Main Menu
Cyber Security
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
10 Key Benefits of Cyber Tabletop Exercises
Network Security in a Digital World: Understanding and Mitigating Risks
WhatsApp Patches Zero-Day Flaw Exploited by Paragon Spyware
TalkTalk Customer Data Breached, Hackers Claim Theft of Millions of Customer Records
News
TalkTalk Customer Data Breached, Hackers Claim Theft of Millions of Customer Records
Mitchell Langley January 27, 2025
TalkTalk investigates a major customer data breach after a hacker claims to have stolen personal information from millions of subscribers, a claim TalkTalk disputes.
British Museum Hit in IT Attack: Ex-Worker Behind Cyberattack
News
British Museum Hit in IT Attack: Ex-Worker Behind Cyberattack
Gabby Lee January 27, 2025
The British Museum faced a severe IT attack, forcing partial closure. A disgruntled ex-IT contractor caused the British Museum cyberattack, leading to system shutdowns and ...
This Week In Cybersecurity: 20th January to 24th January
News
This Week In Cybersecurity: 20th January to 24th January
Mitchell Langley January 24, 2025
This week in cybersecurity, we highlight major breaches, including the PowerSchool incident affecting Canadian schools and a cyberattack on Oregon's Carruth Compliance Consulting. Additionally, the ...
Conduent Confirms Cyberattack Disrupting Services Across Government Agencies
News
Conduent Confirms Cyberattack Disrupting Services Across Government Agencies
Mitchell Langley January 24, 2025
Conduent confirms cyberattack impacting government agencies and causing service disruptions across multiple US states. The company confirmed that it “experienced ...
Big Cheese Studio Game Code Compromised in Cyber Attack
News
Big Cheese Studio Game Code Compromised in Cyber Attack
Gabby Lee January 24, 2025
Polish game developer Big Cheese Studio suffered a cyberattack, with hackers demanding a cryptocurrency ransom and threatening data release. The Big Cheese Studio cyber attack ...
Texas Insider Breach: Theft of Benefit Funds Impacts 61,000
News
Texas Insider Breach: Theft of Benefit Funds Impacts 61,000
Mitchell Langley January 23, 2025
Texas insider breach at HHSC exposed the personal information of 61,000 individuals and resulted in the theft of benefit funds, leading to seven employee firings ...
Cyber Attack on Consultant Exposes Sensitive Data of Oregon School Employees
News
Cyber Attack on Consultant Exposes Sensitive Data of Oregon School Employees
Mitchell Langley January 23, 2025
A cyber attack on Carruth Compliance Consulting, managing retirement plans for Oregon school districts, exposed sensitive employee data including Social Security numbers and financial information. ...
Lessons from Ace Hardware Cyber Attack: A Case Study in Data Security for Enterprise Businesses
News
Lessons from Ace Hardware Cyber Attack: A Case Study in Data Security for Enterprise Businesses
Gabby Lee January 23, 2025
The Ace Hardware cyber attack exposed sensitive data from over 7,000 individuals, resulting in significant financial and reputational damage, highlighting the critical need for robust ...
North Pole Company Data Breach Exposes Sensitive Data of Half a Million Users
News
North Pole Company Data Breach Exposes Sensitive Data of Half a Million Users
Mitchell Langley January 22, 2025
The North Pole Company suffered a data breach, exposing sensitive data of 520,599 customers. The breach, revealed on BreachForums, highlights risks of identity theft and ...
PowerSchool Breach Might Have Exposed Decades of Canadian Students and Powerschool Teachers Data
News
PowerSchool Breach Might Have Exposed Decades of Canadian Students and Teachers Data
Mitchell Langley January 22, 2025
The PowerSchool CMS cyberattack exposed decades of student and Powerschool Teachers Data . Parents and schools urged to monitor personal information closely.
Dallas ISD PowerSchool Data Breach Exposes Student Information
News
Dallas ISD PowerSchool Data Breach Exposes Student Information
Gabby Lee January 22, 2025
Dallas ISD PowerSchool data breach exposes sensitive student information, including social security numbers. Learn about the cybersecurity incident and the risks.
CMS Powerschool Data Breach Confirmed to Have Compromised Charlotte-Mecklenburg Schools Data
News
CMS Powerschool Data Breach Confirmed to Have Compromised Charlotte-Mecklenburg Schools Data
Mitchell Langley January 22, 2025
Charlotte-Mecklenburg Schools (CMS) confirms a data breach affecting its CMS Powerschool system.
Windows BitLocker Vulnerability (CVE-2025-21210) Exploited in Randomization Attack
News
Windows BitLocker Vulnerability (CVE-2025-21210) Exploited in Randomization Attack
Mitchell Langley January 21, 2025
A critical Windows BitLocker vulnerability (CVE-2025-21210) allows attackers with physical access to bypass AES-XTS encryption, exposing sensitive data through a novel randomization attack.
Nash County Public Schools Data Breach Compromised Student Information
News
Nash County Public Schools Data Breach Compromised Student Information
Mitchell Langley January 21, 2025
A data breach at Nash County Public Schools exposed student information via PowerSchool's PowerSource.
Blacon High School Temporarily Closes Due to Ransomware Attack
News
Blacon High School Temporarily Closes Due to Ransomware Attack
Gabby Lee January 21, 2025
Blacon High School temporarily closed due to a ransomware attack. Further closures are possible as investigations continue. The incident highlights the rising threat of ransomware ...
Otelier Data Breach Exposes Millions of Hotel Reservations and Personal Information
News
Otelier Data Breach Exposes Millions of Hotel Reservations and Personal Information
Mitchell Langley January 20, 2025
The Otelier data breach affected millions of hotel reservations, exposed personal information from major hotel chains. The breach, originating from compromised employee credentials.
HPE Data Breached by IntelBroker: HPE Data on Sale on Dark Web
News
HPE Data Breached by IntelBroker: HPE Data on Sale on Dark Web
Gabby Lee January 20, 2025
IntelBroker, a notorious threat actor, is selling data stolen from Hewlett-Packard Enterprise (HPE), including source code, private keys, and personal information. The HPE data breach ...
FBI Warns AT&T Data Breach Exposed Agent Call Logs Risking Informants
News
FBI Warns AT&T Data Breach Exposed Agent Call Logs Risking Informants
Mitchell Langley January 20, 2025
AT&T data breach exposed six months of FBI agent call logs, potentially revealing confidential informants. The FBI warning highlights vulnerabilities in telecommunications security and the ...
Gateshead Council Cyber-Attack: Personal Data Stolen
News
Gateshead Council Cyber-Attack: Personal Data Stolen
Gabby Lee January 16, 2025
A cyber-attack on Gateshead Council resulted in a data breach affecting an unknown number of residents. The council urges vigilance against phishing emails and advises ...
GGG Data Breach: Path of Excile 2 Dev Grinding Gear Games Apologizes for Security Lapse
News
GGG Data Breach: Path of Excile 2 Dev Grinding Gear Games Apologizes for Security Lapse
Mitchell Langley January 16, 2025
Grinding Gear Games revealed a Path of Exile 2 data breach, compromising 66 accounts and potentially exposing personal information like emails and addresses. The developer ...
INC Ransom: Master of Double Extortion
Ransomware
INC Ransomware: Master of Double Extortion
Gabby Lee June 10, 2025
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle May 12, 2025
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Mitchell Langley May 8, 2025
Ransomware Victims on Dark Web – 04th March, 2025
Ransomware
Ransomware Victims on Dark Web – 04th March, 2025
Gabby Lee April 21, 2025

TOP CYBERSECURITY HEADLINES

BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
News
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
News
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
News
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection
News
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection

SECURITYWEEK INDUSTRY EXPERTS

Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
News
Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
Andrew Doyle June 19, 2025
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
News
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
Andrew Doyle June 19, 2025
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
News
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
Andrew Doyle June 19, 2025
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
News
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Mitchell Langley June 19, 2025
More In News
Trending
What is a Whaling Phishing Attack?
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Email Spoofing 101: Understanding the Basics and How to Protect Your Enterprise Data
How AI is Revolutionizing Phishing Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Arla Foods Upahl Site Hit by Cyberattack—What It Means for Food Supply Chains
May 20, 2025
Podcasts
Bypassing Antivirus: What Defendnot Reveals About the Weak Spots in Windows Security
May 20, 2025
Podcasts
BreachRx Raises $15M to Automate the Chaos of Incident Response
May 20, 2025

Cyber Security News

JP Morgan Chase Data Breach Exposes Over 451,000 Retirement Accounts
Cybersecurity
JP Morgan Chase Data Breach Exposes Over 451,000 Retirement Accounts
May 6, 2024
How Authentication Failure Led to the Change Healthcare Ransomware Attack
Blog
When Credentials Fail: How Authentication Failure Led to the Change Healthcare Ransomware Attack
May 2, 2024
Kaiser Permanente Data Breach May Have Exposed Data of Over 13 Million Patients
Cybersecurity
Kaiser Data Breach May Have Exposed Data of Over 13 Million Patients
April 29, 2024
This Week in Cybersecurity: April 22 – April 26, UnitedHealth Group Pays Ransom
Cybersecurity
This Week in Cybersecurity: April 22 – April 26, UnitedHealth Group Pays Ransom
April 29, 2024
What are Insider Threats: Preventing Cyber Threats from Malicious Insiders
Blog
What are Insider Threats: Preventing Cyber Threats from Malicious Insiders
April 25, 2024
Hackers Exploit eScan Antivirus Updates to Drop GuptiMiner Malware
Cybersecurity
Hackers Exploit eScan Antivirus Updates to Drop GuptiMiner Malware
April 24, 2024
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
Ransomware Victims on Dark Web – 3rd March, 2025
March 20, 2025
This report summarizes recent ransomware attacks across various sectors, detailing the victims, threat actors, and available information on the incidents. Due to the nature of ...
Qilin/Agenda Ransomware: The Credential Stealers
March 20, 2025
Overview The Qilin ransomware group, also known as Agenda, is a Russia-based ransomware-as-a-service (RaaS) operation active since at least July 2022. Initially operating under the ...
MegaRAC CVE-2024-54085 Vulnerability: Critical BMC Flaw Threatening Data Centers
March 19, 2025
A newly discovered critical vulnerability (CVE-2024-54085) in AMI’s MegaRAC Baseboard Management Controller (BMC) software puts thousands of servers at risk—including those from HPE, Asus, and ...
California Cryobank Data Breach Exposes Sensitive Customer Information
March 19, 2025
California Cryobank, a major US sperm bank, suffered a data breach exposing customer names, bank details, Social Security numbers, and more. The company is offering ...
GitHub Action Hack May Cause Another Supply Chain Attack
March 19, 2025
A cascading supply chain attack, starting with a GitHub Action hack, exposed CI/CD secrets across 23,000 repositories, highlighting vulnerabilities in third-party code reliance.
Western Alliance Bank Data Breach Impacts 21,899 Customers
March 19, 2025
Western Alliance Bank suffered a data breach impacting 21,899 customers, exposing sensitive personal and financial information due to a third-party vendor's software vulnerability exploited by ...
11 State-Sponsored Hacking Groups Exploit Windows Zero-Day Exploit
March 19, 2025
A critical Windows zero-day exploit, ZDI-CAN-25373, has been exploited by 11 state-sponsored hacking groups since 2017, enabling data theft and espionage. Microsoft initially declined to ...
Microsoft Windows March Update Wipes Out Copilot
March 19, 2025
Microsoft’s latest Windows 10 and 11 updates (KB5053598 and KB5053606) have accidentally uninstalled Copilot, the AI assistant, from some users’ systems—leaving many relieved rather than ...
$6.1 Million Crypto Stolen in WEMIX Hack
March 19, 2025
WEMIX, a blockchain gaming platform, suffered a $6.1 million crypto theft. Hackers stole authentication keys, planning the attack for two months before executing 13 successful ...
The Mirai Botnet: The Infamous DDoS Weapon
March 19, 2025
The Mirai botnet, a notorious piece of malware, launched devastating DDoS attacks in 2016. This blog post delves into its origins, spread, impact, and the ...
StilachiRAT Malware Steals Crypto Using Advanced Reconnaissance
March 18, 2025
Microsoft discovered StilachiRAT, a new RAT malware using sophisticated techniques to steal cryptocurrency and perform reconnaissance. Its advanced evasion capabilities make proactive defense crucial.
GitHub Action Supply Chain Attack Exposes CI/CD Secrets
March 18, 2025
A supply chain attack on the popular tj-actions/changed-files GitHub Action exposed CI/CD secrets. Attackers compromised a PAT, impacting 23,000 repositories. GitHub has since removed the ...
Critical Apache Tomcat Flaw Actively Exploited in Attacks
March 18, 2025
Critical Apache Tomcat RCE vulnerability (CVE-2025-24813) is actively exploited, allowing attackers to take control of servers via simple PUT requests. Immediate patching is crucial.
Fake “Security Alert” on GitHub Used to Hijack OAuth App Accounts
March 18, 2025
A massive GitHub phishing campaign uses fake "Security Alert" issues and a malicious OAuth app to hijack accounts, granting attackers full control. Immediate action is ...
Lingnan University Suffers Cybersecurity Breach: Sensitive Data Exposed
March 18, 2025
Lingnan University in Hong Kong suffered a data breach exposing thousands of records, including sensitive personal data. The university is taking steps to enhance security.
Hackers Flip the Script: How a Fake Coinbase Email Could Empty Your Wallet
March 18, 2025
A new and incredibly deceptive phishing campaign is targeting Coinbase users—but this isn’t your typical scam. Instead of stealing your recovery phrase, attackers are handing ...
Florida Hospital Data Breach Impacts Over 120,000 Patients
March 17, 2025
A Florida hospital, CDH, suffered a data breach impacting over 120,000 patients. Sensitive data, including Social Security numbers and health information, was compromised. The BianLian ...
Brute-Force on Autopilot: Black Basta’s ‘BRUTED’ VPN Tool for Ransomware Expansion
March 17, 2025
Black Basta, one of the most notorious ransomware gangs, has taken brute-force attacks to the next level with BRUTED—an automated framework designed to breach VPNs, ...
GitHub Action Hijacked: The Supply Chain Attack That Exposed 23,000 Repositories
March 17, 2025
In this episode, we unpack a major supply chain attack that compromised the widely used GitHub Action ‘tj-actions/changed-files’, affecting over 23,000 repositories. Attackers injected malicious ...
Brave Browser Review 🎯 How Safe is This Web Browser? (2025)
March 17, 2025
The Nucor Cyberattack: How Ransomware Threatens American Steel
Inside the $225M Crypto Seizure: How Law Enforcement Traced Illicit Funds Across Borders
Inside CVE-2025-23121: Veeam RCE Flaw Opens Door to Ransomware
Fasana’s Collapse: How One Ransomware Attack Crippled a German Manufacturer
Inside the 16 Billion Credential Leak: The Infostealer Engine Behind the Biggest Breach Yet
Over 1,500 Minecraft Users Infected in Stargazers Ghost Malware Campaign
Oxford City Council Breach Exposes 21 Years of Data
Weaponized GitHub Repositories: How Banana Squad and Water Curse Are Hitting Devs
Chain IQ Breach Exposes UBS & Pictet Employee Data: A Supply Chain Failure
Citrix NetScaler Flaws Expose Enterprise Networks: CVE-2025-5349 & CVE-2025-5777
GerriScary: How CVE-2025-1568 Threatened Google’s Open-Source Supply Chain
Cisco & Atlassian Under Fire: High-Severity Flaws and What’s at Risk
Ryuk Ransomware Operator Extradited to the U.S. After FBI-Led Global Investigation
Episource Data Breach Exposes Health Information of 5.4 Million U.S. Patients
New Veeam RCE Vulnerability Allows Domain Users to Compromise Backup Servers
BeyondTrust Patches Critical Pre-Auth RCE Flaw in Remote Support Software
Double Extortion, Biometric Data, and Donuts: How Play Ransomware Hit Krispy Kreme
Viasat Confirms Salt Typhoon Espionage Hack in 2024 U.S. Telecom Cyber Campaign
Freedman Healthcare Hit by World Leaks Ransomware, Impacts 27 U.S. State Public Health Agencies
TP-Link Router Vulnerabilities Actively Exploited by Hackers, CISA Urges Immediate Disconnection