Editor's Message

Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and PRiSM celebrated it's 2nd anniversary. Little did I know when I started both of these ventures just how much an impact they would have on my life and I'd like to thank each and everyone of you who have supported me over the years, with a special thanks to those individuals who have kindly shared their knowledge with me, and continue to do so. Thanks again for your support. Stay safe. :)


“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington DC



Monday, 3 March 2025

Data Breaches Digest - Week 10 2025

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 3rd March and 9th March 2025.


9th March

1inch Hacker Returns $5 Million Stolen Funds After Negotiation

Cyber attack on arthritis treatment provider impacted 37,000 patients

Cyber attack on rehabilitation centre impacted about 25,000 patients

Ghost preparers and spear phishing: Here’s the tax scams to avoid

Hacker returns $5 million stolen funds to 1inch after negotiation

Japanese Telecom Giant NTT Suffers Data Breach, Impacting 18,000 Companies

Medusa ransomware group claims it compromised System Pavers’ internal systems

New data breach exposes thousands of Chicago Public Schools (CPS) students’ info

‘Penny drop’ phishing empties bank accounts

Phishing alert: Beware of suspicious emails or texts from Netflix scammers

Ransomware attack on Toronto Zoo compromised visitor data dating back 23 years

US cities warn of wave of unpaid parking phishing texts

8th March

Chicago Public Schools warns families of data breach including student information

Developer guilty of using kill switch to sabotage employer's systems

FBI hunts hacker-for-hire cabal as Justice Department announces $10 million reward for info on cybercriminals targeting U.S and China critics

Financial sector risks data leaks as employees use personal apps and AI

Hackers Are Stealing Gmail and Microsoft 365 Accounts with a New Phishing Scam

Melbourne phishing kit user sentenced after stealing $34,990

Mission residents worry about cyber attack

PayPal Attack Warning - Dangerous Gmail Invoice Bypasses Email Security

Retail Pharmacy Giant Handing $6,800,000 To Customers After Hackers Trigger Massive Data Breach

Undocumented commands found in Bluetooth chip used by a billion devices

USAA settles $3.25 million lawsuit over 2021 data breach affecting 22,000 customers

What Happens When Push Notifications Go Malicious?

YouTubers extorted via copyright strikes to spread malware

7th March

18,000 Organizations Impacted by NTT Communications Corporation (NTT Com) Data Breach

A Chinese espionage group is targeting the IT supply chain

Akira Ransomware: The New Threat Using Webcams as Entry Points

Akira Ransomware Targets Windows Servers via RDP and Evades EDR with Webcam Trick

Alleged Data Breach at French Insurance Firm RCDPRO

Amerman Ginder Files Official Notice of Data Breach

Berkeley Research Group suffers cyber attack, sources say

Beware of Fake Tax Claims that Tricks Users to Steal Over $10,000 From Victims

BianLian ransomware wanna-bes are targeting business execs using the actual mail, FBI says

Bosowa Berlian Motor Allegedly Breached

Bug affecting PHP scripts demands ‘immediate action from defenders globally’

Bybit crypto hack: SAFE Wallet reveals how it happened

Can AI-powered gamified simulations help cybersecurity teams keep up?

Chicago Public Schools alerts families to data breach exposing student information

Chicago Public Schools (CPS) data breach: Cyberattack exposed personal information of current, former students

Chicago Public Schools data breach: What to know, how it affects you

Chicago Public Schools hit by massive data breach. What do you need to know?

CISA, FBI warn of BianLian mail scam targeting executives with $500k ransom note

City of Mission to host emergency meeting following cyber attack

Cloud security gains overshadowed by soaring storage fees

Combating the Invisible Threat of In-Memory Cyber-Attacks

Critical bug turns Kibana into potential malware host

Cybercriminals go old school with snail mail ransomware scheme

Data breach at Japanese telecom giant NTT hits 18,000 companies

Elastic Issues Urgent Update for Critical Kibana Vulnerability Exposing Remote Code Execution Risk

EncryptHub’s OPSEC Failures Expose Its Malware Operation

Fake BianLian Ransom Demands Sent via Physical Letters to U.S. Firms

FBI Issues Urgent Warning About Data Extortion Scam Targeting Corporate Executives

FBI warns of fake ransomware mail targeting senior execs - here’s what to look for

FBI Warns of New Snail Mail Scam Targeting Execs

FIN7, FIN8, and Others Use Ragnar Loader for Persistent Access and Ransomware Operations

“Free” movie streams expose a million pirates to malware and data theft

Got a suspicious E-ZPass text? It's a trap - how to spot the scam

Hackers expose information for 700,000 current and former Chicago students, district says

Hackers Leak Sensitive Data from Elite Bronx Private School After Ransomware Attack

Hackers spotted using unsecured webcam to launch cyberattack

Home appliance company Presto says cyberattack causing delivery delays

Indian Sales & Logistics Platform Allegedly Breached

Internet Corporation for Assigned Names and Numbers (ICANN) regains control of X account after phishing attack

Invoice or Impersonation? 36.5% Spike in Phishing Attacks Leveraging QuickBooks’ Legitimate Domain in 2025

Japanese telco giant NTT Communications (NTT Com) says hackers accessed details of almost 18,000 organizations

Lee Enterprises: Cyber-attack could impact ‘financial condition’

Majority of Orgs Hit by AI Cyber-Attacks as Detection Lags

Malicious use of Cobalt Strike down 80% after crackdown, Fortra says

Media Giant Lee Enterprises Confirms Ransomware Attack, Qilin Takes Responsibility

Medusa ransomware activity ramps up, report reveals

Medusa ransomware cases surge as Spearwing hackers expand attacks

Medusa Ransomware Claims 40+ Victims in 2025, Confirmed Healthcare Attacks

Microsoft Dismantles Malvertising Scam Using GitHub, Discord, Dropbox

Microsoft Warns of Malvertising Campaign Infecting Over 1 Million Devices Worldwide

More details emerge about the colossal Bybit hack: it all began with a single laptop

Navigating Crypto Without Sacrificing Your Privacy

New scam involves fake BianLian ransomware notes

North Korean hackers deploy Qilin ransomware in new attacks

North Korean hackers join Qilin ransomware gang

North Korean Hackers Launder $1.5 Billion Largest Crypto Heist In History

North Korean Moonstone Sleet Uses Creative Tactics to Deploy Custom Ransomware

PHP-CGI RCE Flaw Exploited in Attacks on Japan's Tech, Telecom, and E-Commerce Sectors

Qilin admits Ukrainian foreign affairs ministry breach

Ransomware Attacks Set Records in February

Ransomware Groups Favor Repeatable Access Over Mass Vulnerability Exploits

Ransomware poseurs are trying to extort businesses through physical letters

Ransomware’s favorite Russian crypto exchange seized by law enforcement

Renton School District Victim of Ransomware attack

Rite Aid to pay data breach victims up to $10,000

Safe{Wallet} Confirms North Korean TraderTraitor Hackers Stole $1.5 Billion in Bybit Heist

Sanctioned Russian Crypto Exchange Garantex Seized, Operators Charged With Money Laundering

Sarbonne University in Paris hit claimed by AI-powered Funksec ransomware

Southeast Series of Lockton Companies Announces Data Breach Affecting an Unknown Number of Consumers

Survey highlights rise of AI, multichannel, personality identity attacks

Tax scams are getting sneakier - 10 ways to protect yourself before it's too late

Telegram Android flaw enables hackers to disguise malware as videos

Texas border city declares state of emergency after cyberattack on government systems

This Malicious PyPI Package Stole Ethereum Private Keys via Polygon RPC Transactions

Two US Army soldiers charged with selling military secrets to China

U.S. Secret Service Seizes Russian Garantex Crypto Exchange Website

Uncle Sam charges alleged Garantex admins after crypto-exchange web seizures

Unpatched Edimax IP camera flaw actively exploited in botnet attacks

US charges admins of Garantex for allegedly facilitating crypto money laundering for terrorists and hackers

US charges Garantex admins with money laundering, sanctions violations

US cyber intelligence vet slams alleged order to stop operations against Russia

US Cyber Ops pause may boost Russian cybercrime, experts warn

US seizes $23 million in crypto linked to LastPass breaches

Vulnerable webcam leveraged in clandestine Akira ransomware attack

Warning: Ransomware Threats Increased Fourfold in 2024

YouTube Alerts Creators About Phishing Emails Targeting Login Credentials

YouTube Warns of Phishing Emails Attacking Creators to Steal Login Credentials

6th March

60% of IT professionals are experiencing burnout

88% of organizations are increasing fraud team headcounts

89% of enterprise AI usage is invisible to the organization

Albion Online forum users targeted in EFF-themed phishing scan

Alleged TP-Link Exploit for Sale on Dark Web

Attackers Target Japanese Firms with Cobalt Strike

Australia: Doctors warned of cyber security threats following IVF data breach

Bitcoin and Cybersecurity: Protecting Digital Assets in a Decentralized World

Black Basta’s Notorious Tactics and Techniques Exposed in Leaked Intel

Businesses Are Receiving Snail Mail Ransomware Threats, But It's a Scam

Chinese espionage group Silk Typhoon shifts focus to supply chain attacks

City of Mission mayor requests emergency declaration from Governor Abbott due to cyber attack

Cyber Fraud Index: What Are the Biggest Cyber Fraud Risks Facing Your Organization?

Cyber threats escalate as Australian organisations face sophisticated attacks

Cybercrime 'crew' stole $635,000 in Taylor Swift concert tickets

Cybersecurity Job Satisfaction Plummets, Women Hit Hardest

Data at Risk: 96% of Ransomware Attacks Involve Data Theft

Department of Justice (DoJ) Busts Alleged Global Hacking-for-Hire Network of ‘Cyber Mercenaries’

Did you get an E-ZPass text demanding payment? Don't click - it's a scam

DISA Global Faces Class Action After Cyber-Attack

Effectively integrating generative AI into cybersecurity operations

Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution

EncryptHub Deploys Ransomware and Stealer via Trojanized Apps, PPI Services, and Phishing

Ethereum private key stealer on PyPI downloaded over 1,000 times

Exploited VMware ESXi Flaws Put Many at Risk of Ransomware, Other Attacks

Ghost preparers and spear phishing: Here’s the tax scams to avoid

Hacked health firm HCRG demanded journalist ‘take down’ data breach reporting, citing UK court order

Hackers Deploy Advanced Social Engineering Tactics in Phishing Attacks

Hackers Deploy AI Deepfake of YouTube CEO in Credential Theft Scam

Hackers Made $600,000 Selling Stolen Taylor Swift Concert Tickets

How to prevent data leakage in collaboration tools like Slack and Teams

Identifying Cyber Attack Patterns Through Threat Actor Infrastructure Analysis

In Februarу, user losses from crуpto-phishing decreased bу 48%

Israeli medical computer system hit by suspected Iranian cyber incident

IVF Data Breach Sparks Urgent Cybersecurity Warning

Law Firm, County Hit by Major Healthcare Data Breach

Malicious Chrome extensions can spoof password managers in new attack

Malware Infects Linux and macOS via Typosquatted Go Packages

Mass federal layoffs will have a "devastating" impact on cybersecurity, former top US security official says

Mass federal layoffs will hurt cybersecurity, former top US security official says

Massive exposure: 42K machines running VMware ESXi affected by exploited zero-days

Matagorda County nears full recovery following cyber attack

Medusa Ransomware Activity Continues to Increase

Medusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M Ransom

Microsoft says malvertising campaign impacted 1 million PCs

More Healthcare Providers Are Bolstering Cybersecurity Infrastructure, Study Finds

Netflix Scam Increasingly Sophisticated

NHS investigates Medefer data leak: We don’t know how long patient data was exposed, CEO says

NoName057(16) Targets Water Supply System in Spain

Outsmarting Cyber Threats with Attack Graphs

Over 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker Access

Over 37,000 VMware ESXi servers vulnerable to ongoing attacks

Penn-Harris-Madison cyber attack will not affect staff, teacher payday on Friday

Phantom Goblin: A New Threat in Credential Theft and Remote System Access

Phishing campaign uses fake Facebook copyright alerts

Ransomware activity in Q4 reaches highest level

Ransomware Attacks Build Against Saudi Construction Firms

Ransomware attacks threaten rural hospitals

Ransomware gang encrypted network from a webcam to bypass Endpoint Detection and Response (EDR)

Ransomware Group Targets Cancer Clinic, Exposes Sensitive Health Data

Ransomware threat mailed in letters to business owners

Rite Aid Agrees to $6.8M Data Breach Lawsuit Settlement

Rite Aid Settles Data Breach Lawsuit for $6.8 Million

Russia claims Ukraine hacked state youth organizations to recruit minors

Russian crypto exchange Garantex seized by law enforcement operation

Russian crypto exchange Garantex’s website taken down in apparent law enforcement operation

Sanctions on China-Based Hacker and Data Broker

Scammers are Using AI-Videos Featuring CEO For Phishing Attacks, YouTube Warns

SecP0 Ransomware Gang Threatens to Expose Critical Vulnerabilities

SecP0 Ransomware Group Threatens Organizations to Leak Vulnerability Details

Shape-shifting Chrome extensions target wallets, no fix in sight

Shipping labels reveal addresses in major fashion leak

Silk Typhoon Expands Cyber Espionage Tactics to Target IT Supply Chain

Six Critical Infrastructure Sectors Failing on NIS2 Compliance

‘Small subset’ of Fort St. John data stolen in city cyber hack

Some Penn-Harris-Madison students, teachers still affected by ransomware attack

SquareX Unveils Polymorphic Extensions that Morph Infostealers into Any Browser Extension – Password Managers, Wallets at Risk

Suspected Iranian cyber attack on health clinic network used by Israel Defense Forces (IDF)

Tata Technologies Hit by Hunters International Ransomware, 1.4TB Data at Risk

Tata Technologies targeted in ransomware attack, hackers claim 1.4TB data theft

Telegram Android flaw enables hackers to disguise malware as videos

Thousands of public school workers impacted by cyberattack on retirement plan administrator

Threat Actor Claims to Have Internal T-Mobile Contacts

Toronto Zoo ransomware crooks snatch decades of visitor data

Travelers Publishes Cyber Threat Report Highlighting an Increase in Ransomware Activity

Two arrested for stealing Taylor Swift Eras Tour tickets and selling for a $600,000 profit in cybercrime scheme

U.S. Charges 12 Chinese Nationals in State-Backed Hacking Operations

U.S. Sanctions Iranian National Behind Defunct Nemesis Darknet Marketplace

UK quietly scrubs encryption advice from government websites

Up to $75M needed to fix up rural hospital cybersecurity as ransomware gangs keep scratching at the door

US Charges 12 in Chinese Hacker Network, Offers $10M Reward

US Charges Members of Chinese Hacker-for-Hire Group i-Soon

US exposes ‘hacker-for-hire ecosystem’, charges 12 with hacking American agencies for China

US indicts slew of alleged Chinese hackers, sanctions company over spy campaign

US says China operating ‘hacker for hire’ network available for cyberattacks worldwide

US seizes domain of Garantex crypto exchange used by ransomware gangs

US, European law enforcement seize Russian crypto exchange Garantex and indict 2 administrators

USA Offers Reward of Up to Rs 830 Crore for Information Leading to Arrest of Chinese Hacker

Vulnerability in Chaty Pro Plugin Exposes 18,000 WordPress Sites

YouTube Warns Creators of AI-Generated Phishing Scams Impersonating CEO

YouTube warns of phishing video using its CEO as bait

YouTube Warns Users Against Phishing Attempts Through AI-Generated Videos of CEO Neal Mohan

Your mind, hacked: the quantum computing nightmare

5th March

$250,000 Snail Mail Ransomware Threat Warning - What You Need To Know

A Hacker’s Dream: How the UK Could Undo Apple’s Security

Adaptive Cybersecurity: Strategies for a Resilient Cyberspace

Alert: Phishing Attacks Use New JavaScript Obfuscation Technique

Americans Are on High Alert as Data Breach Fears Reach a Breaking Point

¡appa! app leak puts million Argentinians at risk

BadBox malware disrupted on 500K infected Android devices

Bay Cove Human Services suffers data breach

Birch Medical Files Official Notice of Data Breach Following September 2024 Data Security Incident

Black Basta and Cactus attackers gang up on Teams users with new techniques

Broadcom urges clients to update software in response to 3 zero-days

Broadcom urges VMware customers to patch ‘emergency’ zero-day bugs under active exploitation

Brunei Strengthens Cybersecurity: Over 80 Scam Websites and 500 Fraudulent Numbers Blocked

Bybit Hacker Washes $1.4B Crypto in 10 Days

Cactus Ransomware: What You Need To Know

Catalan court says NSO Group executives can be charged in spyware investigation

China-Linked Silk Typhoon Expands Cyber Attacks to IT Supply Chains for Initial Access

Chinese APT Lotus Panda Targets Governments With New Sagerunex Backdoor Variants

Chinese Silk Typhoon Group Targets IT Tools for Network Breaches

CISA Expands Known Exploited Vulnerabilities Catalog with Four Critical Issues

Crypto Losses From Phishing Scams Reduced by 50% in February

Crypto phishing losses decline in February, but high-value scams persist

CTOs fall victim to breaches more often than other C-Suite roles

Cyber operations against Russia halted, cyber leaders remain alert

Cybercriminals now licking stamps and sending extortion demands in snail mail

Cybersecurity threats loom over Florida small businesses: how one company is fighting back

Dark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin America

DeltaPrime Hacker Transfers 310 ETH to Tornado Cash

Eleven11bot Captures 86,000 IoT Devices for DDoS Attacks

Federal cyber firings imperil efforts to stop Chinese hacking campaigns, experts tell lawmakers

Former NSA official says federal worker cuts will have ‘devastating impact’ on cyber and national security

Franklin County Commissioners investigating ransomware attack on computer systems

Genea fertility clinic data published by Termite ransomware gang

Google Introduces New AI-Powered Scam Detection Features for Android

Google launches AI-powered scam detection tools for Android

Google Rolls Out AI Scam Detection for Android to Combat Conversational Fraud

Hackers Exploit Cloud Misconfigurations to Spread Malware

Healthcare facilities in Japan and US targeted by ransomware group

Healthcare organizations facing more sophisticated attacks

Hong Kong Monetary Authority (HKMA) Warns Public of Fraudulent Banking Websites and Phishing Scams

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Identity: The New Cybersecurity Battleground

Investigator says differing names for hacker groups, hackers studying investigative methods hinders law enforcement

Jamaican businesses on high alert as new ransomware threat emerges

Justice Department Backs Election Clerk in 2020 Data Breach Case

Justice Department charges Chinese hackers-for-hire linked to Treasury breach

Leeds United Confirms Cyber-Attack Saw Payment Details Compromised

LinkedIn Phishing Scam: Fake InMail Messages Spreading ConnectWise Trojan

Losses from crypto phishing attacks decreased by nearly 50% in February

Loyola University Maryland Sends Data Breach Letters Following July 2024 Cyberattack

Major ransomware attack sees Tata Technologies hit - 1.4TB dataset with over 730,000 files allegedly stolen

Missouri Department of Conservation (MDC) Responds to Suspicious Cybersecurity Activity with Incident Response Team Activation

National Guard Assisted on Cleveland Municipal Court Cyber Attack

Netflix Issues Warning About Phishing Emails, Scam Texts Impersonating The Platform

Netflix users alert! This scam could drain your bank account

Netflix Users Warning: Scams Aimed at Your Money and Account; This Is How to Keep Safe

Nonprofits Face Surge in Cyber-Attacks as Email Threats Rise 35%

North Korea's Lazarus finishes laundering $1B+ in less than two weeks

Over Half of Organizations Report Serious Operational Technology (OT) Security Incidents

Pakistan: Advisory issued for organisations to protect against deceptive PDFs and malicious websites

PayPal Phishing Email Scam Campaign Exploits DocuSign API to Bypass Security Measures

Penn-Harris-Madison ransomware attack: What we know about student Social Security numbers

Pentagon flip-flops on pausing Russia cyber operations

Phishing losses drop 48% to $5.32 million in February as crypto users grow more vigilant

Phishing scams decline for third straight month as losses drop 48% in February

Pre-installed Android malware BADBOX gets a 2.0 update, infects 1 Million devices

Qilin ransomware gang claims attacks on cancer clinic, OB-GYN facility

Ransomware as a Service Threat Grows Against Local Governments

Ransomware Attack Surge Continues in 2025

Ransomware Attack Targets Wayne County Bank Accounts, Crime Records

Ransomware attacks up 30 percent driven by AI and RaaS

Ransomware criminals are now sending their demands...by snail mail?

Ransomware group claims 1.4 TB data stolen in Tata cyberattack

Ransomware thugs threaten Tata Technologies with leak if demands not met

Rite Aid Agrees to $6.8M Settlement Over Data Breach Scandal

Rural hospitals in US need to invest at least $70 million in cybersecurity, Microsoft finds

Seven Malicious Go Packages Found Deploying Malware on Linux and macOS Systems

Silk Typhoon hackers now target IT supply chains to breach networks

Silk Typhoon Shifts Tactics to Exploit Common IT Solutions

Stress and Burnout Impacting Vast Majority of IT Pros

Tata Technologies Data Breach Claimed by Hunters International Ransomware

Tata Technologies data purportedly stolen in Hunters International attack

Tata Technologies Hit by Ransomware: 1.4TB Data Stolen, Hackers Threat Leak

Termite ransomware claims responsibility for the Genea attack

The 5 stages of incident response grief

The dirty dozen: 12 worst ransomware groups active today

The World’s Most Popular Flight Tracker is Fighting An Ongoing DDoS Cyber Attack

Toronto Zoo shares update on last year's ransomware attack

Two decades of visitor data at the Toronto Zoo stolen in cyberattack

U.S. Treasury Sanctions Iranian Darknet Admin Behind Nemesis Marketplace

US charges Chinese hackers linked to critical infrastructure breaches

US charges Chinese nationals in cyberattacks on Treasury, dissidents and more

US Seizes Chinese Hacker Infrastructure, Unseals Indictments

Vishing attacks increased by 442% in the second half of 2024

Watch Out for Phishing Emails Featuring AI-Generated Clips of YouTube's CEO

Why multi-cloud security needs a fresh approach to stay resilient

Would-be Extortionists Send “BianLian” Ransom Notes in the Mail

YouTube CEO’s AI-generated video being used in phishing scams, company issues warning

YouTube confirms what Redditors have been saying all along – scammers are exploiting private videos to hack creators

YouTube has a serious phishing problem, and AI is to blame

YouTube warns of AI-generated video of its CEO used in phishing attacks

4th March

78% of CISOs are experiencing impact from AI cyber threats

87% Indians fear data breach, 50% worried about Aadhaar security

96% of ransomware incidents involve data exfiltration

A Brief Reminder About the Florida Information Protection Act

AI learning from bad code: DeepSeek training data contains 12,000 live credentials

AI still more of a buzzword than a real tool in cybercriminal underground

Alleged Data Breach Puts Kuwaiti Government Email at Risk on Dark Web

Alleged Italian Government Email Advertised on Dark Web Forum

Alleged Sale of Georgian Government Email Access Surfaces on Dark Web

Alltrust Files Data Breach Notice, Confirming Leaked Social Security Numbers and Financial Information

Amazon Web Services (AWS) misconfigurations reportedly used to launch phishing attacks

Apple appeals to overturn UK government's 'back door' order

Arthur J. Gallagher & Co. data breach lawsuit settled for $21 million

Background Screening Service DISA Suffers Data Breach Impacting over 3.3 Million Employees

Becoming Ransomware Ready: Why Continuous Validation Is Your Best Defense

Black Basta & Cactus Ransomware Leverage MS Teams, Quick Assist, BackConnect in New Campaign

Black Basta ransomware leader slips away from courtroom

Broadcom fixes three VMware zero-days exploited in attacks

Bybit Hacker Finishes Laundering All Stolen Ethereum

Bybit Hacker Launders $1.4B Stolen Funds in 10 Days Through THORchain

Bybit hacker launders 100% of stolen $1.4B crypto in 10 days

Bybit Hacker Reportedly Launders Entire $1.4B Loot in Just 10 Days

Bybit Hacker's Stolen Assets: 20% Untraceable, 3% Frozen

Catalan court orders former NSO Group executives be indicted for spyware abuses

CISA reaffirms to safeguard US critical infrastructure against escalating threats from Qilin ransomware group

CISA Urges Government to Patch Exploited Cisco, Microsoft Flaws

CISA, VMware warn of new vulnerabilities being exploited by hackers

Cisco warns of Webex for BroadWorks flaw exposing credentials

Cisco, Hitachi, Microsoft, and Progress Flaws Actively Exploited - CISA Sounds Alarm

CISO Liability Risks Spur Policy Changes at 93% of Organizations

ClickFix Phishing Campaign Deploys Havoc Malware Through Microsoft SharePoint

Colorado faces new phishing trend: Blackmail scams on the rise

Cyberattacks Disrupt Government Services Across Multiple U.S. States

Cyberattacks targeting IT vendors intensify, causing bigger losses

Cybersecurity Risks in 2025

Dark Caracal group might have refreshed its malware, researchers say

Dark Web Profile: Ghost (Cring) Ransomware

Data hostage crisis hits Airbus and Ford tech supplier

Data of 30K+ students and faculty of University of Mumbai exposed on dark web

Delhi High Court issues injunction after Niva Bupa receives another data leak threat

Democrats question pause in offensive US cyber ops against Russia

Disruptive Qilin ransomware attack hits Japanese cancer treatment center

Don’t Fall for the “Apple Approval Notice” Text Scam

Eleven11bot botnet is nearly three times bigger than initial estimates

Employee screening data breach exposes 3.3 million records

Experts on US pausing cyber ops against Russia: America must and will remain vigilant

Fake BianLian ransom notes mailed to US CEOs in postal mail scam

Federal Trade Commission (FTC) Cracks Down on Phantom Debt Collection Scam, Freezes Assets of Fraudsters

Google expands Android AI scam detection to more Pixel devices

Google fixes Android zero-day exploited by Serbian authorities

Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities

Gregory & Appel Insurance Announces Data Breach Impacting Consumer Social Security Numbers

Hackers crack NBA, NASCAR social accounts, offer fake crypto coins

Hackers Exploit Microsoft Teams & Quick Assist for Remote Access

Hackers launder most of Bybit’s stolen crypto worth $1.4 Billion

Hackers spam GitHub with fake cracks, mods, and cheats that deliver infostealers

Half of Online Gambling Firms Lose 10% of Revenue to Fraud

Harvard Pilgrim Health Care to pay $16 million to settle data breach litigation

Havoc C2 framework spread in novel ClickFix phishing campaign

How New AI Agents Will Transform Credential Stuffing Attacks

How To Protect Yourself Against Cybercrime In Kenya

Hunters International ransomware claims attack on Tata Technologies

InvestHK: No data leakage in recent ransomware attack

‘It’s your worst nightmare’: A batch of €5 hard drives found at a flea market held 15GB of Dutch medical records – and experts warn it could’ve caused a disastrous data breach

iTP Partners Announces Data Breach Stemming from Recent Email Phishing Attack

JavaGhost Uses Amazon IAM Permissions to Phish Organizations

Lawmakers reintroduce children’s online privacy legislation

Leeds United apologise as supporters victims of cyber-attack

Leeds United apologise as they reveal cyber attack compromised customer card details

Leeds United Football Club suffers cyber attack

Leeds United issue apology as cyber attack compromised customer card details

Legacy Professionals Data Breach Impacts an Unknown Number of Consumer SSNs

Lithuania: LRT.lt suffered cyber-attack, operations not disrupted

Lost & Found tracking site hit by major data breach - over 800,000 could be affected

Medusa Extorts Bell Ambulance with 210GB Data

Microsoft signed a dodgy driver and now ransomware scum are exploiting it

Microsoft Teams tactics, malware connect Black Basta, Cactus ransomware

Misconfigured AWS Accounts Are Fueling Phishing Campaigns

Misconfigured AWS environments exploited to facilitate phishing

Missouri Probes Cyber Attack on Conservation Department

Netflix Scam Email Warning: How Hackers Trick You Into Giving Away Passwords, Credit Cards, Even IDs

New Chinese Zhong Stealer Infects Fintech via Customer Support

New Cyber-Espionage Campaign Targets UAE Aviation and Transport

New Eleven11bot botnet infects 86,000 devices for DDoS attacks

New polyglot malware hits aviation, satellite communication firms

Newly Exploited Vulnerabilities Target Cisco, Microsoft, and More – CISA Warns

North Korean Fake IT Workers Leverage GitHub to Build Jobseeker Personas

North Koreans finish initial laundering stage after more than $1 billion stolen from Bybit

Northern Ireland: Man denies terrorism offences over PSNI data breach

One Year Post-Change Healthcare Cyber Attack: What Keeps This Healthcare CTO Awake at Night

Over 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and Cryptominers

Penn-Harris-Madison School Corporation shares new information with parents about ransomware attack

Penn-Harris-Madison school district targeted in ransomware attack

Pennsylvania consumers warned of phishing scams, more than $18M lost last year

Polish Space Agency offline as it recovers from cyberattack

Polish space agency says it’s investigating a cyberattack

Prioritizing data and identity security in 2025

Private 5G Networks Face Security Risks Amid AI Adoption

Qilin Claims Responsibility for Utsunomiya Central Clinic After Recent Palau Ransomware Attack

Ransomware activity surged last year, report finds

Ransomware Attacks Appear to Keep Surging

Ransomware Attacks Increased in 2024

Researchers Link CACTUS Ransomware Tactics to Former Black Basta Affiliates

Scammer posing as Elon Musk awards one lucky Facebook user $3.7 Million

Scammers Mailing Ransom Letters While Posing as BianLian Ransomware

Scammers use deepfake of YouTube's CEO in new phishing attack

Small businesses: Watch out for these six scams

Source of Fort St. John cyber attack unknown as email and telephone service is restored

Stalkerware App Spyzie Suffers Data Breach; Affects Thousands Of Android, iOS Users

Suspected Iran-backed hackers target UAE with newly discovered 'Sosano' malware

Suspected Iranian Hackers Used Compromised Indian Firm's Email to Target U.A.E. Aviation Sector

Tata Technologies Allegedly Breached – Huntress Claim Leak of Sensitive data

The digital implications of supply chains

This Massive Data Breach Compromised 3.3 Million People's Information

THORChain Sees Record $4.6B Volume After Bybit's $1.4B Hack

Threat Actor 'JavaGhost' Targets AWS Environments in Phishing Scheme

Transak USA Notifies 23,113 Individuals of Recent Data Breach

Treasury sanctions Iranian national behind defunct Nemesis darknet marketplace

Upper Peninsula tribe won’t pay hackers as casinos reopen after ransomware attack

VMware Security Flaws Exploited in the Wild - Broadcom Releases Urgent Patches

VMware splats guest-to-hypervisor escape bugs already exploited in wild

VMware Warns Customers to Patch Actively Exploited Zero-Day Vulnerabilities

What Is Phishing and Why Does It Target Businesses?

What is vishing? Voice phishing is surging - expert tips on how to spot it and stop it

Whitman Hospital & Medical Clinics In Colfax Suffers Cyber Attack

Whitman Hospital Still Affected by Cyber Attack

Why High-Performance AI/ML is Essential in Modern Cybersecurity

YouTube warns creators an AI-generated video of its CEO is being used for phishing scams

Zurich Insurance suffers alleged data breach

3rd March

60 percent of healthcare organizations unprotected against a second major data breach

75% of US government websites experienced data breaches

Agentic AI Will Revolutionize Cybercrime in 2025, According to Malwarebytes State of Malware Report

AI Cyber Defense: How to Spot AI Cyber Attacks

AI is Evolving Faster Than Our Ability to Secure It

Alleged Data Breach at Perrin Performance Surfaces on Dark Web Forum

Alleged Griffith University hacker was found in New Zealand six years before Queensland police arrested the wrong man

Alleged Threat Actor Claims to Sell Access to Saudi Medical Database on Dark Web

Angel One Shares Plunge 10% Following Data Breach; Company Assures No Impact on Client Funds

Angel One shares plunge 10% to 52-week low amid data breach concerns

Attack against Lee Enterprises admitted by Qilin ransomware gang

Attackers Leverage Microsoft Teams and Quick Assist for Access

Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal

Black Basta leader escapes from courtroom in Armenia while awaiting judge's decision

Black Basta Leak Offers Glimpse Into Group’s Inner Workings

Bring Your Own Vulnerable Driver (BYOVD) Attacks Exploit Zero-Day in Paragon Partition Manager

Building a Whole Practice Approach to Cybersecurity

China-linked cyber attack on Belgium security watchdog under investigation

CISA Denies Reports of Shift in Cybersecurity Posture Amid Russian Threats

CISA says it will continue to monitor Russian cyber threats

CISA tags Windows, Cisco vulnerabilities as actively exploited

CISA vulnerabilities catalog monitored by ransomware gangs

Community Health Center Inc. faces lawsuits over data breach

Data breach at employee screening company impacts hundreds of thousands in Massachusetts

Data breach liability strains cyber execs

Data Breach Perceptions: Majority of Indians Fear Personal Information Leak

Department of Homeland Security (DHS) says CISA will not stop monitoring Russian cyber threats

Detecting phishing in real-time: The machine learning breakthrough in cyber defense

El Corte Inglés Reports Data Breach Amid Rising Cyber Threats

Employee screening data breach exposes 3.3 million records

Fake IT Support Calls Trick Microsoft Teams Users into Installing Ransomware

Federal Trade Commission (FTC) ends litigation against MGM, drops investigation into data breach

Google Calendar Spoofing: How Attackers Use It for Phishing Scams

Government Strategies Against Cybercrime: A Deep Dive

Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail

Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites

Harvard Pilgrim Health Care to Pay $16 Million to Settle Data Breach Litigation

HomeTeamNS Hit by Ransomware Attack Affecting Employee Data and Vehicle Information

HomeTeamNS hit by ransomware attack on February 25th

HomeTeamNS hit by ransomware attack, investigates with authorities

HomeTeamNS servers affected by ransomware attack

HomeTeamNS servers containing employee and ex-employee data hit by ransomware attack

HomeTeamNS servers hit by ransomware attack

HomeTeamNS servers hit by ransomware attack; no signs data was stolen

Hong Kong: InvestHK Recovers from Ransomware Attack, Confirms No Personal Data Leakage

How QR code attacks work and how to protect yourself

Ignore now, regret later: Why you should treat cybersecurity like health insurance

Indian Food Delivery Platform Allegedly Suffers Data Breach, Threat Actor Claims

Infini founder reaffirms 20% bounty and legal immunity to Infini hacker for return of stolen funds

Information Commissioner’s Office (ICO) Launches TikTok Investigation Over Use of Children’s Data

Inside the fed’s $8M crypto recovery mission: how victims lost their money in the first place

Insider Leaks Black Basta Ransomware Gang’s Chat Logs Containing Various Details

International hacktivist group launches three-day cyberattack on Hungarian websites

JavaGhost: Exploiting Amazon IAM Permissions for Phishing Attacks

JavaGhost Leveraging Amazon IAM Permissions To Trigger Phishing Attack

Lee Enterprises investigating ransomware claim, data leak threat

Lee Enterprises ransomware attack halts freelance and contractor payments

Lost luggage leaked data: nearly a million private records exposed

Massive phishing campaign taps bogus CAPTCHA PDFs to spread Lumma Stealer

Michigan anti-phishing campaign warns that 'banks never ask that'

Microsoft discovers five potentially damaging attacks against its own software

Microsoft-signed driver used in ransomware attacks

More reports claim 2024 was the worst year for ransomware attacks yet

New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint

New Malware Campaign Exploits Microsoft Graph API to Infect Windows

New Poco RAT Via Weaponized PDF Attacking Users to Capture Sensitive Data

North Korea Hackers Pull Off Biggest Theft In History

Online crime-as-a-service skyrockets with 24,000 users selling attack tools

Organisations battle with AI-driven phishing threat rise

Palau health ministry on the mend after Qilin ransomware attack

Paragon Partition Manager driver zero-day leveraged in ransomware attacks

Penn Harris Madison Schools experiencing ransomware cyber-breach

Penn-Harris-Madison ransomware attack ongoing, standardized tests to continue this week

Penn-Harris-Madison schools hit by ransomware cyber attack, investigating data breach

Penn-Harris-Madison schools investigating possible data breach

Phishing attack targets Foreign Ministry staff around the world

Phishing Campaign Uses Havoc Framework to Control Infected Systems

Phishing Links in Browser

Poland’s Space Agency Breached: Cybersecurity Services Launch Investigation

Polish space agency investigates cyberattack on its systems

Qilin Claims Lee Enterprises Ransomware Attack

Qilin ransomware gang claimed responsibility for the Lee Enterprises attack

Qilin ransomware steals 350GB of data from Lee Enterprises

Ransomware access playbook: What Black Basta’s leaked logs reveal

Ransomware groups exploit BioNTdrv.sys flaws to gain SYSTEM privileges on Windows

Ransomware on the Rise: How Manufacturers can avoid becoming the next target

Ransomware Spotlight: Water Ouroboros

Ransomware Trends 2024

Reading Cooperative Bank reports data breach affecting over 24,000 customers

Rubrik rotates authentication keys after log server breach

Russian telecom Beeline facing outages after cyberattack

Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia

Several local governments struggling with cyberattacks limiting services

Singapore’s HomeTeamNS hit by ransomware attack

Singapore’s HomeTeamNS that Serves the Police Force Confirmed a Ransomware Attack

T-Mobile to Pay Its Customers $350 Million After Data Breach

The New Ransomware Groups Shaking Up 2025

They hack to sell: the gateway to your corporate network could already be on the dark web

Third-Party Risks Driving Cyber Insurance Claims

Toronto Zoo Issues Final Notification on Cyberattack and Data Breach

Turkish restaurant group BNS Food confirms data breach at SushiCo

Turkish restaurant group BNS Food discloses data breach at SushiCo

U.K. Information Commissioner’s Office (ICO) Investigates TikTok, Reddit, and Imgur Over Children's Data Protection Practices

U.S. Halts Cyber Operations Targeting Russia

U.S. Suspends Cyberattacks Against Russia

UK launches investigation into TikTok, Reddit over children's personal data practices

UK Lawmakers Don't Hear Fervor for Ransomware Payment Ban

UK probes how TikTok, Reddit, and Imgur protect child privacy

UK watchdog probes TikTok and Reddit over child privacy concerns

Update Paragon software now: Windows blocks vulnerable driver exploited by hackers

Urgent scam Netflix email warning as customers' inboxes targeted in dangerous cyber attack

US pauses cyber ops against Russia: capitulation or playing it nice in public?

US said to halt offensive cyber operations against Russia

Vishing attacks surged 442% last year - how to protect yourself

Vo1d Botnet's Peak Surpasses 1.59 Million Infected Android TVs, Spanning 226 Countries

Vulnerable Paragon Driver Exploited in Ransomware Attacks

Watch out for this PayPal phishing email scam

Zacks Data Breach Exposes 12 Million Users, Legal Battle Begins