Cyber Security
News
China Denies State-Sponsored Cyberattack on US Treasury
China denies US accusations of a state-sponsored cyberattack on US Treasury, calling the claims "groundless," while the US points to a compromised third-party service provider.
News
Pro-Russian Hackers NoName057 Launch Coordinated Cyberattacks Against Italy
: Pro-Russian hackers NoName057 targeted Italian websites, including Milan airports, in a series of DDoS attacks.
Cybersecurity
Massive Healthcare Breaches Prompt Overhaul of US Cybersecurity Rules
The US is overhauling its cybersecurity rules following a surge in healthcare breaches. New regulations will mandate encryption, multi-factor authentication, and network segmentation to protect ...
News
Harley-Davidson Data Breach Exposes Thousands of Customer Records: 888 Claims Cyberattack
Harley-Davidson data breach has allegedly exposed the personal information of over 66,700 customers. Learn about the leaked data and the potential risks.
News
US Treasury Department Hacked: Cyber Attack On US Treasury Blamed on Chinese State-Sponsored Actors
The US Treasury Department was hacked, with Chinese state-sponsored actors gaining access to employee workstations and unclassified documents. Learn
News
AT&T and Verizon Secure Networks Following Devastating Salt Typhoon Breach
The Salt Typhoon breach impacted AT&T and Verizon, but both companies claim to have successfully contained the Chinese state-sponsored hacking campaign and secured their networks. ...
News
Japan Airlines Cyberattack Causes Flight Delays
A distributed denial-of-service (DDoS) attack on Japan Airlines (JAL) caused significant flight delays, highlighting the vulnerability of the aviation industry to cyber threats. Learn about ...
News
OpenAI ChatGPT Outage: Thousands Report Disruption
OpenAI ChatGPT outage hit on December 26th, 2024, impacting millions of users. Downdetector showed over 50,000 outage reports. OpenAI attributed the problem to an internet ...
News
Volkswagen Data Breach Exposes Location Data of 800,000 Electric Vehicles
A data breach at Volkswagen has exposed the location data of around 800,000 electric vehicles from VW, Audi, Seat, and Skoda. The vulnerability, reported by ...
News
USAA Bank Data Breach Lawsuit Settles for $3.25 Million
USAA Bank paid $3.25 million to settle a data breach lawsuit stemming from a 2021 incident exposing customer data obtained from motor vehicle records. The ...
News
Indonesia Government Data Breach: 82 GB of Sensitive Data Leaked Online
Indonesia government data breach leaked 82 GB of sensitive data, including financial records, taxpayer information, and employee details, raising serious security and privacy concerns.
News
ConnectOnCall Healthcare Data Breach Exposes Sensitive Healthcare Information
A massive data breach at ConnectOnCall, a healthcare communications provider, has exposed sensitive patient information, raising serious concerns about data security in the healthcare sector.
News
Kay Adams’ NFL Broadcast Interrupted by Netflix Technical Glitch
Kay Adams' NFL broadcast on Netflix was disrupted due to a technical glitch on Christmas Day, leaving viewers frustrated and highlighting the challenges of streaming ...
Cybersecurity
WhatsApp Wins Against NSO Group: Judge Finds NSO Liable for Pegasus
WhatsApp secured a major legal victory against NSO Group, creators of Pegasus spyware, with a US court ruling them liable for hacking 1,400 devices. This ...
News
Ascension Cyberattack Update: New Details Emerge, Patient and Employee Data Exposed
A new update reveals the full extent of the June Ascension cyberattack, exposing patient and employee data including medical records, payment information, and Social Security ...
News
Halton Long-Term Care Home Breach Exposes Resident Data
A cybersecurity incident at Allendale Long-Term Care Home in Milton, overseen by Halton Region, exposed the health information of residents from 2005 to July 2024. ...
News
Krispy Kreme Breach: Play Ransomware Gang Claims Data Theft, Threatens Data Leak
The Play ransomware gang claims responsibility for a November Krispy Kreme data breach, alleging theft of sensitive customer and financial data. Krispy Kreme confirmed operational ...
News
2nd Equifax Data Breach Settlement: Additional Pro Rata Payments Now Available
Equifax data breach settlement is distributing additional pro rata payments to eligible individuals. Claimants who received a verified email with instructions on how to redeem ...
News
Duke Energy Data Breach Exposes Customer Information: What You Need to Know
Duke Energy confirms a data breach exposing customer account numbers, birthdates, addresses, and partial Social Security numbers. Free credit monitoring is offered.
News
Meezan Bank Data Breach: Bank Compensates Victims, Highlights Third-Party Security Risks
Meezan Bank, a PCI-certified bank with EMV and 3D Secure compliant cards, clarifies its position on recent unauthorized transactions, attributing them to unsecured e-commerce activities. ...
Ransomware
INC Ransomware: Master of Double Extortion
TOP CYBERSECURITY HEADLINES
SECURITYWEEK INDUSTRY EXPERTS
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.
Featured Videos
Podcasts
Cyber Security News
- All
- Application Security
- Blog
- CVE Vulnerability Alerts
- Cybersecurity
- Cybersecurity Newsletter
- Data Security
- Endpoint Security
- Identity and Access Management
- Information Security
- Network Security
- News
- Phishing
- Podcasts
- Ransomware
- Ransomware Victims
- Resources
- Security Spotlight
- Threat Actors
- Threat Detection Tools
- Uncategorized
Microsoft Windows March Update Wipes Out Copilot
Microsoft’s latest Windows 10 and 11 updates (KB5053598 and KB5053606) have accidentally uninstalled Copilot, the AI assistant, from some users’ systems—leaving many relieved rather than ...
$6.1 Million Crypto Stolen in WEMIX Hack
WEMIX, a blockchain gaming platform, suffered a $6.1 million crypto theft. Hackers stole authentication keys, planning the attack for two months before executing 13 successful ...
The Mirai Botnet: The Infamous DDoS Weapon
The Mirai botnet, a notorious piece of malware, launched devastating DDoS attacks in 2016. This blog post delves into its origins, spread, impact, and the ...
StilachiRAT Malware Steals Crypto Using Advanced Reconnaissance
Microsoft discovered StilachiRAT, a new RAT malware using sophisticated techniques to steal cryptocurrency and perform reconnaissance. Its advanced evasion capabilities make proactive defense crucial.
GitHub Action Supply Chain Attack Exposes CI/CD Secrets
A supply chain attack on the popular tj-actions/changed-files GitHub Action exposed CI/CD secrets. Attackers compromised a PAT, impacting 23,000 repositories. GitHub has since removed the ...
Critical Apache Tomcat Flaw Actively Exploited in Attacks
Critical Apache Tomcat RCE vulnerability (CVE-2025-24813) is actively exploited, allowing attackers to take control of servers via simple PUT requests. Immediate patching is crucial.
Fake “Security Alert” on GitHub Used to Hijack OAuth App Accounts
A massive GitHub phishing campaign uses fake "Security Alert" issues and a malicious OAuth app to hijack accounts, granting attackers full control. Immediate action is ...
Lingnan University Suffers Cybersecurity Breach: Sensitive Data Exposed
Lingnan University in Hong Kong suffered a data breach exposing thousands of records, including sensitive personal data. The university is taking steps to enhance security.
Hackers Flip the Script: How a Fake Coinbase Email Could Empty Your Wallet
A new and incredibly deceptive phishing campaign is targeting Coinbase users—but this isn’t your typical scam. Instead of stealing your recovery phrase, attackers are handing ...
Florida Hospital Data Breach Impacts Over 120,000 Patients
A Florida hospital, CDH, suffered a data breach impacting over 120,000 patients. Sensitive data, including Social Security numbers and health information, was compromised. The BianLian ...
Brute-Force on Autopilot: Black Basta’s ‘BRUTED’ VPN Tool for Ransomware Expansion
Black Basta, one of the most notorious ransomware gangs, has taken brute-force attacks to the next level with BRUTED—an automated framework designed to breach VPNs, ...
GitHub Action Hijacked: The Supply Chain Attack That Exposed 23,000 Repositories
In this episode, we unpack a major supply chain attack that compromised the widely used GitHub Action ‘tj-actions/changed-files’, affecting over 23,000 repositories. Attackers injected malicious ...
BlackBasta Ransomware Uses Automated Tool ‘BRUTED’ to Brute-Force VPNs
The BlackBasta ransomware group uses an automated tool, BRUTED, to brute-force VPNs and firewalls, highlighting the need for robust multi-factor authentication.
JD.com Data Breach: Babuk Ransomware Cartel Claims Massive Data Theft
JD.com, a major Chinese retailer, faces a massive data breach after the Babuk ransomware cartel claims to have stolen customer passwords and other sensitive information. ...
UDMI Radiology Firm Suffers Major Data Breach: Fog Ransomware Claims Responsibility
Fog ransomware group claims responsibility for a major data breach at UDMI, a radiology firm, impacting over 138,000 individuals. The incident underscores the critical need ...
FBI Issues Warning Against Medusa Ransomware for Gmail, Outlook, and VPN Users
The FBI warns of escalating Medusa ransomware attacks targeting Gmail, Outlook, and VPN users, urging immediate security enhancements to mitigate the threat.
LockBit Ransomware Developer Extradited to the United States
A key LockBit ransomware developer, Rostislav Panev, has been extradited to the US to face charges for his role in the group's global attacks.
Compliance Isn’t Security: Why a Checklist Alone Won’t Stop Cyberattacks
This blog delves into the critical gap between meeting compliance standards and achieving true cybersecurity resilience. Learn why simply checking boxes isn't enough and how ...
Bridging the Gap: Developers vs. Security in the Cloud
In this episode of The Deep Dive, we explore the ongoing tension between development and security teams in cloud environments. While developers prioritize speed and ...