Cyber Security
64 Million T-Mobile Customer Records Allegedly Exposed in New Data Leak
How to Defend Your Organization Against Scattered Spider’s Service Desk Attacks
Ivanti Workspace Control Exposes SQL Credentials Through Hardcoded Key Flaws
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
News
PNG Tax Office Cyber Attack Exposes Sensitive Data, Raising Concerns
A cyberattack on Papua New Guinea’s Internal Revenue Commission (IRC) in January 2025 compromised its systems, potentially exposing sensitive data. The PNG tax office cyber ...
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
News
Australia Sanctions Russian Entity and Individuals Over Medibank Cyberattack
Australia imposed sanctions on a Russian entity, ZServers, and five individuals for their alleged involvement in the 2022 Medibank cyberattack, impacting 9.7 million customers.
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
News
North Korean Hackers Leverage PowerShell Exploit in Sophisticated Cyber Attack
North Korean hackers use a PowerShell exploit in a new cyberattack, tricking victims into installing malware. A related scheme involved a woman facilitating North Korean ...
LockBit Sanctioned as US, UK, and Australia Join Hands Against the Russian Cybercrime Network
News
LockBit Sanctioned as US, UK, and Australia Join Hands Against the Russian Cybercrime Network
The US, UK, and Australia have sanctioned Zservers, a Russian-based service provider aiding the LockBit ransomware group, and two key administrators, Alexander Mishin and Aleksandr ...
OmniGPT Breach Exposes Data of 30,000 Users
News
OmniGPT Breach Exposes Data of 30,000 Users
OmniGPT data breach exposes over 30,000 users' data, including emails, API keys, and potentially crypto keys, now being sold on the dark web.
Cyber Attack Targets 2.8 Million IPs on VPN Devices
News
Cyber Attack Targets 2.8 Million IPs on VPN Devices
A massive cyber attack using 2.8 million IPs targets VPN devices and other network appliances via brute-force attacks, primarily impacting Brazil.
Critical Windows Zero-Day Vulnerabilities Actively Exploited: CISA Issues Warning to 'Test and deploy quickly'
News
Critical Windows Zero-Day Vulnerabilities Actively Exploited: CISA Issues Warning to ‘Test and deploy quickly’
Critical Windows zero-days (CVE-2025-21418, CVE-2025-21391) are actively exploited. CISA urges immediate patching to prevent data loss and system compromise. Federal agencies have until March 4th.
Sault Tribe, Kewadin Casinos Hit by Cyber Attack
News
Sault Tribe, Kewadin Casinos Hit by Cyber Attack
A ransomware cyber attack crippled the Sault Tribe and Kewadin Casinos, halting gaming operations and disrupting numerous tribal services. The Sault Tribe cyber attack is ...
Hackers Target Valentine's Day Domains in Cyber Attacks
News
Hackers Target Valentine’s Day Domains in Cyber Attacks
Hackers are exploiting Valentine's Day with malicious domains and phishing scams. Stay vigilant and verify links to avoid becoming a victim of these cyber attacks. ...
Cisco Rejects Claims of Kraken Data Breach, Says Data From 2022 Incident
News
Cisco Rejects Claims of Kraken Data Breach, Says Data From 2022 Incident
Cisco denies a new Kraken data breach, linking leaked data to a 2022 incident where attackers gained access via vishing and compromised employee credentials. The ...
Asheville Eye Associates, PLLC Data Breached: Levi & Korsinsky, LLP Launches Investigation
News
Asheville Eye Associates, PLLC Data Breached: Levi & Korsinsky, LLP Launches Investigation
Asheville Eye Associates, a PLLC, experienced a significant data breach. Patient information was compromised, prompting legal action from Levi & Korsinsky. The breach highlights the ...
City of Hayward Data Breach: Lawsuit Launched by Levi & Korsinsky
News
City of Hayward Data Breach: Lawsuit Launched by Levi & Korsinsky
The City of Hayward suffered a data breach, exposing sensitive personal information. Levi & Korsinsky, LLP is pursuing a class-action lawsuit for affected individuals seeking ...
Paragon Spyware Used in WhatsApp Hacking Scandal
News
Paragon Spyware Used in WhatsApp Hacking Scandal
Paragon Solutions, maker of Paragon spyware, terminated its contract with Italy following allegations its software was used in a WhatsApp spyware attack targeting journalists and ...
HPE Notifies Employees of Breach Stealing Data in Office 365 Hack
News
HPE Notifies Employees of Breach Stealing Data in Office 365 Hack
HPE confirms a May 2023 Office 365 hack by Russian state-sponsored hackers, Cozy Bear, resulting in a data breach affecting employee data including driver's licenses ...
Cyberattack on Lee Enterprises Causes Disruption Across US Newspapers
News
Cyberattack on Lee Enterprises Causes Disruption Across US Newspapers
Cyberattack on Lee Enterprises disrupted numerous US newspapers, halting printing, affecting websites, and causing subscriber access issues. The Lee Cyberattack investigation is ongoing.
Cisco Data Breach: Kraken Ransomware Group Leaks Sensitive Credentials
News
Cisco Data Breach: Kraken Ransomware Group Leaks Sensitive Credentials
Cisco data breach exposed sensitive credentials, allegedly leaked by the Kraken ransomware group. The leaked data includes NTLM hashes and privileged accounts, highlighting the threat ...
This Facebook Phishing Attack Could Steal EVERYTHING!
News
This Facebook Phishing Attack Could Steal EVERYTHING!
Facebook attack uses phishing emails claiming copyright infringement to steal data. Protect yourself now!
Frederick Health Hospital's Ransomware Disaster Patient Care Disrupted
News
Frederick Health Hospital’s Ransomware Disaster: Patient Care Disrupted
On January 27, 2025, Frederick Health Hospital (FHH) became the target of a sophisticated ransomware attack, forcing the immediate shutdown ...
NCC Group's Cyber Threat Intelligence Report Reveals Record Ransomware Attacks
News
NCC Group’s Cyber Threat Intelligence Report Reveals Record Ransomware Attacks
NCC Group's 2024 cyber threat report reveals a record 5,263 ransomware attacks, with LockBit and RansomHub leading the surge. The industrial sector was hardest hit, ...
NCC Group's Cyber Threat Intelligence Report Reveals Record Ransomware Attacks
News
Hackers Spoof Microsoft ADFS Login Pages in Phishing Attacks
Hackers spoof Microsoft ADFS login pages, bypassing MFA to steal credentials and launch further phishing attacks targeting corporate email accounts. This highlights the threat of ...

TOP CYBERSECURITY HEADLINES

SECURITYWEEK INDUSTRY EXPERTS

Trending

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
Next.js Security Vulnerability: Middleware Bypass (CVE-2025-29927)
Is your web app truly secure? In this episode, we break down a critical NextJS vulnerability (CVE-2025-29927) that could allow attackers to bypass authentication and ...
Mercury Corp. Data Breach Exposes Personal Information of Thousands in Aerospace Manufacturing Sector
A cyberattack targeting Mercury Corp. exposed sensitive personal information of over 3,000 individuals, including Social Security and driver’s license numbers, in a one-day breach.
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Hacker forum Cracked is back online after an FBI takedown, reactivating its services under a new domain with a fresh admin and millions of users.
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
A hacker claims to have breached Wolters Kluwer, leaking sensitive contact data linked to Fortune 500 firms and global enterprises. The company is investigating.
This Week In Cybersecurity: April 14th to April 18th
This week in cybersecurity highlights critical incidents, including multiple data breaches affecting educational and legal institutions, the resurgence of the Mirai botnet, and the evolving ...
IKEA Ransomware Attack Cost Fourlis Group Millions in Revenue
Cybersecurity incident disrupted IKEA operations across multiple countries just before Black Friday The IKEA ransomware attack that struck just two days before Black Friday in ...
Neptune RAT Malware Spreading Through YouTube and GitHub, Targeting Windows PCs
Neptune RAT malware is spreading through YouTube and GitHub, infecting Windows PCs. This dangerous Trojan allows hackers complete system control, demanding immediate action from businesses ...
FortiSwitch Flaw Allows Remote Admin Password Changes
FortiSwitch vulnerability (CVE-2024-48887) lets attackers remotely change admin passwords. Fortinet released patches; immediate updates are crucial.
Oracle Denies Major Cloud Breach, Confirms Hack of “Obsolete Servers”
Oracle denies a major cloud breach, confirming instead a hack of obsolete servers. No Oracle Cloud customer data was compromised, the company claims.
Hackers Exploit SSRF Bug in EC2-Hosted Sites to Steal AWS Credentials
Hackers exploited SSRF bugs in EC2-hosted sites to steal AWS credentials, accessing EC2 Metadata and potentially IAM credentials via IMDSv1. This highlights the ongoing threat ...
Western Sydney University Data Breach Exposes 10,000 Student Records
Western Sydney University confirms a data breach exposing the personal information of 10,000 students. The university is investigating and has contacted authorities.
Half of UK Firms Delay Digital Projects Due to Soaring Cyber Warfare Risks
Half of UK firms are delaying digital projects due to rising cyber warfare fears, according to a new report highlighting the impact of nation-state attacks ...
Everest Ransomware: Data Extortionist Turned Initial Access Broker
Everest ransomware, active since 2020, evolved from data extortion and ransomware to primarily acting as an Initial Access Broker (IAB), targeting healthcare providers.
Treasury OCC Data Breach: Hackers Accessed 150,000 Emails Since June 2023
The Treasury's Office of the Comptroller of the Currency suffered a major data breach, exposing over 150,000 emails and sensitive financial data since June 2023.
WhatsApp Vulnerability Allows Malicious Code Execution on Windows PCs
WhatsApp flaw (CVE-2025-30401) lets attackers execute malicious code on Windows PCs by sending files with altered extensions. Update to WhatsApp 2.2450.6 or later immediately.
Mirai Botnet Exploiting TVT DVRs
A new Mirai botnet is causing a surge in attacks targeting TVT NVMS9000 DVRs, exploiting a vulnerability to gain admin access and potentially launch DDoS ...
Rödl Management Data Breach, Personal Data Exposed
Rödl Management suffered a data breach between January 30 and February 9, 2024, compromising consumer data. Investigations are underway, and affected individuals are receiving notifications.
Fall River Public Schools Responds to Cybersecurity Breach
Fall River Public Schools confirms a cybersecurity breach, working with experts to investigate unauthorized network access and ensure data protection.
Kellogg Data Breached, Clop Ransomware Exploits Cleo Zero-Day Vulnerabilities
WK Kellogg confirms a data breach exposing employee names and social security numbers, linked to the Clop ransomware gang's exploitation of Cleo software vulnerabilities.
Superannuation Hack Exposes $4.2 Trillion Sector’s Cybersecurity Vulnerabilities
A major superannuation hack exposed critical cybersecurity flaws, impacting major Australian funds and highlighting the urgent need for stronger security measures within the $4.2 trillion ...
The AI Cyber Threat: How to Secure your Systems in the Age of Artificial Intelligence
BMW Financial Services Caught in Third-Party Data Breach Involving Texas Fintech Firm
CISA Flags CVE-2025-6554: Patching Chrome’s Critical Flaw Before It’s Too Late
Telefónica Faces New Data Leak Allegations After Hacker Publishes Sample Files
Ingram Micro Confirms SafePay Ransomware Attack Behind Major Outage
Cybercriminals Turn to PDFs to Impersonate Microsoft, PayPal, and DocuSign
ANSSI vs. Houken: France Battles Advanced Chinese Hacking Threat
Psychological Manipulation and AI Fraud: How Spain Exposed a $12M Scam
CVE-2025-20309: Critical Cisco Root Access Flaw Threatens VoIP Security
IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident
Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
Citrix Patch for Critical NetScaler Vulnerabilities Causes Login Issues for Some Customers
Forminator Plugin Flaw Leaves 600,000+ WordPress Sites at Risk of Full Takeover
Grafana Issues Critical Security Fixes for Image Renderer Plugin and Synthetic Monitoring Agent
Hunters International Ransomware Group Shuts Down, Offers Free Decryptors Amid Exit
Spanish Authorities Dismantle €10 Million Investment Scam Network With Fake Advisors and Crypto Portals
Cisco Removes Hardcoded Root Account from Unified CM to Prevent Remote Takeover
Fake Crypto Wallet Add-ons Flood Firefox Store in Ongoing Credential Theft Campaign