Exploit

Allianz Life Data Breach: A Case Study in Third-Party Social Engineering

Data Breach

Allianz Life Data Breach: A Case Study in Third-Party Social Engineering

Allianz Life Insurance Company of North America has confirmed that a July 2025 cyberattack compromised the personal...

Supply Chain Attack Targets Rust Developers Through Malicious Crates

Threat Intelligence

Supply Chain Attack Targets Rust Developers Through Malicious Crates

A software supply chain attack targeting the Rust programming language ecosystem has been uncovered, involving malicious packages...

NPM Package “fezbox” Uses QR Code Steganography to Steal Browser Cookies

Malware Analysis

NPM Package “fezbox” Uses QR Code Steganography to Steal Browser Cookies

In September 2025, the Node Package Manager (NPM) ecosystem was targeted by a series of sophisticated supply...

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Blue-Team

Securing the Browser: The New Enterprise Perimeter and Attack Surface

The modern web browser has become the primary interface for enterprise work, hosting sensitive data, credentials, and...

Federal Judiciary’s Repeated Cyber Breaches Highlight Systemic Security Failures

APT-News

Federal Judiciary’s Repeated Cyber Breaches Highlight Systemic Security Failures

A sophisticated cyberattack attributed to Russian state-sponsored actors breached the U.S. federal judiciary’s critical Case Management/Electronic Case...

UK “Serial Hacker” Sentenced to 20 Months for 3,000 Website Breaches

APT-News

UK “Serial Hacker” Sentenced to 20 Months for 3,000 Website Breaches

A 26-year-old UK resident, Al-Tahery Al-Mashriky, has been sentenced to 20 months in prison after admitting to...

Over 3,000 NetScaler Devices Remain Unpatched Against CitrixBleed 2 Vulnerability

CVE News

Over 3,000 NetScaler Devices Remain Unpatched Against CitrixBleed 2 Vulnerability

As of August 2025, more than 3,300 Citrix NetScaler devices remain vulnerable to CitrixBleed 2 (CVE-2025-5777), a...

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

Data Breach

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

McDonald’s AI-powered hiring chatbot, “Olivia,” developed by Paradox.ai, exposed the personal data of over 64 million job...

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

Data Breach

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

A 27-year-old former student of Western Sydney University (WSU) has been arrested and charged with 20 cybercrime...

Krispy Kreme Data Breach: Play Ransomware Compromises 160,000 Records

Data Breach

Krispy Kreme Data Breach: Play Ransomware Compromises 160,000 Records

Krispy Kreme disclosed a November 2024 cyberattack impacting over 160,000 individuals, with the Play ransomware group claiming...

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Data Breach

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Automotive manufacturer Scania confirmed a cybersecurity breach on June 16, 2025, where attackers accessed insurance claim documents...

Cock.li Data Breach: Roundcube Exploit Leads to 1 Million User Records Compromised

Data Breach

Cock.li Data Breach: Roundcube Exploit Leads to 1 Million User Records Compromised

Email hosting provider Cock.li has confirmed a significant data breach affecting over one million users. The breach...

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Data Breach

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Sensata Technologies, a global industrial sensor manufacturer, confirmed a ransomware attack in April 2025 that compromised sensitive...

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

CVE News

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Technical details surrounding CVE-2025-20188, a maximum-severity arbitrary file upload vulnerability affecting Cisco IOS XE Wireless LAN Controller...

Malicious Chrome Extensions Impersonating VPNs and AI Tools Steal User Data

Threat Intelligence

Malicious Chrome Extensions Impersonating VPNs and AI Tools Steal User Data

A recent campaign involving over 100 malicious Google Chrome extensions has been discovered impersonating legitimate tools such...

SK Telecom’s 3-Year Malware Breach: Technical Analysis of a 27M Subscriber Compromise

Data Breach

SK Telecom’s 3-Year Malware Breach: Technical Analysis of a 27M Subscriber Compromise

SK Telecom, South Korea’s largest telecommunications provider, disclosed in April 2025 that a malware breach had persisted...

Twilio Denies Breach Despite Leak of 89 Million Steam 2FA Codes

News

Twilio Denies Breach Despite Leak of 89 Million Steam 2FA Codes

Twilio has denied claims of a security breach after a threat actor allegedly leaked 89 million Steam...

Security Breach in Unofficial Signal App Used by Trump Administration Officials

Data Breach

Security Breach in Unofficial Signal App Used by Trump Administration Officials

A modified version of the encrypted messaging app Signal, used by Trump administration officials, was compromised in...

xAI API Key Leak Exposes Private SpaceX and Tesla LLMs for Two Months

Data Breach

xAI API Key Leak Exposes Private SpaceX and Tesla LLMs for Two Months

A developer at Elon Musk’s artificial intelligence company xAI accidentally leaked a private API key on GitHub,...

SK Telecom’s SIM Replacement Crisis: Technical and Operational Breakdown

Data Breach

SK Telecom’s SIM Replacement Crisis: Technical and Operational Breakdown

South Korea’s largest mobile carrier, SK Telecom (SKT), is scrambling to contain the fallout from a massive...

Posts pagination

1 2 3 Next

Exploit

Supply Chain Attack Targets Rust Developers Through Malicious Crates

NPM Package “fezbox” Uses QR Code Steganography to Steal Browser Cookies

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Federal Judiciary’s Repeated Cyber Breaches Highlight Systemic Security Failures

UK “Serial Hacker” Sentenced to 20 Months for 3,000 Website Breaches

Over 3,000 NetScaler Devices Remain Unpatched Against CitrixBleed 2 Vulnerability

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

Krispy Kreme Data Breach: Play Ransomware Compromises 160,000 Records

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Cock.li Data Breach: Roundcube Exploit Leads to 1 Million User Records Compromised

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Malicious Chrome Extensions Impersonating VPNs and AI Tools Steal User Data

SK Telecom’s 3-Year Malware Breach: Technical Analysis of a 27M Subscriber Compromise

Twilio Denies Breach Despite Leak of 89 Million Steam 2FA Codes

Security Breach in Unofficial Signal App Used by Trump Administration Officials

xAI API Key Leak Exposes Private SpaceX and Tesla LLMs for Two Months

SK Telecom’s SIM Replacement Crisis: Technical and Operational Breakdown

You may have missed

Adobe Analytics Data Leak: Architectural Failure Exposes Cross-Tenant Data

Snapchat’s Shift to Paid Storage: A Technical Analysis of Cloud Service Monetization

Google’s Developer Registration Policy Threatens F-Droid’s Existence

Google Drive for Desktop Deploys AI-Powered Ransomware Detection and Recovery