Cyber Security
News
Volkswagen Data Leak Exposes Location Data of 800,000 Electric Vehicles
Volkswagen data leak exposed the location data of 800,000 electric vehicles, along with personal details for some drivers, highlighting serious security flaws.
News
China Denies State-Sponsored Cyberattack on US Treasury
China denies US accusations of a state-sponsored cyberattack on US Treasury, calling the claims "groundless," while the US points to a compromised third-party service provider.
News
Pro-Russian Hackers NoName057 Launch Coordinated Cyberattacks Against Italy
: Pro-Russian hackers NoName057 targeted Italian websites, including Milan airports, in a series of DDoS attacks.
Cybersecurity
Massive Healthcare Breaches Prompt Overhaul of US Cybersecurity Rules
The US is overhauling its cybersecurity rules following a surge in healthcare breaches. New regulations will mandate encryption, multi-factor authentication, and network segmentation to protect ...
News
Harley-Davidson Data Breach Exposes Thousands of Customer Records: 888 Claims Cyberattack
Harley-Davidson data breach has allegedly exposed the personal information of over 66,700 customers. Learn about the leaked data and the potential risks.
News
US Treasury Department Hacked: Cyber Attack On US Treasury Blamed on Chinese State-Sponsored Actors
The US Treasury Department was hacked, with Chinese state-sponsored actors gaining access to employee workstations and unclassified documents. Learn
News
AT&T and Verizon Secure Networks Following Devastating Salt Typhoon Breach
The Salt Typhoon breach impacted AT&T and Verizon, but both companies claim to have successfully contained the Chinese state-sponsored hacking campaign and secured their networks. ...
News
Japan Airlines Cyberattack Causes Flight Delays
A distributed denial-of-service (DDoS) attack on Japan Airlines (JAL) caused significant flight delays, highlighting the vulnerability of the aviation industry to cyber threats. Learn about ...
News
OpenAI ChatGPT Outage: Thousands Report Disruption
OpenAI ChatGPT outage hit on December 26th, 2024, impacting millions of users. Downdetector showed over 50,000 outage reports. OpenAI attributed the problem to an internet ...
News
Volkswagen Data Breach Exposes Location Data of 800,000 Electric Vehicles
A data breach at Volkswagen has exposed the location data of around 800,000 electric vehicles from VW, Audi, Seat, and Skoda. The vulnerability, reported by ...
News
USAA Bank Data Breach Lawsuit Settles for $3.25 Million
USAA Bank paid $3.25 million to settle a data breach lawsuit stemming from a 2021 incident exposing customer data obtained from motor vehicle records. The ...
News
Indonesia Government Data Breach: 82 GB of Sensitive Data Leaked Online
Indonesia government data breach leaked 82 GB of sensitive data, including financial records, taxpayer information, and employee details, raising serious security and privacy concerns.
News
ConnectOnCall Healthcare Data Breach Exposes Sensitive Healthcare Information
A massive data breach at ConnectOnCall, a healthcare communications provider, has exposed sensitive patient information, raising serious concerns about data security in the healthcare sector.
News
Kay Adams’ NFL Broadcast Interrupted by Netflix Technical Glitch
Kay Adams' NFL broadcast on Netflix was disrupted due to a technical glitch on Christmas Day, leaving viewers frustrated and highlighting the challenges of streaming ...
Cybersecurity
WhatsApp Wins Against NSO Group: Judge Finds NSO Liable for Pegasus
WhatsApp secured a major legal victory against NSO Group, creators of Pegasus spyware, with a US court ruling them liable for hacking 1,400 devices. This ...
News
Ascension Cyberattack Update: New Details Emerge, Patient and Employee Data Exposed
A new update reveals the full extent of the June Ascension cyberattack, exposing patient and employee data including medical records, payment information, and Social Security ...
News
Halton Long-Term Care Home Breach Exposes Resident Data
A cybersecurity incident at Allendale Long-Term Care Home in Milton, overseen by Halton Region, exposed the health information of residents from 2005 to July 2024. ...
News
Krispy Kreme Breach: Play Ransomware Gang Claims Data Theft, Threatens Data Leak
The Play ransomware gang claims responsibility for a November Krispy Kreme data breach, alleging theft of sensitive customer and financial data. Krispy Kreme confirmed operational ...
News
2nd Equifax Data Breach Settlement: Additional Pro Rata Payments Now Available
Equifax data breach settlement is distributing additional pro rata payments to eligible individuals. Claimants who received a verified email with instructions on how to redeem ...
News
Duke Energy Data Breach Exposes Customer Information: What You Need to Know
Duke Energy confirms a data breach exposing customer account numbers, birthdates, addresses, and partial Social Security numbers. Free credit monitoring is offered.
Ransomware
INC Ransomware: Master of Double Extortion
TOP CYBERSECURITY HEADLINES
SECURITYWEEK INDUSTRY EXPERTS
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.
Featured Videos
Podcasts
Cyber Security News
- All
- Application Security
- Blog
- CVE Vulnerability Alerts
- Cybersecurity
- Cybersecurity Newsletter
- Data Security
- Endpoint Security
- Identity and Access Management
- Information Security
- Network Security
- News
- Phishing
- Podcasts
- Ransomware
- Ransomware Victims
- Resources
- Security Spotlight
- Threat Actors
- Threat Detection Tools
- Uncategorized
Ransomware Victims on Dark Web – 12th March, 2025
This report summarizes recent ransomware attacks across various sectors, detailing the victims, threat actors, and available information on the incidents. Due to the nature of ...
Ransomware Victims on Dark Web – 3rd March, 2025
This report summarizes recent ransomware attacks across various sectors, detailing the victims, threat actors, and available information on the incidents. Due to the nature of ...
Qilin/Agenda Ransomware: The Credential Stealers
Overview The Qilin ransomware group, also known as Agenda, is a Russia-based ransomware-as-a-service (RaaS) operation active since at least July 2022. Initially operating under the ...
MegaRAC CVE-2024-54085 Vulnerability: Critical BMC Flaw Threatening Data Centers
A newly discovered critical vulnerability (CVE-2024-54085) in AMI’s MegaRAC Baseboard Management Controller (BMC) software puts thousands of servers at risk—including those from HPE, Asus, and ...
California Cryobank Data Breach Exposes Sensitive Customer Information
California Cryobank, a major US sperm bank, suffered a data breach exposing customer names, bank details, Social Security numbers, and more. The company is offering ...
GitHub Action Hack May Cause Another Supply Chain Attack
A cascading supply chain attack, starting with a GitHub Action hack, exposed CI/CD secrets across 23,000 repositories, highlighting vulnerabilities in third-party code reliance.
Western Alliance Bank Data Breach Impacts 21,899 Customers
Western Alliance Bank suffered a data breach impacting 21,899 customers, exposing sensitive personal and financial information due to a third-party vendor's software vulnerability exploited by ...
11 State-Sponsored Hacking Groups Exploit Windows Zero-Day Exploit
A critical Windows zero-day exploit, ZDI-CAN-25373, has been exploited by 11 state-sponsored hacking groups since 2017, enabling data theft and espionage. Microsoft initially declined to ...
Microsoft Windows March Update Wipes Out Copilot
Microsoft’s latest Windows 10 and 11 updates (KB5053598 and KB5053606) have accidentally uninstalled Copilot, the AI assistant, from some users’ systems—leaving many relieved rather than ...
$6.1 Million Crypto Stolen in WEMIX Hack
WEMIX, a blockchain gaming platform, suffered a $6.1 million crypto theft. Hackers stole authentication keys, planning the attack for two months before executing 13 successful ...
The Mirai Botnet: The Infamous DDoS Weapon
The Mirai botnet, a notorious piece of malware, launched devastating DDoS attacks in 2016. This blog post delves into its origins, spread, impact, and the ...
StilachiRAT Malware Steals Crypto Using Advanced Reconnaissance
Microsoft discovered StilachiRAT, a new RAT malware using sophisticated techniques to steal cryptocurrency and perform reconnaissance. Its advanced evasion capabilities make proactive defense crucial.
GitHub Action Supply Chain Attack Exposes CI/CD Secrets
A supply chain attack on the popular tj-actions/changed-files GitHub Action exposed CI/CD secrets. Attackers compromised a PAT, impacting 23,000 repositories. GitHub has since removed the ...
Critical Apache Tomcat Flaw Actively Exploited in Attacks
Critical Apache Tomcat RCE vulnerability (CVE-2025-24813) is actively exploited, allowing attackers to take control of servers via simple PUT requests. Immediate patching is crucial.
Fake “Security Alert” on GitHub Used to Hijack OAuth App Accounts
A massive GitHub phishing campaign uses fake "Security Alert" issues and a malicious OAuth app to hijack accounts, granting attackers full control. Immediate action is ...
Lingnan University Suffers Cybersecurity Breach: Sensitive Data Exposed
Lingnan University in Hong Kong suffered a data breach exposing thousands of records, including sensitive personal data. The university is taking steps to enhance security.
Hackers Flip the Script: How a Fake Coinbase Email Could Empty Your Wallet
A new and incredibly deceptive phishing campaign is targeting Coinbase users—but this isn’t your typical scam. Instead of stealing your recovery phrase, attackers are handing ...
Florida Hospital Data Breach Impacts Over 120,000 Patients
A Florida hospital, CDH, suffered a data breach impacting over 120,000 patients. Sensitive data, including Social Security numbers and health information, was compromised. The BianLian ...
Brute-Force on Autopilot: Black Basta’s ‘BRUTED’ VPN Tool for Ransomware Expansion
Black Basta, one of the most notorious ransomware gangs, has taken brute-force attacks to the next level with BRUTED—an automated framework designed to breach VPNs, ...
GitHub Action Hijacked: The Supply Chain Attack That Exposed 23,000 Repositories
In this episode, we unpack a major supply chain attack that compromised the widely used GitHub Action ‘tj-actions/changed-files’, affecting over 23,000 repositories. Attackers injected malicious ...