Exploit

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

Data Breach

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

A 27-year-old former student of Western Sydney University (WSU) has been arrested and charged with 20 cybercrime...

Krispy Kreme Data Breach: Play Ransomware Compromises 160,000 Records

Data Breach

Krispy Kreme Data Breach: Play Ransomware Compromises 160,000 Records

Krispy Kreme disclosed a November 2024 cyberattack impacting over 160,000 individuals, with the Play ransomware group claiming...

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Data Breach

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Automotive manufacturer Scania confirmed a cybersecurity breach on June 16, 2025, where attackers accessed insurance claim documents...

Cock.li Data Breach: Roundcube Exploit Leads to 1 Million User Records Compromised

Data Breach

Cock.li Data Breach: Roundcube Exploit Leads to 1 Million User Records Compromised

Email hosting provider Cock.li has confirmed a significant data breach affecting over one million users. The breach...

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Data Breach

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Sensata Technologies, a global industrial sensor manufacturer, confirmed a ransomware attack in April 2025 that compromised sensitive...

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

CVE News

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Technical details surrounding CVE-2025-20188, a maximum-severity arbitrary file upload vulnerability affecting Cisco IOS XE Wireless LAN Controller...

Malicious Chrome Extensions Impersonating VPNs and AI Tools Steal User Data

Threat Intelligence

Malicious Chrome Extensions Impersonating VPNs and AI Tools Steal User Data

A recent campaign involving over 100 malicious Google Chrome extensions has been discovered impersonating legitimate tools such...

SK Telecom’s 3-Year Malware Breach: Technical Analysis of a 27M Subscriber Compromise

Data Breach

SK Telecom’s 3-Year Malware Breach: Technical Analysis of a 27M Subscriber Compromise

SK Telecom, South Korea’s largest telecommunications provider, disclosed in April 2025 that a malware breach had persisted...

Twilio Denies Breach Despite Leak of 89 Million Steam 2FA Codes

News

Twilio Denies Breach Despite Leak of 89 Million Steam 2FA Codes

Twilio has denied claims of a security breach after a threat actor allegedly leaked 89 million Steam...

Security Breach in Unofficial Signal App Used by Trump Administration Officials

Data Breach

Security Breach in Unofficial Signal App Used by Trump Administration Officials

A modified version of the encrypted messaging app Signal, used by Trump administration officials, was compromised in...

xAI API Key Leak Exposes Private SpaceX and Tesla LLMs for Two Months

Data Breach

xAI API Key Leak Exposes Private SpaceX and Tesla LLMs for Two Months

A developer at Elon Musk’s artificial intelligence company xAI accidentally leaked a private API key on GitHub,...

SK Telecom’s SIM Replacement Crisis: Technical and Operational Breakdown

Data Breach

SK Telecom’s SIM Replacement Crisis: Technical and Operational Breakdown

South Korea’s largest mobile carrier, SK Telecom (SKT), is scrambling to contain the fallout from a massive...

Critical SQL Injection Vulnerability in PHPGurukul Rail Pass Management System (CVE-2025-4039)

CVE News

Critical SQL Injection Vulnerability in PHPGurukul Rail Pass Management System (CVE-2025-4039)

A critical SQL injection vulnerability (CVE-2025-4039) has been identified in PHPGurukul’s Rail Pass Management System version 1.0,...

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

Data Breach

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

The abrupt shutdown of BreachForums, a major cybercrime marketplace, on April 15, 2025, has left the cybersecurity...

Oregon DEQ Cyberattack: Rhysida Ransomware Group Claims Employee Data Theft

Data Breach

Oregon DEQ Cyberattack: Rhysida Ransomware Group Claims Employee Data Theft

The Oregon Department of Environmental Quality (DEQ) has refused to confirm whether employee data was exfiltrated during...

Metasploit Enhances AD CS Exploitation Capabilities with New PKCS12 Features

Red-Team

Metasploit Enhances AD CS Exploitation Capabilities with New PKCS12 Features

The latest Metasploit Framework update introduces significant improvements for Active Directory Certificate Services (AD CS) exploitation, particularly...

The $243M Crypto Heist: How Social Engineering and Lavish Spending Led to Arrests

APT-News

The $243M Crypto Heist: How Social Engineering and Lavish Spending Led to Arrests

In August 2024, cybercriminals executed one of the largest single-victim cryptocurrency thefts in history, stealing $243 million...

Garage Management System 1.0 Stored XSS Vulnerability (CVE-2022-41358): Analysis and Mitigation

CVE News

Garage Management System 1.0 Stored XSS Vulnerability (CVE-2022-41358): Analysis and Mitigation

A stored cross-site scripting (XSS) vulnerability has been identified in Garage Management System 1.0, specifically affecting the...

Unauthenticated XSS Vulnerability in ABB Cylon Aspect 4.00.00

CVE News

Unauthenticated XSS Vulnerability in ABB Cylon Aspect 4.00.00

A critical unauthenticated Cross-Site Scripting (XSS) vulnerability has been identified in ABB Cylon Aspect firmware version 4.00.00,...

KiviCare Clinic & Patient Management System (EHR) 3.6.4 SQL Injection Vulnerability (CVE-2024-11728)

CVE News

KiviCare Clinic & Patient Management System (EHR) 3.6.4 SQL Injection Vulnerability (CVE-2024-11728)

A critical unauthenticated SQL injection vulnerability (CVE-2024-11728) has been identified in KiviCare Clinic & Patient Management System...

Posts pagination

1 2 Next

Exploit

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

Krispy Kreme Data Breach: Play Ransomware Compromises 160,000 Records

Scania Insurance Data Breach: Compromised Credentials Lead to Extortion Attempt

Cock.li Data Breach: Roundcube Exploit Leads to 1 Million User Records Compromised

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Malicious Chrome Extensions Impersonating VPNs and AI Tools Steal User Data

SK Telecom’s 3-Year Malware Breach: Technical Analysis of a 27M Subscriber Compromise

Twilio Denies Breach Despite Leak of 89 Million Steam 2FA Codes

Security Breach in Unofficial Signal App Used by Trump Administration Officials

xAI API Key Leak Exposes Private SpaceX and Tesla LLMs for Two Months

SK Telecom’s SIM Replacement Crisis: Technical and Operational Breakdown

Critical SQL Injection Vulnerability in PHPGurukul Rail Pass Management System (CVE-2025-4039)

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

Oregon DEQ Cyberattack: Rhysida Ransomware Group Claims Employee Data Theft

Metasploit Enhances AD CS Exploitation Capabilities with New PKCS12 Features

Garage Management System 1.0 Stored XSS Vulnerability (CVE-2022-41358): Analysis and Mitigation

Unauthenticated XSS Vulnerability in ABB Cylon Aspect 4.00.00

KiviCare Clinic & Patient Management System (EHR) 3.6.4 SQL Injection Vulnerability (CVE-2024-11728)

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected