp Patches Zero-Day Flaw Exploited by Paragon Spyware
Latvian Document Management System Leak Exposes 25 Million Records
News
Latvian Document Management System Leak Exposes 25 Million Records
Mitchell Langley February 19, 2025
A Latvian document management system leak exposed 25 million records, including names, national IDs, and addresses, highlighting critical data security vulnerabilities.
OpenSSH Flaws Expose SSH Servers to Critical DoS Attacks and MiTM Vulnerabilities
News
OpenSSH Flaws Expose SSH Servers to Critical DoS Attacks and MiTM Vulnerabilities
Andrew Doyle February 19, 2025
Critical OpenSSH vulnerabilities enable devastating DoS attacks and sophisticated MiTM attacks on SSH servers. Immediate updates are crucial to prevent data breaches and service disruptions.
MacOS Malware FrigidStealer Employ Sophisticated Web Injection Attacks
News
MacOS Malware FrigidStealer Employ Sophisticated Web Injection Attacks
Andrew Doyle February 19, 2025
New MacOS malware, FrigidStealer, uses web injection attacks by cybercriminal groups TA2726 and TA2727, distributing malware based on browser and operating system, bypassing security ...
Zacks Investment Research Breach: 12 Million Records Exposed in Latest Cyber Attack
News
Zacks Investment Research Breach: 12 Million Records Exposed in Latest Cyber Attack
Mitchell Langley February 18, 2025
A major Zacks Investment Research Breach exposed 12 million customer records, including sensitive personal and financial data, highlighting the urgent need for enhanced cybersecurity measures.
Coast Guard Data Breach Delays Pay for 1,135 Service Members
News
Coast Guard Data Breach Delays Pay for 1,135 Service Members
Mitchell Langley February 18, 2025
A Coast Guard data breach delayed pay for 1,135 service members. The Coast Guard Investigative Service and Coast Guard Cyber Command are investigating the breach, ...
Lee Enterprises Says It Was Hit By a Ransomware Attack
News
Lee Enterprises Says It Was Hit By a Ransomware Attack
Andrew Doyle February 18, 2025
A ransomware attack against Lee Enterprises, a major US newspaper publisher, caused significant disruptions, impacting print and online operations for over two weeks. The attack ...
Finastra Data Breach: Customer Data Compromised in Cyber Attack
News
Finastra Data Breach: Customer Data Compromised in Cyber Attack
Andrew Doyle February 18, 2025
Finastra's data breach exposed customer names and financial account information after a cyber attack. Law enforcement is involved, and affected individuals are urged to take ...
Italian Websites Under Cyberattack: Pro-Russian Group Claims Responsibility
News
Italian Websites Under Cyberattack: Pro-Russian Group Claims Responsibility
Andrew Doyle February 18, 2025
Pro-Russian hackers launched a cyber attack on Italian websites, including banks and airports, in retaliation for President Mattarella's comments comparing Russia's actions to Nazi Germany.
FinalDraft Malware: New Stealthy Cyber Attack Abuses Outlook for Command and Control
News
FinalDraft Malware: New Stealthy Cyber Attack Abuses Outlook for Command and Control
Andrew Doyle February 17, 2025
FinalDraft malware uses Outlook email drafts for covert command-and-control communication, enabling data exfiltration, process injection, and lateral movement with minimal traces. The malware, part of ...
2.7 Billion IoT Device Records Exposed in Massive Data Breach
News
2.7 Billion IoT Device Records Exposed in Massive Data Breach
Andrew Doyle February 17, 2025
A massive data breach exposed 2.7 billion IoT device records, highlighting critical security vulnerabilities and the need for robust authentication and data encryption.
Akira Ransomware Attack Targets Defunct Australian Media Company
News
Akira Ransomware Attack Targets Defunct Australian Media Company
Andrew Doyle February 17, 2025
Akira Ransomware claims a cyber attack on defunct Australian media company Regency Media, stealing 16GB+ of data, highlighting the risk of unmanaged legacy data post-business ...
Australian National University Faces Cyber Attack, FSociety Ransomware Threatens Data Leak
News
Australian National University Faces Cyber Attack, FSociety Ransomware Threatens Data Leak
Mitchell Langley February 17, 2025
The Australian National University (ANU) is facing a serious cyber attack after being targeted by the FSociety ransomware group. The Canberra-based institution is currently investigating ...
Chinese Espionage Tools Fuel RA World Ransomware Attack Targeting Asian Firm
News
Chinese Espionage Tools Fuel RA World Ransomware Attack Targeting Asian Firm
Mitchell Langley February 16, 2025
A China-based threat actor, Emperor Dragonfly, deployed RA World ransomware, demanding $2 million. The attack leveraged tools previously used in Chinese cyber espionage operations, blurring ...
Zacks Investment Data Breach Exposes 12 Million Users
News
Zacks Investment Data Breach Exposes 12 Million Users
Andrew Doyle February 14, 2025
A hacker leaked data from 12 million Zacks Investment accounts, including names, addresses, emails, and passwords. This is potentially the third major breach at Zacks ...
whoAMI Attacks: Exploiting Amazon EC2 Instances for Code Execution
News
whoAMI Attacks: Exploiting Amazon EC2 Instances for Code Execution
Mitchell Langley February 14, 2025
whoAMI attacks allow hackers to gain code execution on Amazon EC2 instances by exploiting flaws in AMI selection. Attackers publish malicious AMIs with names mimicking ...
Chinese Hackers Breach More US Telecoms via Unpatched Cisco Routers despite Sanctions
News
Chinese Hackers Breach More US Telecoms via Unpatched Cisco Routers despite Sanctions
Andrew Doyle February 14, 2025
Chinese hackers, exploiting Cisco router vulnerabilities, breached multiple US telecoms and accessed sensitive government communications, highlighting the ongoing threat of state-sponsored cyberattacks.
Port of Ostend Suffers Cyberattack, Ensor System Targeted
News
Port of Ostend Suffers Cyberattack, Ensor System Targeted
Andrew Doyle February 14, 2025
The Port of Ostend, a significant Belgian port, filed a complaint with the federal police following a cyberattack on Monday night.
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
News
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
Mitchell Langley February 13, 2025
A cyberattack on Papua New Guinea’s Internal Revenue Commission (IRC) in January 2025 compromised its systems, potentially exposing sensitive data. The PNG tax office cyber ...
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
News
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
Andrew Doyle February 13, 2025
Australia imposed sanctions on a Russian entity, ZServers, and five individuals for their alleged involvement in the 2022 Medibank cyberattack, impacting 9.7 million customers.
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
News
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
Mitchell Langley February 12, 2025
North Korean hackers use a PowerShell exploit in a new cyberattack, tricking victims into installing malware. A related scheme involved a woman facilitating North Korean ...
INC Ransom: Master of Double Extortion
Ransomware
INC Ransomware: Master of Double Extortion
Gabby Lee June 10, 2025
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle May 12, 2025
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Mitchell Langley May 8, 2025
Ransomware Victims on Dark Web – 04th March, 2025
Ransomware
Ransomware Victims on Dark Web – 04th March, 2025
Gabby Lee April 21, 2025

TOP CYBERSECURITY HEADLINES

BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
News
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
News
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
News
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection
News
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection

SECURITYWEEK INDUSTRY EXPERTS

Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
News
Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
Andrew Doyle June 19, 2025
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
News
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
Andrew Doyle June 19, 2025
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
News
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
Andrew Doyle June 19, 2025
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
News
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Mitchell Langley June 19, 2025
More In News
Trending
What is a Whaling Phishing Attack?
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Email Spoofing 101: Understanding the Basics and How to Protect Your Enterprise Data
How AI is Revolutionizing Phishing Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
The Great Screenshot Scandal: Microsoft Recall and Signal’s DRM Shield
May 26, 2025
Podcasts
Bumblebee Malware Returns: IT Pros Targeted Through SEO Poisoning and Typosquatting
May 26, 2025
Podcasts
FBI Warns of Luna Moth Tactics: Inside the Silent Ransom Group’s Law Firm Attacks
May 26, 2025

Cyber Security News

5 Cybersecurity Tips for Remote Workers
Blog
5 Cybersecurity Tips for Remote Workers
July 25, 2024
This Week in Cybersecurity: 15th July to 19th July
Cybersecurity
This Week in Cybersecurity: 15th July to 19th July  
July 24, 2024
Microsoft CrowdStrike IT Outage Affected 8.5 Million Windows Devices
Cybersecurity
Microsoft CrowdStrike IT Outage Affected 8.5 Million Windows Devices
July 24, 2024
Data Management as a Service (DMaaS) for Enterprises A Comprehensive Guide
Blog
Data Management as a Service (DMaaS) for Enterprises: A Comprehensive Guide
July 22, 2024
Blog
Why Healthcare is a Prime Target for Cyberattacks
July 18, 2024
AI Cybersecurity Leveraging Generative AI to Combat Threats & Data Breaches
Blog
AI Cybersecurity: Leveraging Generative AI to Combat Threats & Data Breaches
July 15, 2024
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
CISA Warns of Fast Flux DNS Evasion Used by Cybercrime Gangs
April 4, 2025
CISA warns of Fast Flux DNS evasion, a technique used by cybercrime gangs to mask malicious activity by rapidly changing DNS records, making detection and ...
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
April 4, 2025
The IT world is constantly changing, and so are the frameworks that govern it. This blog post delves into the significant differences between COBIT 5 ...
Texas State Bar Data Breach: INC Ransomware Gang Claims Responsibility
April 4, 2025
The Texas State Bar suffered a data breach between January 28 and February 9, 2025, with the INC ransomware gang claiming responsibility and leaking stolen ...
GitHub Supply Chain Attack Traced to Leaked SpotBugs Token
April 4, 2025
A devastating GitHub supply chain attack, targeting Coinbase, stemmed from a leaked SpotBugs token, exposing secrets in 218 repositories and highlighting critical vulnerabilities in open-source ...
Oracle Cloud Breach Confirmed, Data Theft Impacts Legacy Systems
April 4, 2025
Oracle confirms a data breach impacting its legacy Oracle Cloud Classic system, resulting in the theft of client credentials. Investigations are underway, but the company's ...
Hunters International Shifts to Data Extortion and Rebrands as World Leaks
April 4, 2025
Hunters International, a notorious ransomware operation, has rebranded as World Leaks, shifting its focus to data extortion.
$500,000 Lost in Australian Superannuation Fund Data Breach
April 4, 2025
Major Australian superannuation funds experienced a data breach, resulting in $500,000 in losses and impacting thousands of members via a credential stuffing attack.
KillSec: Hacktivists Turned RaaS Syndicate
April 4, 2025
KillSec, a Russia-linked RaaS group, targets healthcare and finance, leveraging OSINT and affiliates for extortion, showing a preference for Asian victims over Western ones.
CVE Vulnerability Alerts – 18th March, 2025
April 4, 2025
This post summarizes various vulnerabilities from recent CVE alerts that could potentially be exploited by malicious actors. Each entry includes brief information on the vulnerability, ...
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
April 4, 2025
The cost of data breach is skyrocketing. This in-depth analysis reveals the staggering financial impact and strategies for mitigation. Learn more.
ChatGPT is Down Worldwide Impacting Millions
April 3, 2025
Global ChatGPT outage caused widespread disruption, displaying a "Something went wrong" error. OpenAI acknowledged the problem and implemented a fix.
Royal Mail Data Breach: No Operational Impact Reported
April 3, 2025
Royal Mail investigates a data breach involving third-party supplier Spectos GmbH. Over 144GB of data, including customer PII, was leaked; however, Royal Mail operations remain ...
Triada Malware Preloaded on Counterfeit Android Devices
April 3, 2025
Counterfeit Android phones are infecting users with Triada malware pre-installed in the firmware, stealing data and cryptocurrency. This supply chain attack highlights the risks of ...
Urgent Security Alert: Exploited CSLU Backdoor Threatens Cisco Systems
April 3, 2025
Exploited Cisco CSLU backdoor admin account enables unauthorized access and control. Immediate patching is critical to prevent attacks.
SimonMed Imaging Confirms Cybersecurity Breach in January 2025
April 3, 2025
SimonMed Imaging confirmed a cybersecurity breach in January 2025, exposing patient data through a vendor, prompting investigations, security upgrades, and at least one class-action lawsuit. ...
173,000 Patients Affected by Chord Specialty Dental Partners Email Data Breach
April 3, 2025
Chord Specialty Dental Partners reports a data breach impacting 173,000 patients, exposing personal and health data, and offering free credit monitoring services to affected individuals. ...
openSNP to Shut Down: Genetic Data Privacy Concerns Lead to Platform Closure
April 3, 2025
openSNP, a genetic data sharing platform, will close and delete all data on April 30th due to escalating privacy concerns and the risk of government ...
RedCurl Cyberespionage Group Deploys Ransomware Targeting Hyper-V
March 27, 2025
RedCurl, a known cyberespionage group, has deployed QWCrypt ransomware targeting Hyper-V servers, marking a significant shift in their tactics and raising concerns about their motivations.
Garden of Life Faces Three Class-Action Lawsuits Following Data Breach
March 27, 2025
Garden of Life faces three class-action lawsuits after a data breach exposed customer payment card information, alleging negligence and inadequate data security.
NSW Government Website Data Breach With 9,000 Court files
March 27, 2025
major data breach exposed 9,000 sensitive NSW court files. Authorities are investigating, aiming to identify accessed data within a week. Victims are urged to ...
The Nucor Cyberattack: How Ransomware Threatens American Steel
Inside the $225M Crypto Seizure: How Law Enforcement Traced Illicit Funds Across Borders
Inside CVE-2025-23121: Veeam RCE Flaw Opens Door to Ransomware
Fasana’s Collapse: How One Ransomware Attack Crippled a German Manufacturer
Inside the 16 Billion Credential Leak: The Infostealer Engine Behind the Biggest Breach Yet
Over 1,500 Minecraft Users Infected in Stargazers Ghost Malware Campaign
Oxford City Council Breach Exposes 21 Years of Data
Weaponized GitHub Repositories: How Banana Squad and Water Curse Are Hitting Devs
Chain IQ Breach Exposes UBS & Pictet Employee Data: A Supply Chain Failure
Citrix NetScaler Flaws Expose Enterprise Networks: CVE-2025-5349 & CVE-2025-5777
GerriScary: How CVE-2025-1568 Threatened Google’s Open-Source Supply Chain
Cisco & Atlassian Under Fire: High-Severity Flaws and What’s at Risk
Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Double Extortion, Biometric Data, and Donuts: How Play Ransomware Hit Krispy Kreme
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection