Main Menu
Cyber Security
64 Million T-Mobile Customer Records Allegedly Exposed in New Data Leak
How to Defend Your Organization Against Scattered Spider’s Service Desk Attacks
Ivanti Workspace Control Exposes SQL Credentials Through Hardcoded Key Flaws
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
News
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
Mitchell Langley February 13, 2025
A cyberattack on Papua New Guinea’s Internal Revenue Commission (IRC) in January 2025 compromised its systems, potentially exposing sensitive data. The PNG tax office cyber ...
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
News
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
Andrew Doyle February 13, 2025
Australia imposed sanctions on a Russian entity, ZServers, and five individuals for their alleged involvement in the 2022 Medibank cyberattack, impacting 9.7 million customers.
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
News
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
Mitchell Langley February 12, 2025
North Korean hackers use a PowerShell exploit in a new cyberattack, tricking victims into installing malware. A related scheme involved a woman facilitating North Korean ...
LockBit Sanctioned as US, UK, and Australia Join Hands Against the Russian Cybercrime Network
News
LockBit Sanctioned as US, UK, and Australia Join Hands Against the Russian Cybercrime Network
Andrew Doyle February 12, 2025
The US, UK, and Australia have sanctioned Zservers, a Russian-based service provider aiding the LockBit ransomware group, and two key administrators, Alexander Mishin and Aleksandr ...
OmniGPT Breach Exposes Data of 30,000 Users
News
OmniGPT Breach Exposes Data of 30,000 Users
Mitchell Langley February 12, 2025
OmniGPT data breach exposes over 30,000 users' data, including emails, API keys, and potentially crypto keys, now being sold on the dark web.
Cyber Attack Targets 2.8 Million IPs on VPN Devices
News
Cyber Attack Targets 2.8 Million IPs on VPN Devices
Andrew Doyle February 12, 2025
A massive cyber attack using 2.8 million IPs targets VPN devices and other network appliances via brute-force attacks, primarily impacting Brazil.
Critical Windows Zero-Day Vulnerabilities Actively Exploited: CISA Issues Warning to 'Test and deploy quickly'
News
Critical Windows Zero-Day Vulnerabilities Actively Exploited: CISA Issues Warning to ‘Test and deploy quickly’
Andrew Doyle February 12, 2025
Critical Windows zero-days (CVE-2025-21418, CVE-2025-21391) are actively exploited. CISA urges immediate patching to prevent data loss and system compromise. Federal agencies have until March 4th.
Sault Tribe, Kewadin Casinos Hit by Cyber Attack
News
Sault Tribe, Kewadin Casinos Hit by Cyber Attack
Mitchell Langley February 11, 2025
A ransomware cyber attack crippled the Sault Tribe and Kewadin Casinos, halting gaming operations and disrupting numerous tribal services. The Sault Tribe cyber attack is ...
Hackers Target Valentine's Day Domains in Cyber Attacks
News
Hackers Target Valentine’s Day Domains in Cyber Attacks
Mitchell Langley February 11, 2025
Hackers are exploiting Valentine's Day with malicious domains and phishing scams. Stay vigilant and verify links to avoid becoming a victim of these cyber attacks. ...
Cisco Rejects Claims of Kraken Data Breach, Says Data From 2022 Incident
News
Cisco Rejects Claims of Kraken Data Breach, Says Data From 2022 Incident
Mitchell Langley February 11, 2025
Cisco denies a new Kraken data breach, linking leaked data to a 2022 incident where attackers gained access via vishing and compromised employee credentials. The ...
Asheville Eye Associates, PLLC Data Breached: Levi & Korsinsky, LLP Launches Investigation
News
Asheville Eye Associates, PLLC Data Breached: Levi & Korsinsky, LLP Launches Investigation
Andrew Doyle February 11, 2025
Asheville Eye Associates, a PLLC, experienced a significant data breach. Patient information was compromised, prompting legal action from Levi & Korsinsky. The breach highlights the ...
City of Hayward Data Breach: Lawsuit Launched by Levi & Korsinsky
News
City of Hayward Data Breach: Lawsuit Launched by Levi & Korsinsky
Mitchell Langley February 10, 2025
The City of Hayward suffered a data breach, exposing sensitive personal information. Levi & Korsinsky, LLP is pursuing a class-action lawsuit for affected individuals seeking ...
Paragon Spyware Used in WhatsApp Hacking Scandal
News
Paragon Spyware Used in WhatsApp Hacking Scandal
Mitchell Langley February 10, 2025
Paragon Solutions, maker of Paragon spyware, terminated its contract with Italy following allegations its software was used in a WhatsApp spyware attack targeting journalists and ...
HPE Notifies Employees of Breach Stealing Data in Office 365 Hack
News
HPE Notifies Employees of Breach Stealing Data in Office 365 Hack
Mitchell Langley February 10, 2025
HPE confirms a May 2023 Office 365 hack by Russian state-sponsored hackers, Cozy Bear, resulting in a data breach affecting employee data including driver's licenses ...
Cyberattack on Lee Enterprises Causes Disruption Across US Newspapers
News
Cyberattack on Lee Enterprises Causes Disruption Across US Newspapers
Mitchell Langley February 10, 2025
Cyberattack on Lee Enterprises disrupted numerous US newspapers, halting printing, affecting websites, and causing subscriber access issues. The Lee Cyberattack investigation is ongoing.
Cisco Data Breach: Kraken Ransomware Group Leaks Sensitive Credentials
News
Cisco Data Breach: Kraken Ransomware Group Leaks Sensitive Credentials
Mitchell Langley February 10, 2025
Cisco data breach exposed sensitive credentials, allegedly leaked by the Kraken ransomware group. The leaked data includes NTLM hashes and privileged accounts, highlighting the threat ...
This Facebook Phishing Attack Could Steal EVERYTHING!
News
This Facebook Phishing Attack Could Steal EVERYTHING!
Mitchell Langley February 10, 2025
Facebook attack uses phishing emails claiming copyright infringement to steal data. Protect yourself now!
Frederick Health Hospital's Ransomware Disaster Patient Care Disrupted
News
Frederick Health Hospital’s Ransomware Disaster: Patient Care Disrupted
Andrew Doyle February 7, 2025
On January 27, 2025, Frederick Health Hospital (FHH) became the target of a sophisticated ransomware attack, forcing the immediate shutdown ...
NCC Group's Cyber Threat Intelligence Report Reveals Record Ransomware Attacks
News
NCC Group’s Cyber Threat Intelligence Report Reveals Record Ransomware Attacks
Mitchell Langley February 6, 2025
NCC Group's 2024 cyber threat report reveals a record 5,263 ransomware attacks, with LockBit and RansomHub leading the surge. The industrial sector was hardest hit, ...
NCC Group's Cyber Threat Intelligence Report Reveals Record Ransomware Attacks
News
Hackers Spoof Microsoft ADFS Login Pages in Phishing Attacks
Mitchell Langley February 6, 2025
Hackers spoof Microsoft ADFS login pages, bypassing MFA to steal credentials and launch further phishing attacks targeting corporate email accounts. This highlights the threat of ...
Stormous Ransomware: Unmasking the Pro-Russian Cyber Threat
Blog
Stormous Ransomware: The Pro-Russian Cyber Gang Targeting Global Networks
Gabby Lee July 3, 2025
INC Ransom: Master of Double Extortion
Ransomware
INC Ransomware: Master of Double Extortion
Gabby Lee June 10, 2025
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle May 12, 2025
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Mitchell Langley May 8, 2025

TOP CYBERSECURITY HEADLINES

Cybercriminals Turn to PDFs to Impersonate Microsoft, PayPal, and DocuSign
News
Cybercriminals Turn to PDFs to Impersonate Microsoft, PayPal, and DocuSign
IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
News
IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
News
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident
News
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident

SECURITYWEEK INDUSTRY EXPERTS

BMW Financial Services Caught in Third-Party Data Breach Involving Texas Fintech Firm
News
BMW Financial Services Caught in Third-Party Data Breach Involving Texas Fintech Firm
Andrew Doyle July 7, 2025
Ingram Micro Confirms SafePay Ransomware Attack Behind Major Outage
News
Ingram Micro Confirms SafePay Ransomware Attack Behind Major Outage
Mitchell Langley July 7, 2025
Telefónica Faces New Data Leak Allegations After Hacker Publishes Sample Files
News
Telefónica Faces New Data Leak Allegations After Hacker Publishes Sample Files
Mitchell Langley July 7, 2025
Cybercriminals Turn to PDFs to Impersonate Microsoft, PayPal, and DocuSign
News
Cybercriminals Turn to PDFs to Impersonate Microsoft, PayPal, and DocuSign
Mitchell Langley July 7, 2025
More In News
Trending
What is a Whaling Phishing Attack?
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Email Spoofing 101: Understanding the Basics and How to Protect Your Enterprise Data
How AI is Revolutionizing Phishing Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Inside the React Native NPM Supply Chain Breach: 16 Packages, 1 Million+ Downloads, and a RAT in the Code
June 10, 2025
Podcasts
Mirai Strikes Again: Spring4Shell, Wazuh, and TBK DVRs Exploited in Live Campaigns
June 10, 2025
Podcasts
UNFI Breach: How One Cyberattack Shook the North American Food Supply
June 10, 2025

Cyber Security News

This Week in Cybersecurity: April 22 – April 26, UnitedHealth Group Pays Ransom
Cybersecurity
This Week in Cybersecurity: April 22 – April 26, UnitedHealth Group Pays Ransom
April 29, 2024
What are Insider Threats: Preventing Cyber Threats from Malicious Insiders
Blog
What are Insider Threats: Preventing Cyber Threats from Malicious Insiders
April 25, 2024
Hackers Exploit eScan Antivirus Updates to Drop GuptiMiner Malware
Cybersecurity
Hackers Exploit eScan Antivirus Updates to Drop GuptiMiner Malware
April 24, 2024
APT28 Uses GooseEgg to Exploit Windows Flaw
Cybersecurity
APT28 Uses GooseEgg to Exploit Windows Flaw
April 23, 2024
This Week in Cybersecurity: April 8th – April 12th: Home Depot Data Breached
Cybersecurity
This Week in Cybersecurity: April 8th – April 12th: Home Depot Data Breached
April 15, 2024
JIT Probe Reveals 2.7M Pakistani Citizens’ Data Breached for 5 Years, NADRA Blamed for Data Leak
Cybersecurity
JIT Probe Reveals 2.7M Pakistani Citizens’ Data Breached for 5 Years, NADRA Blamed for Data Leak
April 4, 2024
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
Next.js Security Vulnerability: Middleware Bypass (CVE-2025-29927)
April 14, 2025
Is your web app truly secure? In this episode, we break down a critical NextJS vulnerability (CVE-2025-29927) that could allow attackers to bypass authentication and ...
Mercury Corp. Data Breach Exposes Personal Information of Thousands in Aerospace Manufacturing Sector
April 14, 2025
A cyberattack targeting Mercury Corp. exposed sensitive personal information of over 3,000 individuals, including Social Security and driver’s license numbers, in a one-day breach.
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
April 14, 2025
Hacker forum Cracked is back online after an FBI takedown, reactivating its services under a new domain with a fresh admin and millions of users.
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
April 14, 2025
A hacker claims to have breached Wolters Kluwer, leaking sensitive contact data linked to Fortune 500 firms and global enterprises. The company is investigating.
This Week In Cybersecurity: April 14th to April 18th
April 14, 2025
This week in cybersecurity highlights critical incidents, including multiple data breaches affecting educational and legal institutions, the resurgence of the Mirai botnet, and the evolving ...
IKEA Ransomware Attack Cost Fourlis Group Millions in Revenue
April 14, 2025
Cybersecurity incident disrupted IKEA operations across multiple countries just before Black Friday The IKEA ransomware attack that struck just two days before Black Friday in ...
Neptune RAT Malware Spreading Through YouTube and GitHub, Targeting Windows PCs
April 10, 2025
Neptune RAT malware is spreading through YouTube and GitHub, infecting Windows PCs. This dangerous Trojan allows hackers complete system control, demanding immediate action from businesses ...
FortiSwitch Flaw Allows Remote Admin Password Changes
April 10, 2025
FortiSwitch vulnerability (CVE-2024-48887) lets attackers remotely change admin passwords. Fortinet released patches; immediate updates are crucial.
Oracle Denies Major Cloud Breach, Confirms Hack of “Obsolete Servers”
April 10, 2025
Oracle denies a major cloud breach, confirming instead a hack of obsolete servers. No Oracle Cloud customer data was compromised, the company claims.
Hackers Exploit SSRF Bug in EC2-Hosted Sites to Steal AWS Credentials
April 10, 2025
Hackers exploited SSRF bugs in EC2-hosted sites to steal AWS credentials, accessing EC2 Metadata and potentially IAM credentials via IMDSv1. This highlights the ongoing threat ...
Western Sydney University Data Breach Exposes 10,000 Student Records
April 10, 2025
Western Sydney University confirms a data breach exposing the personal information of 10,000 students. The university is investigating and has contacted authorities.
Half of UK Firms Delay Digital Projects Due to Soaring Cyber Warfare Risks
April 9, 2025
Half of UK firms are delaying digital projects due to rising cyber warfare fears, according to a new report highlighting the impact of nation-state attacks ...
Everest Ransomware: Data Extortionist Turned Initial Access Broker
April 9, 2025
Everest ransomware, active since 2020, evolved from data extortion and ransomware to primarily acting as an Initial Access Broker (IAB), targeting healthcare providers.
Treasury OCC Data Breach: Hackers Accessed 150,000 Emails Since June 2023
April 9, 2025
The Treasury's Office of the Comptroller of the Currency suffered a major data breach, exposing over 150,000 emails and sensitive financial data since June 2023.
WhatsApp Vulnerability Allows Malicious Code Execution on Windows PCs
April 9, 2025
WhatsApp flaw (CVE-2025-30401) lets attackers execute malicious code on Windows PCs by sending files with altered extensions. Update to WhatsApp 2.2450.6 or later immediately.
Mirai Botnet Exploiting TVT DVRs
April 9, 2025
A new Mirai botnet is causing a surge in attacks targeting TVT NVMS9000 DVRs, exploiting a vulnerability to gain admin access and potentially launch DDoS ...
Rödl Management Data Breach, Personal Data Exposed
April 9, 2025
Rödl Management suffered a data breach between January 30 and February 9, 2024, compromising consumer data. Investigations are underway, and affected individuals are receiving notifications.
Fall River Public Schools Responds to Cybersecurity Breach
April 9, 2025
Fall River Public Schools confirms a cybersecurity breach, working with experts to investigate unauthorized network access and ensure data protection.
Kellogg Data Breached, Clop Ransomware Exploits Cleo Zero-Day Vulnerabilities
April 8, 2025
WK Kellogg confirms a data breach exposing employee names and social security numbers, linked to the Clop ransomware gang's exploitation of Cleo software vulnerabilities.
Superannuation Hack Exposes $4.2 Trillion Sector’s Cybersecurity Vulnerabilities
April 8, 2025
A major superannuation hack exposed critical cybersecurity flaws, impacting major Australian funds and highlighting the urgent need for stronger security measures within the $4.2 trillion ...
The AI Cyber Threat: How to Secure your Systems in the Age of Artificial Intelligence
BMW Financial Services Caught in Third-Party Data Breach Involving Texas Fintech Firm
CISA Flags CVE-2025-6554: Patching Chrome’s Critical Flaw Before It’s Too Late
Telefónica Faces New Data Leak Allegations After Hacker Publishes Sample Files
Ingram Micro Confirms SafePay Ransomware Attack Behind Major Outage
Cybercriminals Turn to PDFs to Impersonate Microsoft, PayPal, and DocuSign
ANSSI vs. Houken: France Battles Advanced Chinese Hacking Threat
Psychological Manipulation and AI Fraud: How Spain Exposed a $12M Scam
CVE-2025-20309: Critical Cisco Root Access Flaw Threatens VoIP Security
IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident
Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
Citrix Patch for Critical NetScaler Vulnerabilities Causes Login Issues for Some Customers
Forminator Plugin Flaw Leaves 600,000+ WordPress Sites at Risk of Full Takeover
Grafana Issues Critical Security Fixes for Image Renderer Plugin and Synthetic Monitoring Agent
Hunters International Ransomware Group Shuts Down, Offers Free Decryptors Amid Exit
Spanish Authorities Dismantle €10 Million Investment Scam Network With Fake Advisors and Crypto Portals
Cisco Removes Hardcoded Root Account from Unified CM to Prevent Remote Takeover
Fake Crypto Wallet Add-ons Flood Firefox Store in Ongoing Credential Theft Campaign