Editor's Message

Welcome to DBD. 2024 was a tough year for me personally, and I'd like to thank every one of you who has supported me - you have been my light in times of darkness. 2024 saw the highest number of ransomware attacks on record, and there's no sign of these attacks slowing down as we head into the new year. Ransomware is a BIG problem that is NOT going away anytime soon, and this year could be just as catastrophic, if not worse, as cyber criminals continue to extort their victims with very little chance of being brought to justice. Wishing you all the very best for 2025. Stay safe. :)


“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington DC



Monday, 17 February 2025

Data Breaches Digest - Week 8 2025

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 17th February and 23rd February 2025.


19th February

Trend Micro predicts increase in AI-driven cyber threats in 2025

18th February

2025 ZeroFox Forecast: Dark Web, Ransomware, Gen AI & Beyond

A New Wave of Ransomware Campaigns Targeting Microsoft Teams

Alleged Data Breach Claims Surface Against Thai Telecom Company TOT Mobile

Alleged Data Dump: Threat Actor Claims to Release 4 Million Stolen Credit Cards

As US newspaper outages drag on, Lee Enterprises blames cyberattack for encrypting critical systems

Australian National University investigates alleged ransomware attack by FSociety

BerryDunn reaches $7.5 million settlement in data breach lawsuit

Beware of Fake Timesheet Report Email Leading to the Tycoon 2FA Phishing Kit

BlackLock On Track to Be 2025’s Most Prolific Ransomware Group

BlackLock ransomware onslaught: What to expect and how to fight it

Chinese hackers abuse Microsoft APP-v tool to evade antivirus

Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks

Compliance Isn’t Security: Why a Checklist Won’t Stop Cyberattacks

Critical OpenSSH Vulnerabilities Expose Users to MITM and DoS Attacks

Cyber threats surge in New Zealand, phishing leads scams

Cyberattack likely to have ‘material impact’ on media giant Lee Enterprises’ bottom line

Cybercriminals Exploit Onerror Event in Image Tags to Deploy Payment Skimmers

Cybercriminals shift focus to social media as attacks reach historic highs

Data Breach Outlook: Healthcare Most Breached Industry in 2024

Debunking the AI Hype: Inside Real Hacker Tactics

DeepSeek sent user data to ByteDance, Seoul confirms

Document management system leak exposed 25 Million records

Dozens of Italian websites targeted by Russian hackers

Ecuador's legislature says hackers attempted to access confidential information

Evolving Snake Keylogger Variant Targets Windows Users

Finastra Starts Notifying People Impacted by Recent Data Breach

Got a Microsoft Teams invite? Storm-2372 Gang Exploit Device Codes in Global Phishing Attacks

Hackers planted a Steam game with malware to steal gamers’ passwords

Infostealer malware detected within US military and defense companies

Insight Partners hit by cyber attack with possible data leaks

Juniper patches critical auth bypass in Session Smart routers

Juniper Session Smart Routers Vulnerability Could Let Attackers Bypass Authentication

Lee Enterprises newspaper disruptions caused by ransomware attack

Mustang Panda Leverages Microsoft Tools to Bypass Anti-Virus Solutions

New FrigidStealer Malware Targets macOS Users via Fake Browser Updates

New hacker attack on Italian sites, pro-Russian group NoName057 claims responsibility

New Mac Malware Poses as Browser Updates

New MacOS malware FrigidStealer targeting users with fake updates

New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now

New OpenSSH flaws expose SSH servers to MiTM and DoS attacks

New XCSSET Malware Variant Targeting macOS Notes App and Wallets

New Xerox Printer Flaws Could Let Attackers Capture Windows Active Directory Credentials

New Zealand: Hacker nearly hooks Waikato pair after infiltrating law firm

Northern Ireland Assembly reports apparent data breach to UK information watchdog

OpenSSH Flaws Expose Systems to Critical Attacks

Phishing campaign targets Microsoft device-code authentication flows

Phishing scam involving SunPass seeks to collect personal data; fraudulent sites shut down

Proofpoint Uncovers FrigidStealer, A New MacOS Infostealer

Protect Your Data: Russian Spear-Phishing Targets Microsoft 365 Accounts

Ransomware: The $270 Billion Beast Shaping Cybersecurity

Ransomware attack disrupts Sault Tribe's casinos in Michigan

Ransomware attack hits 5 Michigan casinos, shuts them down

Ransomware attacks on food and agriculture expected to rise, possible ‘cascading impacts’ on the sector

Ransomware Spike Driven By Ransomware-as-a-Service (RaaS) Operations

Researchers warn of extremely dangerous ransom gang: pressure to pay up quickly

Russian Railways Portal Allegedly Breached 570K Records Exposed

Snake Keylogger Variant Hits Windows, Steals Data via Telegram Bots

South Africa: Weather Service still working to restore IT platform after ransomware attack

There’s a new ransomware player on the scene: the ‘BlackLock’ group has become one of the most prolific operators in the cyber crime industry – and researchers warn it’s only going to get worse for potential victims

These nations are banning DeepSeek AI - here's why

Threat Actor Claims Unprotected TensorFlow Database Exposes Sensitive Files Including Passwords

US Coast Guard hack leads to paycheck delays, forces personnel systems offline

US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware

Venture Capital giant Insight Partners confirms January cyberattack

Vgod Ransomware Encrypts Your Entire System and Sets A Ransom Note As Wallpaper

Why rebooting your phone daily is your best defense against zero-click attacks

Winnti APT41 Targets Japanese Firms in RevivalStone Cyber Espionage Campaign

Zacks Investment Research Breach Hits 12 Million

17th February

$577 Million Cryptocurrency Fraud: Two Estonians Admit Role in Global Ponzi Scheme

A PostgreSQL zero-day was also exploited in US Treasury hack (CVE-2025-1094)

Advanced Ransomware Evasion Techniques in 2025

Akira claims cyber attack on closed Australian media company

Alleged Russian hackers attack worldwide sectors by posing as famous people on Teams, WhatsApp, & Signal

Applying Behavioral Economics to Phishing and Social Engineering Attacks

Arthur J. Gallagher & Co. reaches $21 million settlement over 2020 data breach

Barracuda reports fourfold rise in ransomware threats 2024

Beware of Fake Outlook Troubleshooting Calls that Ends Up In Ransomware Deployment

Beware! Fake Outlook Support Calls Leading to Ransomware Attacks

Beyond ransomware payments: A proactive approach to cybersecurity

Charleston Area Medical Center Announces Data Breach Following Email Phishing Attack

Chase will soon block Zelle payments to sellers on social media

Cyber-warfare: the new era of sophisticated attacks

Cybercriminals are stealing AI power, and you might be the one paying for it

Dark Web Post Alleges Sale of 17B Stolen Credentials

Data Breach: US accuses UK of ordering Apple to allow spying on iPhone consumers’ information worldwide

Data breach leaks a whopping 2.7 billion records including smartphone and Wi-Fi info

Different Types of Apple Phishing Scams in 2025

Dutch police dismantle bulletproof hosting provider, seize 127 servers

Estonian Duo Plead Guilty to $577m Crypto Ponzi Scheme

Finastra Announces Data Breach Following Discovery of November 2024 Cyberattack

Fintech giant Finastra notifies victims of October data breach

Hacker claims they stole 12m customer accounts from Zacks Investment Research

Hackers are using this new phishing technique to bypass MFA

Hackers Exploit Telegram API to Spread New Golang Backdoor

Hackers infect websites of a major Lithuanian food company Vičiūnai Group

HashFlare Fraud: Two Estonians Admit to Running $577M Crypto Scam

Health tech company Datavant Group says data breach impacted over 45,000 patients

How Small Businesses Can Protect Themselves From Cyber Threats

Is Russia Reining In Ransomware-Wielding Criminals?

Kelsey-Seybold Clinic Files Notice of Data Breach

Lucent Health Solutions says cyber attack impacted over 37,000 individuals

Memorial Hospital & Manor faces scrutiny over ransomware attack and data leak

Microsoft Detects New XCSSET MacOS Malware Variant

Microsoft spots XCSSET macOS malware variant used for crypto theft

Microsoft Uncovers New XCSSET macOS Malware Variant with Advanced Obfuscation Tactics

Microsoft warns of Storm-2372’s device code phishing attacks and evolving tactics

New downloads of DeepSeek suspended in South Korea

New downloads of DeepSeek suspended in South Korea, data protection agency says

New Golang-Based Backdoor Uses Telegram Bot API for Evasive C2 Operations

Palo Alto Networks and SonicWall Firewalls Under Attack

Phishing attempt strikes FTX creditors on the brink of repayments

Phishing for Love: A Sharp Surge in Valentine’s Day-Themed Scams

PowerSchool data breach exposes student information

Pro-Russia Hackers NoName057(16) Hit Italian Banks and Airports

RansomHub Evolves To Attack Windows, ESXi, Linux and FreeBSD Operating Systems

Ransomware attack affects Michigan casinos and tribal health centers

Ransomware attacks surged in 2024 as hackers looked to strike faster than ever

Ransomware Gangs Encrypt Systems 17 Hours After Initial Infection

Ransomware Gangs Encrypt Systems After 17hrs From Initial Infection

Ransomware gangs extort victims 17 hours after intrusion on average

Ransomware rises fourfold in a year of complex threats

Ransomware-as-a-service actors drive four-times increase in ransomware attacks

Russian cyberattackers spotted hitting Microsoft Teams with new phishing campaign

Russian Hackers Use Device Code Phishing to Hijack Microsoft 365 Accounts

Russian State Hackers Target Organizations With Device Code Phishing

Sault Tribe working to reopen Michigan casinos following ransomware attack on tribal operations

Singapore: Over $1.2m lost to credit card phishing and mobile wallet scams from Oct to Dec 2024

South Korea Suspends DeepSeek AI Downloads Over Privacy Violations

South Korea Suspends Downloads of AI Chatbot DeepSeek

Spy becomes cybercriminal in curious ransomware incident

Telegram Used as C2 Channel for New Golang Malware

Thailand: National Cyber Security Agency (NCSA) watchdog warns delivery firms after major data breach

The Pension Specialists Data Breach Affects Over 71k Consumers

The Philippines: Commission on Elections (COMELEC) denies data breach allegations, ensures system security

The XCSSET info-stealing malware is back, targeting macOS users and devs

This new email scam bypasses 2FA and steals your identity

Thousands of Polish lawyers affected by data breach

Three days later, DOGE site remains defaced: experts point at cybersecurity violations

Two Estonians plead guilty in $577M cryptocurrency Ponzi scheme

U.S. accounting firm settles major data breach lawsuit for $7.25 million

Ukraine Launches Major Cyber Attack on Russian Gas Infrastructure

United Arab Emirates (UAE) Among Most Targeted Countries by Malware Attacks

United States Coast Guard Suffers a Data Breach Delaying Payments of Over 1000 Members

Urgent warning to all Gmail and Outlook users over ‘dangerous’ new login attack that steals passwords & raids accounts

Thursday, 13 February 2025

Ransomware Operator Claims - Week 6 2025

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 3rd February and 9th February 2025, kindly assisted by our partners.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.


Monday, 10 February 2025

Data Breaches Digest - Week 7 2025

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 10th February and 16th February 2025.


16th February

AI-enabled satellites could help the US evade a crippling cyber attack

All Gmail users placed on red alert and not following advice could be 'devastating'

Australian National University investigating alleged cyber attack

Cyber attack warning to retirement funds in South Africa

Gmail users issued red alert as new AI scam leaves people 'devastated'

Meta Platforms Grapples With Major Data Breach

Phishing and genAI are increasing

South Korea blocks downloads of DeepSeek from local app stores

Tax Data Safe in Papua New Guinea Amid Cyber Attack Fallout

15th February

2024: The year ransomware exploded and email threats got sneakier

Android's New Feature Blocks Fraudsters from Sideloading Apps During Calls

Cyber Attack on Megha Engineering, Rs 5.47 Cr Loss

If you dread a Microsoft Teams invite, just wait until it turns out to be a Russian phish

In phishing attack, scammers pose as ‘Dutch suppliers’ to dupe Hyderabad-based Megha Engineering and Infrastructures Ltd (MEIL) of Rs 5.47 crore

Infrastructure giant Megha Engineering and Infrastructures Ltd (MEIL) duped of Rs 5.47 crore in phishing attack

Infrastructure major Megha Engineering and Infrastructures Ltd (MEIL) loses Rs 5.5 crore in phishing attack

International Phishing Scam Targets Megha Engineering and Infrastructure Ltd (MEIL): A Multi-Crore Heist

Is That Breach Alert Real? It May Be Just Another Scam

Megha Engineering And Infrastructure Loses Rs 5.5 Crore In Phishing Scam

Memorial Hospital and Manor notifies 120,085 people of November ransomware attack

Microsoft: Hackers steal emails in device code phishing attacks

Papua New Guinea: Internal Revenue Commission (IRC) responds to Cyber Attack

Ransomware Hacked & Helpless

Sinister New Phishing Kit Targets Billions Of Gmail And Outlook Users

The foundation of modern software development is under rising cyber attack

The Hidden Cybersecurity Crisis: How GenAI is Fueling the Growth of Unchecked Non-Human Identities

U.S. Coast Guard hit with data breach, impacting pay for more than 1,100 members

What is an encryption backdoor?

YouTube Scam: Fake YouTube Emails Deceive Users into Downloading Malware - How to Protect Yourself

14th February

2.7 billion IoT records leaked in massive online data breach

12 million hit in Zacks Investment data breach - how to protect yourself now

75 luxury homes, 6 supercars, and 20 years in prison: crypto scammers plead guilty

A record year of shattered hearts and emptied wallets

Advanced stealthy Astaroth phishing kit emerges

AI Vs. Advanced AI: The Battle For Data Integrity In The Age Of Advanced Ransomware

AI-Powered Social Engineering: Ancillary Tools and Techniques

As-a-Service Platforms Drive Four-fold Ransomware Increase

Astaroth 2FA Phishing Kit Targets Gmail, Yahoo, Office 365, and Third-Party Logins

Australia Imposes New Cyber Sanctions in Response to Medibank Private Cyberattack

Berry, Dunn, McNeil & Parker Agree to $7.25 Million Data Breach Settlement

Brightline settles lawsuit for $7 million over 2023 data breach involving Clop hacking group

China government-linked hackers caught running a seriously dangerous ransomware scam

China-Linked Espionage Tools Used in Recent Ransomware Attack

Chinese Cyber-Spies Use Espionage Tools for Ransomware Side Hustle

Chinese hackers breach more US telecoms via unpatched Cisco routers

Chinese Hackers Target Cisco Devices in Global Cyber Campaign

Chinese spies suspected of 'moonlighting' as tawdry ransomware crooks

Consultation launched to protect critical national infrastructure from ransomware

Cutbacks bite back as hackers play with Elon Musk's DOGE site

Cybercrime now a national security threat, Google warns

Cybersecurity in Nigeria and Beyond: Major Incidents and What Lies Ahead

Device Code Phishing Attack Exploits Authentication Flow to Hijack Tokens

Dozens of organizations claimed to be hacked by Cl0p ransomware

Dragos reports evolving ransomware threat landscape with increased operational disruptions as attacks target ICS

Elon Musk's DOGE.gov website can apparently be edited by anyone

Ending the Ransomware Scourge Requires Punishing Its Enablers

Espionage Tools Associated with China Used in Ransomware Attacks

FBI intervenes as crypto scam victims risk homes and life savings

Fillmore County Hospital Announces Data Breach

Fraud Alert: The SVG Image File Scam You Need To Watch Out for

Gmail, Yahoo targeted by a new two-factor authentication phishing kit

Google’s Gemini AI Abused by Multiple State-Sponsored Hackers for Cyber Attacks

Inconsistent security strategies fuel third-party threats

Lazarus Group Deploys Marstech1 JavaScript Implant in Targeted Developer Attacks

Lynx ransomware group claims hack of truck dealership Brown and Hurley

Malicious PirateFi game infects Steam users with Vidar malware

Microsoft 365 accounts targeted in device code spear-phishing scheme

New Astaroth 2FA Phishing Kit Targeting Gmail, Yahoo, Office 365, and 3rd-Party Logins

New data leak hits more entities in France - what to do if you are affected

New Device Code Phishing Attack Exploit Device Code Authentication To Capture Authentication Tokens

New Salt Typhoon Attacks Target Cisco Devices

New "whoAMI" Attack Exploits AWS AMI Name Confusion for Remote Code Execution

Nippon Steel claimed by BianLian ransomware group

North Korean Hackers Suspected in DEEP#DRIVE Attacks Against South Korea

OpenAI at Risk? Hacker Exploits ChatGPT Authentication Flaw

OpenAI denies breach of 20 million customer credentials from its servers

OpenAI Faces Data Breach Claims Amid Cybersecurity Fears

Passwordless: Malaysia’s new weapon against phishing

Pennsylvania utility says MOVEit breach at vendor exposed some customer data

'Phishing' Scam Warning Issued For Drivers Of Delaware River Bridges

Phishing Scams in 2025: How Hackers Are Using AI to Trick Users

Pig butchering scams are exploding

Police risk losing society’s trust in fight against cybercrime, warns Europol chief

PostgreSQL flaw exploited as zero-day in BeyondTrust breach

PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks

Protecting yourself from ransomware: a comprehensive guide to prevention and mitigation

RA World Ransomware Intrusion Involved Chinese Cyberespionage Tools

Radiology practice SimonMed Imaging suffers apparent ransomware attack

RansomHub: The New King of Ransomware? Targeted 600 Firms in 2024

RansomHub Becomes 2024's Top Ransomware Group, Hitting 600+ Organizations Globally

Ransomware attack on Chippewa Indian tribe knocks out computer systems

Ransomware attacks on industrial systems an ‘increasingly dynamic ecosystem’

Ransomware Data Extortion Skyrocketing

Ransomware group Sarcoma claims attack on Taiwanese PCB manufacturer Unimicron

Ransomware-as-a-Service Fuels 4X Surge in Attacks

REMSA Health Experiences Cyberattack, Raising Questions of a Possible Data Breach

Russian hackers launch new attack vector: joining a meeting can compromise your account

Russian Hackers Target Microsoft 365 Accounts with Device Code Phishing

Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts

Safer Internet Day: What to remember about parking-related phishing scams

Sault Tribe still working to restore services following ransomware attack

Scammers Exploit JFK Files Release with Malware and Phishing

SonicWall firewall bug leveraged in attacks after PoC exploit release

SonicWall firewalls now under attack: Patch ASAP or risk intrusion via your SSL VPN

Texas investigating DeepSeek for violating data privacy law

The changing face of phishing

The most dangerous malware right now: Anubis will drain your banking apps

Third-Party Cyber Risk Management: Taking a Strategic Approach

Threat actors are using legitimate Microsoft feature to compromise Microsoft 365 (M365) accounts

Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts

Top component maker Unimicron hit by massive ransomware attack

U.S. Coast Guard Suffers Data Breach, Pay Delayed for 1,135 Members

Ukraine warns of growing AI use in Russian cyber-espionage operations

Unimicron manufacturer faced a breach from Sarcoma ransomware

USAID staff accuses DOGE of jeopardizing safety, accessing security clearance data

What is device code phishing, and why are Russian spies so successful at it?

XELERA Ransomware Attacking Job Seekers With Weaponized Word Documents

YouTube scam alert: New phishing email targets accounts for takeover

YouTube Warns Users To Stay Vigilant As It Investigates Account Hijacking Campaign

Zacks Investment hit in data breach - 12 million users potentially at risk

Zservers/XHost servers dismantled by Dutch police

13th February

4 Ways to Safeguard Your Privacy During Remote Work

Acronis Cyberthreats Report Reveals Rise in Ransomware, AI-Driven Attacks, and Malware Risks in 2024

Acronis H2 2024 Cyberthreats Report Unveils Rise in Ransomware, AI-Driven Attacks, and Malware Risks

APT Groups Using Ransomware 'Smokescreen' for Espionage

Astaroth Phishing Kit Bypasses 2FA to Hijack Gmail and Microsoft Accounts

Astaroth Phishing Kit Bypasses 2FA Using Reverse Proxy Techniques

AUKUS members sanction Medibank hacker and LockBit infrastructure provider

Australian police join global crackdown on cybercriminal infrastructure provider

Barcelona-based spyware startup Variston shuts down, per filing

Bengal police arrests 46 people linked to Jamtara gangs involved in phishing, online fraud

Brightline to pay $7M to resolve Fortra hack lawsuit

Bulletproof No More? Russian Zservers Sanctioned For Alleged LockBit Crypto Crimes

Canada Border Services Agency (CBSA) data breach exposes information of 18,000 employees

Chicago schools join IT giant in Cl0p's attack spree

China-linked APTs’ tool employed in RA World Ransomware attack

China’s Salt Typhoon hackers continue to breach telecom firms despite US sanctions

China’s Salt Typhoon hackers targeting Cisco devices used by telcos, universities

Chinese APT 'Emperor Dragonfly' Moonlights With Ransomware

Chinese Cyberspy Possibly Launching Ransomware Attacks as Side Job

Chinese espionage tools deployed in RA World ransomware attack

Chinese Espionage Tools Used in Ransomware Attacks

Circuit Board Maker Unimicron Targeted in Ransomware Attack

CISA and FBI Warn Against Buffer Overflow Vulnerabilities

CPS Solutions Files Notice of Data Breach Following Unauthorized Access to Business Email Account

Cyber attack causes error in Israeli credit transaction system

Cyber attack on Australian education centre claimed by KillSec

Cybercriminals Targeting U.S. Food and Agriculture Sector Now More Than Ever

Dark Web Profile: Fog Ransomware

Data Breach Hits Food Delivery Giant GrubHub, Putting Victims at Risk of Phishing Attacks

Department of Government Efficiency (DOGE) hasn’t accessed legally protected tax data, administration says in privacy suit response

Doxbin Data Breach: Hackers Leak 136K User Records and Blacklist File

Dutch police say they took down 127 servers used by sanctioned hosting service

Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster

Electronic Frontier Foundation (EFF) Leads Fight Against Department of Government Efficiency (DOGE) and Musk's Access to US Federal Workers' Data

Email cyberattacks rose by 197% during second half of 2024

Email-based Cyberattacks Surge 197%; MSPs Face Increased Phishing, Ransomware Threats

Ethiopia again worst hit by cyber crime

FedEx Cautions Against New Wave of Scams, Urges Public Vigilance

FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux

FortiOS Vulnerability Allows Super-Admin Privilege Escalation – Patch Now!

Hacker leaks account data of 12 million Zacks Investment users

Hacker Offered 10% Bounty After Stealing Over $9,000,000 in Ethereum (ETH) From Lending Platform

Hackers Exploited Palo Alto’s Firewall Vulnerability to Deploy RA World Ransomware

Hackers Use CAPTCHA Trick on Webflow CDN PDFs to Bypass Security Scanners

Hewlett Packard Enterprise (HPE) notifies staff of data breach related to Russian hack

Hipshipper data leak exposes millions of shipping labels, raising privacy concerns

How Much Time Does it Take for Hackers to Crack My Password?

Immigration-themed Phishing Attack Uncovered

Industrial Sector Sees Increase in Ransomware Attacks

International travelers targeted in immigration-themed phishing campaign

Judge Approves $7 Million Brightline Data Breach Settlement

Kaspersky Issues Warning on Valentine’s Day Scams and Phishing Traps

Kimsuky Phishing Scheme Impersonates South Korean Officials, Leverages Microsoft PowerShell

Leveraging AI to detect and prevent ransomware attacks

Lines Between Nation-State and Cybercrime Groups Disappearing

Love in the digital age: Avoiding Valentine’s Day scams, phishing, data privacy threats

Massive IoT Data Breach Exposes 2.7 Billion Records, Including Wi-Fi Passwords

Massive online data breach sees 2.7 billion records leaked - here's what we know

Michigan’s Sault Tribe Impacted by Ransomware

Microsoft Uncovers ‘BadPilot’ Campaign as Seashell Blizzard Targets US and UK

More DeFi projects run into security issues, negotiations with a hacker begin

More sanctions imposed against Russians over Medibank Private cyber attack

New Phishing Attacks Abuses Webflow CDN & CAPTCHAs To Steal Credit Card Details

New Phishing Campaign Targets The X Accounts of Politicians, Tech Companies, Cryptocurrency, And More

New Phishing Kit Bypasses Two-Factor Protections

North Korea Targets Crypto Devs Through NPM Packages

North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks

North Korean hackers spotted using ClickFix tactic to deliver malware

Northern Ireland: Enniskillen man in court on PSNI data breach charge

Northern Ireland: Men accused of New IRA activity relating to PSNI data breach

Northern Ireland: Pair charged over alleged New IRA activity after PSNI data breach

Northern Ireland: Pair in court over alleged New IRA activity relating to PSNI data breach spreadsheets

Northern Ireland: Two men appear in court accused of possessing information from PSNI data breach

OmniGPT allegedly suffers massive data breach, exposing 30,000 users

Over 3 million Fortune 500 employee accounts compromised since 2022

Palo Alto Firewall Flaw Exploited in RA World Ransomware Attacks

Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software

PAN-OS authentication bypass hole plugged, PoC is public (CVE-2025-0108)

Papua New Guinea’s Internal Revenue Commission hit in major cyber attack but public only told of ‘system outage’

Phishing campaign exploits search engines to steal credit card info

Phishing emails are evolving - AI may be the answer to stopping them

Phobos ransomware, four hackers arrested accused of stealing $16 million

Powerschool discloses major data breach

Prizm Media Announces Data Breach Stemming from Unauthorized Access to Company Email Account

“Puppygirl Hacker Polycule” Leaks Over 8,500 Privatized Police Files and Training Manuals

RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset

Ransomware Attacks Costing Manufacturers $1.9M/Day in Downtime

Ransomware up fourfold as threats get more complex

Ransomware, AI risks, and malware: Acronis report highlights growing cyberthreats in H2 2024

Researchers get $10K for disclosure of YouTube flaw that exposed billions of user emails

Romance Baiting Losses Surge 40% Annually

Russia deploying cybercriminals to support war in Ukraine

Russian Seashell Blizzard Enlists Specialist Initial Access Subgroup to Expand Ops

Sandworm APT’s initial access subgroup hits organizations accross the globe

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

Seashell Blizzard hacker group escalating attacks on critical infrastructure, Microsoft warns

Sextortion kits fuel the great crypto heist

Spyware maker caught distributing malicious Android apps for years

Storm-2372 conducts device code phishing campaign

Study Finds Nearly Half of Organizations Suffered a Third-Party Data Breach

Texas man sues Packers over pro shop data breach

Texas man suing Green Bay Packers over Pro Shop website data breach

The UK’s secret iCloud backdoor request: A dangerous step toward Orwellian mass surveillance

Threat Actors Exploiting DeepSeek’s Popularity To Deploy Malware

Unguarded database spills 440M personal records

Unimicron Purportedly Subjected to Sarcoma Ransomware Attack

Unusual attack linked to Chinese APT group combines espionage and ransomware

US frees jailed Russian cybercriminal as Trump builds bridges with Moscow

US, Australia, and UK to sanction key infrastructure that enables ransomware attacks

US, UK, Australia impose sanctions on Russian host Zservers

Valve removes Steam game that contained malware

whoAMI attacks give hackers code execution on Amazon EC2 instances

zkLend’s $9M Ethereum Heist: Can a Bounty Save the Stolen Funds?

12th February

1 in 3 Indians faced cyber-attacks in 2024, AI aided hackers

4 Phobos Ransomware-Linked Russians Arrested in Europol and Eurojust Crackdown

8Base ransomware group leaders arrested in European law enforcement operation

8Base ransomware members snared in global police crackdown

10 common dangers VPNs won't protect you from online - and how to avoid them

20 Million ChatGPT Accounts Allegedly Stolen and Sold on Hacker Marketplace

A Hacker Group Within Russia’s Notorious Sandworm Unit Is Breaching Western Networks

Acronis Cyberthreats H2 2024 Report: Ransomware and AI are a dangerous combination

Acronis Cyberthreats Report Shows MSPs are Targets

Alberta privacy commissioner responds to PowerSchool data breach affecting students and educators

Alleged Kraken Ransomware Hack Denied by Cisco

Apple Confirms ‘Extremely Sophisticated’ Exploit Threatening iOS Security

Apple Patches Security Flaw That Allowed Access to Locked Devices

Arizona Woman Admits to Running Laptop Farm for North Korean IT Workers, Faces Up to 9 Years in Prison

At least 189 Carousell, Facebook users lost over $303,000 to phishing scams since January

AUKUS members sanction Medibank hacker and LockBit infrastructure provider

AultCare Announces Data Breach Affecting Employer-Sponsored Health Plan Participants

Australia suffered a cyber attack every second in 2024, 47 million data breaches

BadPilot network hacking campaign fuels Russian SandWorm attacks

Btmob RAT: A New Evolution of Android Malware Targets Users via Phishing Sites

Check Point Uncovers Valentine’s Day Cyber Scams

CHERI Security Hardware Program Essential to UK Security, Says Government

China tops global data breach rankings in 2024, experts warn

CISA, experts urging users to patch new Windows zero-days: “test and deploy quickly”

Cisco Continues to Deny Kraken Ransomware Attack

Cisco Says Ransomware Group’s Leak Related to Old Hack

Cl0p Ransomware Hides Itself on Compromised Networks After Exfiltrating the Data

Crypto boom brings malware surge: how USBs are used to hijack devices

Cyberattack shuts down Upper Peninsula's Kewadin Casinos, tribal operations

Cybercrime evolving into national security threat

Cybercrime surges as global threat to national security

Cybercriminals Exploit Valentine’s Day with Romance Scams, Phishing Attacks

DeepSeek may face further regulatory actions

DeFi Platform zkLend Hit by Hacker – $900K Whitehat Bounty on the Table

Deloitte Pays Rhode Island $5 Million to Aid Recovery From Ransomware Attack

Don't ignore Microsoft's February Patch Tuesday - it's a big one for all Windows 11 users

Europol arrests four Russians in ransomware crackdown

Facebook Users Beware: Thousands Hit by New Phishing Scam

Fewer than one in three Chrome users have ‘Enhanced Security’ enabled

Fog ransomware group claims January hack of the University of Notre Dame Australia

Food and Ag-ISAC cyber threat report provides actionable intelligence on cyber threats, ransomware tactics

Fortra's 2025 cybersecurity survey: key risk findings

Four Russian nationals behind 8Base ransomware arrested, says Europol

Global Operation Shuts Down 8Base Ransomware Network

Google Chrome’s enhanced protection now provides safe browsing against phishing

Google fixes flaw that could unmask YouTube users' email addresses

Hacker allegedly puts massive OmniGPT breach data for sale on the dark web

Hacker claims access to 20 million-plus ChatGPT access codes: What ChatGPT users should do right away

Hacker claims to be selling credentials of 20 million OpenAI accounts

Hacker Pleads Guilty in Crypto-Related SEC X Account Breach

Hackers behind US ransomware attacks arrested in Thailand

Hackers clash over Doxbin lost account access

Healthcare Sector Sees Spike in Cyberattacks

Heartbreak hackers: Valentine’s day scams on the rise

Heartland Bank Sends Data Breach Letters Following Recent Email Data Security Incident

Holding the Tide Against the Next Wave of Phishing Scams

House Republicans launch group for comprehensive data privacy legislation

How crypto scammers are exploiting celebrities to drain your wallet

How Threat Actors Industrialised Cybercrime in 2024

How to outsmart ransomware and build resilience within your organisation

Huge Christmas data breach - 14 million shipping records leaked, putting shoppers at risk

Is Automation Fuelling a New Era of Cyber-crime?

It’s time to secure the extended digital supply chain

Ivanti fixes three critical flaws in Connect Secure & Policy Secure

Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now

Justice Department Indicts Two Russians for Running Ransomware Cybercrime Operation

KeyBank Sends Data Breach Letters Following Incident at Wong Fleming, P.C.

“Largest data breach in US history”: Three more lawsuits try to stop DOGE

Major Players in Phobos and 8Base Ransomware Operations Captured in Global Cybercrime Sweep

Massive 1.17TB Data Leak Exposes Billions of IoT Grow Light Records

Massive IoT Data Breach Exposes 2.7 Billion Records

Medibank link emerges in multi-country action against ZServers

Medical Data Leak: 279K Files Exposed in Ransomware Attack

Michigan casino chain forced to shut down after ransomware attack

Microsoft Fixes Another Two Actively Exploited Zero-Days

Microsoft Patch Tuesday for February Includes Two Zero Days Under Attack

Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries

Microsoft's Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation

Natures Organics confirms Medusa ransomware attack

New Era Life Insurance Provides Notice of Data Breach to Policyholders, Beneficiaries, Agents, and Employees

New phishing campaign exploits immigration arrival card process to steal personal data

New UK sanctions target Russian cybercrime network

North Korean hackers dupe targets into typing PowerShell commands as admin

North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack

North Korean hackers Kimsuky exploiting the oldest critical vulnerability – the user

OmniGPT data breach exposes 34 million chat messages across six countries

Online Threats Are Rising - Here’s Why Companies Must Improve Their Cybersecurity

Papua New Guinea's Internal Revenue Commission hit in major cyber attack but public only told of 'system outage'

Patch Tuesday: Microsoft Fixes 63 Bugs with 2 Zero-Days

Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws

Ransomware attack disrupting Michigan's Sault Tribe operations

Ransomware attack on Memorial Hospital and Manor impacted over 120,000 patients

Ransomware gangs shifting tactics to evade enterprise defenses

Ransomware isn't always about the money: Government spies have objectives, too

Ransomware Payments Fall 35%

Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability

Rhode Island House bill would expand notification obligations after data breach

Rise in phishing attempts targeting Texas, US toll customers

Romance Scams Cost Americans $697.3M Last Year

Russia’s Zservers sanctioned by US, UK, and Australia for serving crypto ransomware LockBit

Russian cybercrime group behind $16M Phobos ransomware attacks busted

Sanctions Target Russian Host for Role in Ransomware Attacks

Sarcoma ransomware claims breach at giant Printed Circuit Board maker Unimicron

Sault Sainte Marie Tribe hit by ransomware attack

Scope of student, school staff data breach under investigation. Some Idaho schools compromised

Security Detection Tech Failing, Say Cyber Leaders in Regulated Industries

Silent breaches are happening right now, most companies have no clue

Spectrum Medical Imaging warns patients medical data exposed following ransomware attack

Starknet-based zkLend seeks return of over $8 million in ETH stolen from platform

Subgroup of Russia’s Sandworm compromising US and European organizations, Microsoft says

Surge in attacks exploiting old ThinkPHP and ownCloud flaws

Tarrant, Alabama, Wards Off Ransomware Attack on City Computers

Thai Police Arrest Russian Hackers Behind Swiss Ransomware Attacks

Thailand arrests Russian hackers wanted in US

U.S., Australia, and UK Join Forces to Target Russian Bulletproof Hosting Provider Supporting LockBit Ransomware

UAC-0006’s new phishing campaign targets Ukraine’s PrivatBank

Ukraine's latest cyber attack disrupts Russian oil and gas infrastructure

Understanding the Growing Threat of Deepfake Phishing Attacks

United States, Australia, and United Kingdom Crack Down on Key Cybercrime Infrastructure Supporting Ransomware Attacks

University of the Bahamas struck by a major ransomware attack

Unmasking the Crypto Ghost: Will the ZkLend Hacker Return Millions or Face the Law?

Uruguayan government investigates dimensions of cyber-attack

US reportedly releases Russian cybercrime figure Alexander Vinnik in prisoner swap

US, Australia, UK Sanction Key Infrastructure Enabling Ransomware Attacks

US, UK, and Australia sanction Russia-based Zservers for enabling LockBit ransomware

US, UK and Australia Sanction Russian Bulletproof Hoster Zservers

US, UK, Australia sanction Russian cyber firm Zservers over ransomware attacks

US, UK Sanction Russian Zservers Over LockBit Ransomware

US, UK, and Australia sanction Zservers for supporting LockBit ransomware operations

Warning: fake Etsy invoices sent via legitimate domains

Washington County Schools: More than 30K files impacted by PowerSchool data breach

West London Council Faces 20,000 Cyberattack Attempts Every Day Amid Growing Threats

ZeroLogon Ransomware Exploits Active Directory Vulnerability To Gain Domain Controller Access

ZeroLogon Ransomware Exploits Windows AD to Hijack Domain Controller Access

zkLend Exploited for $4.9M in ETH, Team Appeals to Hacker with 10% Offer

ZkLend hack sees $9.5M exploit, offers hacker 10% bounty for return

zkLend loses $5 million in hacker attack

zkLend loses $9.5M in crypto heist, asks hacker to return 90%

11th February - Safer Internet Day

4 Ways to Keep Multi-Factor Authentication (MFA) From Becoming too Much of a Good Thing

8Base ransom gang members arrested, operations seized by international authorities

8Base ransomware group leaders arrested, leak site seized

8Base Ransomware Site Seized, Phobos Suspects Arrested in Thailand

8base ransomware site taken down in global police operation

88% of UK businesses say cyber fraud drove payment fraud

Accendo Insurance Company Affected by Business Associate Data Breach

Akira Ransomware Leads The Number of Ransomware Attacks For January 2025

Alabama Hacker Admits Role in SEC X Account Breach

Another person targeted by Paragon spyware comes forward

Apple fixes security flaw allowing third-party access to locked devices

Apple fixes zero-day flaw exploited in “extremely sophisticated” attack (CVE-2025-24200)

Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit

Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update

Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence

Authorities arrest four suspected 8base ransomware operators in global takedown

Authorities Disrupt 8Base Ransomware, Arrest Four Russian Operators

Authorities Seize 8Base Ransomware Dark Web Site, Arrest Four Key Operators

Authorities Seize 8Base Ransomware Infrastructure, Arrest Four Russians

Authorities seize Phobos and 8Base ransomware servers, arrest 4 suspects

Avery Discovers Credit Card Scraper Following Ransomware Attack

Beware of Fake Salesforce Emails Deceiving Businesses and Users

California students take legal action against US Education Department over massive data breach

Canada’s privacy watchdog to investigate PowerSchool student information data breach

Canada's privacy czar launches investigation into student information data breach

Cisco dispels Kraken data breach claims, insists stolen data came from old attack

Cisco Rejects Kraken Ransomware’s Data Breach Claims

CloudSEK Uncovers ClickFix Phishing Campaign Targeting Users

CloudSEK Uncovers DeepSeek-based Phishing Campaign Targeting AI Users

Cyber attack on University Diagnostic Medical Imaging impacted over 135,000 patients

Cyberattacks targeting medical organizations up 32% in 2024

Cybercrime leaders arrested in international ransomware crackdown

Data Security Breach Forces Kewadin Casinos to Halt Operations in Upper Michigan

DDoS Attack Volume and Magnitude Continues to Soar

Delta Health 'data breach' what you need to know

FBI, Department of Justice (DOJ) make major arrests of Russians allegedly involved in massive ransomware group Phobos

FBI, Europol, and NCA Take Down 8Base Ransomware Data Leak and Negotiation Sites

Feds Unmask Russian Duo Behind Ransomware Epidemic Threatening U.S. Cybersecurity

Fortinet discloses second firewall auth bypass patched in January

Four Russians Arrested in Major Hacking Operation

Four Russians arrested in Phobos ransomware crackdown, Europol says

Gcore DDoS Radar Reveals 56% YoY Increase in DDoS Attacks

Gcore Radar report reveals 56% year-on-year increase in DDoS attacks

Global Phishing Campaign Targets Facebook Accounts

Grubhub discloses data breach

Hacker confesses to role in SIM swapping attack on SEC X account

Hacker found selling 20 million OpenAI credentials; AI firm claims no breach

Hacker of SEC’s X account sentenced after admitting guilt

Hacker pleads guilty for SEC X account breach that made fake Bitcoin ETF post

Hackers leak cop manuals for departments nationwide after breaching major provider

Hackers Newly Registering Valentine’s Day Themed Domains for Stealthy Cyber Attacks

Here’s how many ransomware attacks impacted agriculture in 2024

Hospital Sisters Health System (HSHS) notifies nearly 900K patients about a 2023 data breach

International Crackdown: Phobos Ransomware Network Dismantled

International Crackdown on Russia-Based Zservers Targets Ransomware Threats

International Crackdown on Russian Ransomware Provider

International law enforcement takes down 8Base ransomware gang

Justice Department charges 2 Russians with operating cybercrime group using ransomware

Kewadin Casino among Sault Tribe systems impacted by ransomware attack

Key figures behind Phobos and 8Base ransomware arrested in international cybercrime crackdown

Law Enforcement Operation Takes Down 8Base Ransomware Group

Lawsuit accuses Trump administration of violating federal information security law

LockBit crackdown continues with Zservers sanctions

LockBit’s woes continue as gangs’ helpers sanctioned

Malicious actors exploiting exposed ASP.NET keys to deploy malware

Massive Facebook Phishing Attack Targets Hundreds of Companies for Credential Theft

Michigan Upper Peninsula tribe hit with ransomware attack, gaming at 5 casinos shut down

Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws

Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391)

Millions exposed as 14 Million shipping records accidentally leaked

New Chinese Hacking Campaign Targets Manufacturing Firms to Steal IP

New Ransomware Gangs Drive Surge in Attacks

New technology could quash QR code phishing attacks

New UK sanctions target Russian cybercrime network

New York Blood Center hit by ransomware, blood services disrupted

New Zealand: Government Communications Security Bureau (GCSB) report reveals sophisticated attacks, boosts cyber resilience amid rising espionage and ransomware

Number of active dark web ransomware groups up 38 percent in 2024

OmniGPT AI Chatbot Alleged Breach: Hacker Leaks User Data, 34 Million Messages

Online scams and phishing: Five questions that might save you from being caught

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials

OpenAI Was Not Breached, Say Researchers

Operation Phobos Aetor: Police dismantled 8Base ransomware gang

Over 120K impacted by Memorial Hospital & Manor ransomware attack

Phishing evolves beyond email to become latest Android app threat

PowerSchool breach exposed special education status, mental health data and parent restraining orders

Progress Software Patches High-Severity LoadMaster Flaws Affecting Multiple Versions

Ransomware attack disrupts gaming, offices, services for Sault Sainte Marie Tribe of Chippewa Indians

Ransomware attack halts Sault Sainte Marie Tribe departments and businesses temporarily

Ransomware gang 8Base members arrested, darknet site seized

Ransomware Gangs Increasingly Prioritize Speed and Volume in Attacks

Ransomware Operator 8Base Taken Apart Following International Effort

Ransomware suspects arrested in cybercrime crackdown

Ransomware’s risk to businesses may be growing more complex

Rocky View Schools: PowerSchool data breach exposed records from 2012

Russian bulletproof hosting service Zservers sanctioned by US for LockBit coordination

Russian cybercrime network targeted for sanctions across US, UK and Australia

Russian military hackers deploy malicious Windows activators in Ukraine

Russian ransomware hackers arrested in Phuket

Sanction Zservers for Facilitating Ransomware Attacks

Sanctions Imposed on Lockbit Ransomware's Russian Hosting Provider

Sault Sainte Marie Tribe of Chippewa Indians Battles Ransomware Attack Impacting Casinos and Health Services

Sault Tribe provides updates on health services following cyber attack

Searchlight Cyber Report Shows 38% Year-on-Year Increase in Active Dark Web Ransomware Groups

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now

Students Sue U.S. Department of Education Over Alleged Data Breach Involving Elon Musk and DOGE

SystemBC RAT Now Targets Linux, Spreading Ransomware and Infostealers

Taipei’s Mackay Memorial Hospital faces ransomware attack

Takedown of 8Base Ransomware Crew in Thailand

TD Bank data breach: Suit seeks $5 Million after customer info was leaked

Thai Police Bust 4 Suspected 8Base Ransomware Group Members

The PowerSchool data breach is now under a Canadian privacy investigation

Third-Party Data Breach at ArdyssLife Affects an Unknown Number of Consumers

This Tata Company Was Hit By Ransomware; Recovery Has Been Completed

Threat Actors Exploit ClickFix to Deploy NetSupport RAT in Latest Cyber Attacks

Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining

Trump's first sanctions? US, UK and Australia impose restrictions on Russian cyber group

Two Russian nationals arrested in takedown of Phobos ransomware infrastructure

U.S. Justice Department Cracks Down on Phobos Ransomware Group

U.S. sanctions bulletproof hosting provider for supplying LockBit infrastructure

U.S., Australia and Britain sanction Zservers for supporting ransomware

U.S., U.K. and Australia Sanction Russian Cyber Firm Zservers Over Ransomware Attacks

UK announces sanctions against Russian cyber crime network

UK Cracks Down on Russian ZSERVERS Network Acting as Launchpad for Cyber Attacks

UK, US, Australia blast holes in LockBit's bulletproof hosting provider Zservers

Understanding cyber attacks: how to protect your optometry practice

University of the Bahamas struck by a major ransomware attack

US indicts 8Base ransomware operators for Phobos encryption attacks

US sanctions LockBit ransomware’s bulletproof hosting provider

US, UK, Australia sanction Russian ransomware actors

US, UK, Australia target Russia-based Zservers over Lockbit ransomware attacks

Weak encryption and privacy risks found in DeepSeek’s Android app

10th February

2.1TB of Data Allegedly from Israel Police Systems Published on the BreachForums

3 in 5 organizations expect cyber attack this year

4 Arrested as Police Dismantle 8Base Ransomware, Seize Dark Web Sites

8base ransomware site seized, 4 suspects arrested

8Base ransomware site taken down as Thai authorities arrest 4 connected to operation

29% of school systems report a rise in student-to-student security incidents

Accused Russian ransomware hackers arrested in Phuket

AI’s Role in Cutting Costs and Cybersecurity Threats in Logistics

Alleged hacker behind fake SEC post could forfeit $50K in plea deal

Apple and Google take down malicious mobile apps from their app stores

Apple fixes zero-day exploited in 'extremely sophisticated' attacks

As Gmail Attack Warnings Surge - Do Not Switch To New Email App

Attackers Change Tactics as Ransomware Payoffs Decline

Attackers Use 2.8 Million Devices in Major Brute Force Attack

Australians Hit With One Cyber Attack Every Second in 2024

BadIIS Malware Exploits IIS Servers for SEO Fraud

British military drops basic training to fast track recruitment of ‘cyber warriors’

Catholic Charities of Southern Nevada Reports Data Breach Affecting the Personal Info of 73,822 People

Central African Republic ‘CAR’ memecoin info pages plagued with phishing links

CERT-In Warns of High-Severity Vulnerabilities in Mozilla Firefox and Thunderbird

CISA Flags Critical Trimble Cityworks Vulnerability (CVE-2025-0994) in KEV Catalog

Cisco Data Breach – Ransomware Group Allegedly Breached Internal Network

Cisco Hacked – Ransomware Group Allegedly Breach Internal Network & Gained AD Access

City of Tarrant fends off ransomware attack on city computers, police say

City of Tarrant shut down due to ransomware attack

Cyberattack disrupts Lee newspapers' operations across the US

DeepSeek’s R1 reportedly ‘more vulnerable’ to jailbreaking than other AI models

Department of Government Efficiency (DOGE) inputs federal data to AI, cyber leaders discuss implications

DragonRank Exploits IIS Servers with BadIIS Malware for SEO Fraud and Gambling Redirects

Econet denies alleged customer data breach

Econet denies alleged data breach

Econet Wireless Addresses Data Breach Allegations, Launches Cybersecurity Investigation

Econet Wireless refutes claims of massive data breach amid customer concerns

Egyptian hacks Israeli TV channel. What's the truth?

Engineering giant IMI reveals a major cyber attack on its internal network

Europol Warns Financial Sector of “Imminent” Quantum Threat

Experts Dismayed at UK’s Apple Decryption Demands

Faulty phishing site blocking disrupts Cloudflare services

FBI cautions: Artificial intelligence-based phishing attacks have increased on Gmail accounts

Four cyber security myths that could sink your business in 2025

Gallagher settles lawsuit over major data breach

Georgia Hospital Alerts 120,000 Individuals of Data Breach

Global police operation seizes 8base ransomware gang leak site

Gmail AI Phishing Attacks Skyrocket: FBI Warns Users to Take Action Now Before It's Too Late

Gmail Users Warned About the “Most Sophisticated Gmail Attacks Ever” AI-Powered Phishing Attack

Gmail users warned as phishing attacks become more advanced: Do Not Click on Anything

Hacker pleads guilty to SIM swap attack on US SEC X account

Hacker targets Indonesian banks with ransomware threats

Hacker who hijacked SEC’s X account pleads guilty, faces maximum five-year sentence

Hackers Exploit Google Tag Manager to Deploy Credit Card Skimmers on Magento Stores

Hackers stole customers' personal data from Rivers Casino's systems

Handala Hackers Claim Massive Data Breach on Israeli Police, Leak 350,000 Files

Hewlett Packard Enterprise (HPE) notifies employees of data theft following Russian state-sponsored cyberattack

Hospital Sisters Health System says cyber attack impacted over 880,000 patients

How Deepseek’s security failures shape the future of cyber defense on AI

Huge cyber attack under way - 2.8 million IPs being used to target VPN devices

Karnataka Police Investigates Cyber Attack on Kaveri 2.0 Property Registrations

Lawmakers propose DeepSeek ban on government devices

London council hit by 20,000 cyberattacks every day

Malicious Machine Learning (ML) models found on Hugging Face Hub

Media giant Lee Enterprises confirms cyberattack as news outlets report ongoing disruption

Most Sophisticated Gmail Attacks Ever - FBI Says: Do Not Click Anything

NetSupport RAT Grant Attackers Full Access to Victims Systems

New OG Spoof Toolkit Manipulates Social Media Links for Cybercrime

Newport man reveals shocking NHS data protection breach

Newspaper conglomerate Lee Enterprises says cyberattack disrupting print editions

Notable Ransomware Statistics and Facts

Out of 6,000 non-IPA requests, Apple provided UK with iCloud data only four times since 2020

Over 2 million IPs bombard edge network devices in ongoing brute force login attack

Over 12,000 KerioControl firewalls exposed to exploited RCE flaw

Phishing to QR code scam: Key steps to avoid some common UPI-related frauds

Police arrests 4 Phobos ransomware suspects, seizes 8Base sites

PowerSchool data breach exposes some Rocky View Schools records dating back to 2012

Predictive and Generative AI Solutions in Cybersecurity Automation

Quishing via QR Codes Emerging as a Top Attack Vector Used by Hackers

Ransomware extortion rose by 46% in Q4 2024

Ransomware Groups Made Less Money in 2024

Ransomware Industrialization Impacts Security Ops

Ransomware Payments Dropped 35% in 2024 as Over Half of Victims Refused to Pay Cybercriminals

Ransomware Payments Dropped By 35%, As Victims Refusing To Pay

Ransomware Payments Plummet Despite Catastrophic Hacks in 2024

Ransomware Payments Plunge 35% as More Victims Refuse to Pay

Reducing ransomware recovery costs in education

Russia disappearing from the internet: cloaking digital presence brings strategic cyberwarfare advantage

San Francisco-Marin Food Bank says hackers stole 60,000 customers' personal details

Scammers Use Fake Facebook Copyright Notices to Hijack Accounts

Scotland: Health board remains 'vigilant' over cyber attacks

Security validation: The new standard for cyber resilience

Sky ECC encrypted service distributors arrested in Spain, Netherlands

South African Weather Service hard at work to restore systems after cyber attack

Students suing Education Department worry data Department of Government Efficiency (DOGE) has accessed could be used for immigration enforcement

TeamViewer's CISO on Thriving After Russian Cyber-Attack

The Evolving Ransomware Threat: Challenges and Innovations

UK Military Fast-Tracks Cybersecurity Recruitment

UK’s secret Apple iCloud backdoor order is a global emergency, say critics

US: Man Gets 20 Years for $37 million Crypto Heist

Was Cisco Just Hit By Ransomware? What Happened And What To Do

‘We Don’t Negotiate with Terrorists’: Ransomware Strategy in Modern Cybersecurity

XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells

Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities