Main Menu
Cyber Security
How to Defend Your Organization Against Scattered Spider’s Service Desk Attacks
Ivanti Workspace Control Exposes SQL Credentials Through Hardcoded Key Flaws
The Exploding Threat of Cybercrime-as-a-Service (CaaS): How it’s Reshaping the Cybercrime Landscape
Quantum Hacking Is Coming: How to Prepare with Post-Quantum Security Today
Interlock Ransomware Suspected in Kettering Health System-Wide Outage
RVTools Supply Chain Attack Delivered Bumblebee Malware via Trojanized Installer
Chinese Hackers Exploiting SAP NetWeaver Servers via Zero-Day Vulnerability
iClicker Website Compromised in ClickFix Malware Attack Targeting Students and Faculty
The Truth About Identity Attacks: How to Protect Your Business and Data
CISA Warns of Ongoing Cyber Threats to U.S. Oil and Gas Infrastructure
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
The Rising Tide of Supply Chain Cybersecurity Risks in 2025
Fighting AI with AI: Using Artificial Intelligence to Strengthen Enterprise Cybersecurity
27 Million Records Allegedly Leaked from French Retailer Boulanger
13 Cybersecurity Assumptions That Are Getting You Hacked (And What to Do Instead)
Navigating the Complex Intersection of AI and Data Privacy
Cookie-Bite Attack Uses Chrome Extension to Steal Microsoft Session Tokens and Bypass MFA
Ad Fraud Operation ‘Scallywag’ Used WordPress Plugins to Generate 1.4 Billion Daily Ad Requests
FBI Warns of IC3 Impersonation Scam Targeting Victims of Online Fraud
Remote Desktop Protocol (RDP): A Double-Edged Sword for IT Teams
Google Faces £5 Billion UK Antitrust Lawsuit Over Search Advertising Practices
Skyward Specialty Insurance Data Breach Exposes Sensitive Information
Hacker Forum ‘Cracked’ Resurfaces Online After FBI Seizure in Global Cybercrime Operation
Wolters Kluwer Data Breach Claim Raises Alarms Across Fortune 500 Network
Fall River Public Schools Responds to Cybersecurity Breach
COBIT 2019 vs. COBIT 5: What’s New and Why It Matters
The Soaring Cost of Data Breaches for Enterprise Businesses in 2024
ChatGPT is Down Worldwide Impacting Millions
Chinese Weaver Ant Hackers Spied on Telco Network for Four Years
10 Key Benefits of Cyber Tabletop Exercises
WazirX Hack: North Korea's Lazarus Blamed for WazirX's $235 Million Cryptocurrency Theft
News
WazirX Hack: North Korea’s Lazarus Blamed for WazirX’s $235 Million Cryptocurrency Theft
Mitchell Langley January 15, 2025
The US, Japan, and South Korea blame North Korea's Lazarus group for the WazirX hack, a $235 million cryptocurrency theft. WazirX CEO calls for global ...
PowerSchool Data Breach Exposes Social Security Numbers of 60 Million Students and Teachers
News
PowerSchool Data Breach Exposes Social Security Numbers of 60 Million Students and Teachers
Gabby Lee January 15, 2025
PowerSchool data breach cyberattack exposed SSNs and PII of 60 million students and teachers, including medical information.
West Haven, Connecticut, Battles a Devastating Qilin Ransomware Cyberattack
News
West Haven, Connecticut, Battles a Devastating Qilin Ransomware Cyberattack
Mitchell Langley January 15, 2025
West Haven, Connecticut, is recovering from a cyberattack attributed to the Qilin ransomware group, which temporarily shut down city IT systems. The investigation is ongoing ...
Manitou Springs School District 14 Joins District 49 in PowerSchool Data Breach
News
Manitou Springs School District 14 Joins District 49 in PowerSchool Data Breach
Mitchell Langley January 14, 2025
Manitou Springs District 14 and District 49 experienced a PowerSchool data breach exposing student and parent names and addresses. PowerSchool is investigating with cybersecurity experts. ...
Ransomware Attack Paralyzes Slovakian Land Registry, Souring Slovakia-Ukraine Relations
News
Ransomware Attack Paralyzes Slovakian Land Registry, Souring Slovakia-Ukraine Relations
Gabby Lee January 14, 2025
A ransomware attack has severely impacted Slovakia's Geodesy, Cartography and Cadastre Office (UGKK), causing widespread disruption to land registry services and related public functions. The ...
Pro-Russian Hacker Group Targets Italian Banks and Public Services in DDoS Attacks
News
Pro-Russian Hacker Group Targets Italian Banks and Public Services in DDoS Attacks
Mitchell Langley January 14, 2025
A wave of cyberattacks on Italian banks, including Intesa Sanpaolo and Monte dei Paschi, along with public services, were launched by the pro-Russian hacker group, ...
Gravy Analytics Data Breach Exposes Location Data: iOS 14.5 and App Tracking Transparency Offer Some Protection
News
Gravy Analytics Data Breach Exposes Location Data: iOS 14.5 and App Tracking Transparency Offer Some Protection
Mitchell Langley January 14, 2025
The Gravy Analytics data breach exposed the precise location information of millions of users, impacting both iOS and Android devices. Popular apps, including dating apps ...
PowerSchool Data Breach: Millions of Student Records Compromised in January 2025
News
PowerSchool Data Breach: Millions of Student Records Compromised in January 2025
Gabby Lee January 13, 2025
PowerSchool had a data breach in December 2025, compromising the personal data of millions of students and parents. Hackers exploited stolen credentials to access sensitive ...
Vermont School Breached in PowerSchool Hack
News
Vermont School Breached in PowerSchool Hack
Mitchell Langley January 13, 2025
PowerSchool data breach exposed the personal data of Vermont school students and staff. The impact varies, but cybersecurity concerns are high. Schools are taking steps ...
PowerSchool Data Breach Impacts Bozeman Public Schools
News
PowerSchool Data Breach Impacts Bozeman Public Schools
Mitchell Langley January 11, 2025
PowerSchool data breach impacted Bozeman Public Schools, compromising student, family, and teacher data including contact details and employment information. PowerSchool and the district are working ...
This Week In Cybersecurity: 06th January to 10th January
News
This Week In Cybersecurity: 06th January to 10th January
Mitchell Langley January 11, 2025
Casio Data Breach Ransomware Attack Compromised 8,500 Individuals A ransomware attack on Casio in October 2024 compromised personal data of ...
PowerSchool Data Breach Hits Louisiana School Districts: Ascension Parish Schools, Livingston Parish Schools Among the Ones Affected
News
PowerSchool Data Breach Hits Louisiana School Districts: Ascension Parish Schools, Livingston Parish Schools Among the Ones Affected
Mitchell Langley January 10, 2025
PowerSchool data breach impacted Louisiana school districts, potentially exposing sensitive student and staff information. PowerSchool claims the data has been deleted, but the incident highlights ...
New Mirai Botnet Leverages Zero-Day Exploits to Target Industrial Routers
News
New Mirai Botnet Leverages Zero-Day Exploits to Target Industrial Routers
Mitchell Langley January 10, 2025
A new Mirai botnet is using zero-day exploits to target industrial routers and smart home devices, launching high-intensity DDoS attacks. Learn about the vulnerabilities and ...
UK's Nominet Hit by Cyber Attack: Hackers Exploited Zero-Day Ivanti VPN Vulnerability
News
UK’s Nominet Hit by Cyber Attack: Hackers Exploited Zero-Day Ivanti VPN Vulnerability
Gabby Lee January 10, 2025
The UK Internet Domain Registry, Nominet, suffered a cyber attack exploiting a zero-day vulnerability in Ivanti VPN software. While no data breach is confirmed, the ...
BayMark Health Services Data Breach: Ransomware Attack Exposes Patient Data
News
BayMark Health Services Data Breach: Ransomware Attack Exposes Patient Data
Mitchell Langley January 10, 2025
BayMark Health Services suffered a significant data breach after a ransomware attack, exposing sensitive patient information. The company is working to mitigate the damage and ...
Medusind Breach Exposes Sensitive Patient Data of Over 360,000 Customers
News
Medusind Breach Exposes Sensitive Patient Data of Over 360,000 Customers
Gabby Lee January 10, 2025
US dental and medical billing firm Medusind suffered a significant data breach, exposing the personal, financial, and medical data of over 360,000 customers. The breach, ...
PowerSchool Hack Compromises Alabama K-12 Student Data
News
PowerSchool Hack Compromises Alabama K-12 Student Data
Mitchell Langley January 10, 2025
PowerSchool data breach has affected Alabama K-12 schools, raising concerns about student and teacher data security. The incident highlights the ongoing vulnerability of educational institutions ...
Casio Data Breach Ransomware Attack Compromised 8,500 Individuals
News
Casio Data Breach Ransomware Attack Compromised 8,500 Individuals
Mitchell Langley January 8, 2025
Casio confirms customer data compromised in ransomware attack
Green Bay Packers Pro Shop Data Breach Exposes Customer Information
News
Green Bay Packers Pro Shop Data Breach Exposes Customer Information
Mitchell Langley January 8, 2025
Green Bay Packers data breach affected NFL team's Packers Pro Shop website with customer's info compromised.
Rivers Casino Data Breach Follows Class-Action Lawsuits After Personal Information Compromised
News
Rivers Casino Data Breach Follows Class-Action Lawsuits After Personal Information Compromised
Gabby Lee January 8, 2025
Rivers Casino Philadelphia data breach exposed sensitive customer information, leading to multiple class-action lawsuits. Learn about the extent of the breach and the legal actions ...
Stormous Ransomware: Unmasking the Pro-Russian Cyber Threat
Blog
Stormous Ransomware: The Pro-Russian Cyber Gang Targeting Global Networks
Gabby Lee July 3, 2025
INC Ransom: Master of Double Extortion
Ransomware
INC Ransomware: Master of Double Extortion
Gabby Lee June 10, 2025
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
News
LockBit Ransomware Gang Breached, Internal Negotiation Data and Affiliate Info Leaked
Andrew Doyle May 12, 2025
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Cybersecurity
Play Ransomware Exploited Windows Logging Vulnerability in Zero-Day Attacks
Mitchell Langley May 8, 2025

TOP CYBERSECURITY HEADLINES

Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
News
Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
Citrix Patch for Critical NetScaler Vulnerabilities Causes Login Issues for Some Customers
News
Citrix Patch for Critical NetScaler Vulnerabilities Causes Login Issues for Some Customers
Forminator Plugin Flaw Leaves 600,000+ WordPress Sites at Risk of Full Takeover
News
Forminator Plugin Flaw Leaves 600,000+ WordPress Sites at Risk of Full Takeover
Grafana Issues Critical Security Fixes for Image Renderer Plugin and Synthetic Monitoring Agent
News
Grafana Issues Critical Security Fixes for Image Renderer Plugin and Synthetic Monitoring Agent

SECURITYWEEK INDUSTRY EXPERTS

IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
News
IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
Mitchell Langley July 4, 2025
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
News
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
Andrew Doyle July 4, 2025
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident
News
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident
Mitchell Langley July 4, 2025
Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
News
Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
Mitchell Langley July 4, 2025
More In News
Trending
What is a Whaling Phishing Attack?
Phishing Attacks on the Rise: Businesses Face Growing Cyberthreat
Email Spoofing 101: Understanding the Basics and How to Protect Your Enterprise Data
How AI is Revolutionizing Phishing Attacks

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Password Hashes Leaked via Linux Crash Handlers: The Truth Behind CVE-2025-5054 & 4598
June 2, 2025
Podcasts
Inside the AVCheck Takedown: How Law Enforcement Disrupted a Key Cybercrime Tool
June 2, 2025
Podcasts
Browser vs. GPU: Firefox 139 Collides with NVIDIA Drivers
May 30, 2025

Cyber Security News

Bifrost Malware Mimics VMware Domain on Linux for Evasion
Cybersecurity
Bifrost Malware Mimics VMware Domain on Linux for Evasion
March 1, 2024
UAC-0184 Uses Steganography to Execute IDAT Loader and Install Remcos RAT
Cybersecurity
UAC-0184 Uses Steganography to Execute IDAT Loader and Install Remcos RAT
February 27, 2024
RCMP Cyberattack Takes Down All Main Websites
Cybersecurity
RCMP Cyberattack Takes Down All Main Websites
February 27, 2024
Tangerine Cyber Incident: Australian ISP Tangerine Suffers Cyberattack
Cybersecurity
Tangerine Cyber Incident: Australian ISP Tangerine Suffers Cyberattack
February 22, 2024
What is the SLAM Method? Identify Phishing Emails with SLAM Method
Blog
What is the SLAM Method? Identify Phishing Emails with SLAM Method
February 16, 2024
Ukrainian Hackers Wiped 2 Petabytes of Data from Russian Research Center
Cybersecurity
Ukrainian Hackers Wiped 2 Petabytes of Data from Russian Research Center
January 31, 2024
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Threat Actors
  • Threat Detection Tools
  • Uncategorized
CISA Says NAKIVO Backup Flaw is Actively Exploited in Attacks
March 21, 2025
CISA warns of a critical NAKIVO backup flaw, CVE-2024-48248, allowing unauthorized file access, urging organizations to patch systems promptly.
GitHub Supply Chain Attack Exposes Secrets in 218 Repositories
March 21, 2025
A GitHub Action supply chain attack exposed secrets from 218 repositories due to malicious code in tj-actions/changed-files, impacting popular projects and potentially causing further supply ...
WordPress Plugin WP Ghost Vulnerable to Critical Remote Code Execution Bug
March 21, 2025
Critical remote code execution vulnerability in WordPress plugin WP Ghost allows attackers to hijack servers. Urgent updates are required.
Network Security in a Digital World: Understanding and Mitigating Risks
March 21, 2025
The digital landscape is riddled with threats in modern networks. From malware and phishing to DDoS attacks and physical sabotage, the challenges are multifaceted. This ...
Critical Cisco Smart Licensing Utility Flaws Exploited in Attacks
March 21, 2025
Cisco's Smart Licensing Utility vulnerabilities CVE-2024-20439 and CVE-2024-20440 are now exploited, allowing unauthorized access through a backdoor admin account.
HellCat Hacking Spree Targets Jira Servers Worldwide
March 21, 2025
HellCat hackers are exploiting compromised Jira credentials in a worldwide hacking spree, targeting companies like Ascom and Jaguar Land Rover, stealing sensitive data including source ...
RansomHub Ransomware Leverages New Betruger Backdoor for Enhanced Attacks
March 21, 2025
RansomHub ransomware uses a new multi-function backdoor, Betruger, for enhanced attacks, streamlining the deployment process and minimizing detection.
Critical MegaRAC Bug Lets Attackers Hijack and Brick Servers
March 21, 2025
MI MegaRAC BMC vulnerability (CVE-2024-54085) lets attackers remotely hijack and brick servers, impacting numerous vendors and potentially causing significant damage.
This Week In Cybersecurity: 17th March to 21st March, 2025
March 21, 2025
This week in cybersecurity reports on a range of incidents, including a major data breach at California Cryobank and a supply chain attack affecting GitHub ...
No More Warnings? The Risks of Losing CIPAC’s Cyber Threat Coordination
March 20, 2025
The Department of Homeland Security (DHS) has abruptly shut down the Critical Infrastructure Partnership Advisory Council (CIPAC), the central hub for cybersecurity collaboration between the ...
517,000 Victims: How a Ransomware Gang Targeted Pennsylvania’s Largest Educators’ Union
March 20, 2025
Over 517,000 individuals are now at risk after the Pennsylvania State Education Association (PSEA) suffered a massive data breach in July 2024—claimed by the Rhysida ...
Veeam Backup & Replication Flaw Allows Remote Execution of Malicious Code
March 20, 2025
A critical vulnerability in Veeam Backup & Replication allows remote code execution, affecting various versions and posing significant security risks.
DollyWay: The 8-Year WordPress Malware Campaign Infecting 20,000 Sites
March 20, 2025
For nearly a decade, a malware campaign dubbed DollyWay has silently compromised over 20,000 WordPress websites, evolving from a ransomware and banking trojan distributor to ...
Microsoft Exchange Online Outage Impacts Outlook Web Users
March 20, 2025
A Microsoft Exchange Online outage severely impacted Outlook on the web users globally, causing login and access issues. Microsoft attributed the problem to a code ...
DollyWay Malware Campaign Compromises 20,000 WordPress Sites
March 20, 2025
The DollyWay malware campaign, active since 2016, has compromised over 20,000 WordPress sites, redirecting users to malicious sites and generating millions of fraudulent impressions monthly.
WhatsApp Patches Zero-Day Flaw Exploited by Paragon Spyware
March 20, 2025
WhatsApp has patched a zero-click vulnerability exploited by Paragon spyware, affecting journalists and activists globally, highlighting ongoing cybersecurity challenges.
Ukrainian Military Targeted in New Signal Spear-Phishing Attacks
March 20, 2025
krainian military personnel are facing sophisticated spear-phishing attacks using compromised Signal accounts to deliver Dark Crystal RAT malware. Urgent security updates are needed.
Arcane Infostealer Infects YouTube and Discord Users Through Game Cheats
March 20, 2025
The Arcane infostealer, a new malware, is stealing data from YouTube and Discord users via game cheats, targeting VPNs, messengers, and cryptocurrency wallets. Its sophisticated ...
Pennsylvania Education Union Data Breach Impacts 500,000 Individuals
March 20, 2025
he Pennsylvania State Education Association (PSEA) suffered a data breach exposing the personal information of over 500,000 individuals, including financial and health records. Rhysida ransomware ...
Ransomware Victims on Dark Web – 12th March, 2025
March 20, 2025
This report summarizes recent ransomware attacks across various sectors, detailing the victims, threat actors, and available information on the incidents. Due to the nature of ...
IdeaLab Confirms Data Stolen in Ransomware Attack Linked to Hunters International
Kelly Benefits Data Breach Exposes Personal Information of Over 550,000 Individuals
Esse Health Data Breach Impacts Over 263,000 Patients in Prolonged Cyber Incident
Spain Arrests Hackers Behind Data Breach Targeting Politicians and Journalists
Citrix Patch for Critical NetScaler Vulnerabilities Causes Login Issues for Some Customers
Forminator Plugin Flaw Leaves 600,000+ WordPress Sites at Risk of Full Takeover
Grafana Issues Critical Security Fixes for Image Renderer Plugin and Synthetic Monitoring Agent
Hunters International Ransomware Group Shuts Down, Offers Free Decryptors Amid Exit
Spanish Authorities Dismantle €10 Million Investment Scam Network With Fake Advisors and Crypto Portals
Cisco Removes Hardcoded Root Account from Unified CM to Prevent Remote Takeover
Fake Crypto Wallet Add-ons Flood Firefox Store in Ongoing Credential Theft Campaign
Qantas Confirms Data Breach Following Cyberattack on Third-Party Platform
macOS Under Siege: NimDoor Malware Targets Telegram, Wallets, and Keychains
Cisco Unified CM Vulnerability: Root Access Risk for Enterprise VoIP Networks
Forminator Flaw Exposes WordPress Sites to Takeover Attacks: Vulnerability Threatens 600,000+ Sites
Stormous Ransomware: The Pro-Russian Cyber Gang Targeting Global Networks
Kelly Benefits Breach: Over 550,000 Victims and the Rising Identity Theft Crisis
The Rising Tide of Cybersecurity Threats in Hospitality: How Hotels Can Stay Secure this Summer
FileFix, HTA, and MotW Bypass—The Alarming Evolution of HTML-Based Attacks
Critical Flaws in Microsens NMP Web+ Threaten Industrial Network Security