Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and 
Dentons Senior Analyst, Washington DC
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 14th April and 20th April 2025.20th April
$25 software kits to steal your personal details are freely on sale on dark web - here's how to remain safe
A new kind of phishing attack is fooling Gmail’s security. Here’s how it works
APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures
Gmail user? Beware of this sophisticated phishing attack
Gmail users given ‘red alert’ warning over ‘sophisticated’ phishing scam stealing data as Google works to stop ‘attack’
Google issues urgent warning to Gmail users about phishing attacks from verified emails, says working on fix
Nintendo Files Subpoena To Catch Hacker Behind GameFreak “Teraleak”
Phishers abuse Google OAuth to spoof Google in DKIM replay attack
Ransomware attacks are increasing sharply
State-sponsored hackers embrace ClickFix social engineering tactic
The dangers of Ransomware as a Service
19th April
100,000 Americans Exposed As Auto Giant Warns Customers’ Names, Contact Details, Credit Card Information, Social Security Numbers Leaked in Data Breach
ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware
Attackers exploited SonicWall SMA appliances since January 2025
Check Point Exposes Sophisticated Phishing Attack by APT29 on European Ministries
Chinese APT IronHusky Deploys Updated MysterySnail RAT on Russia
Cozy Bear’s Wine Lure Drops WineLoader Malware on EU Diplomats
Critical Erlang/OTP SSH RCE bug now has public exploits, patch now
Don’t Fall for This New Gmail Phishing Scheme
Fraudsters are impersonating FBI 'IC3' employees to steal your financial information
Hacker Returns $7.5M in KiloEx Breach After Bounty Deal
How Companies Can Safeguard Against the Next Wave of Ransomware
India: Central Bureau of Investigation (CBI) arrests hacker for targeting Delhi Jal Board customers using malware
JPMorgan Chase, BNY Mellon Respond To Major Data Breach As Bank Regulator Abruptly Suffers Security Breakdown
KiloEx Hack Update: Hacker Returns $1.4 Million in Stolen Crypto
Microsoft Warns of Ransomware Exploiting Cloud Environments with New Techniques
New Android malware steals your credit cards for NFC relay attacks
New SheByte Phishing-as-a-Service (PhaaS) Offering $199 Subscription for Cyber Criminals
Nippon Life Mutual Fund portal yet to be restored after cyber attack
Phishing Attack Targets Gmail Users With Fake Google Emails
Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems
18th April
6 Million users at risk: 58 Chrome extensions discovered containing secret tracking code
7 Steps to Take After a Credential-Based cyberattack
A new fraud campaign is active in Gmail - how to protect yourself
Africa: Surge in data theft attempts increases regional spyware attacks by 14%
Ahold Delhaize confirms data theft in U.S. systems following November cyberattack
AI-Driven Ransomware Can Be Thwarted With Zero-Trust Networking
Airport Retailer Paradies Shops Reaches $6.9 Million Data Breach Settlement
Alleged SmokeLoader malware operator facing federal charges in Vermont
ASUS warns of critical auth bypass flaw in routers using AiCloud
Azerbaijan: Hacker arrested by State Security Service
Bill introduced to extend the Cybersecurity Information Sharing Act
Chinese hackers target Russian government with upgraded RAT malware
Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States
Chrome Browser Zero-Day Exploited in Sophisticated Attack
CISA recommends password reset after potential Oracle data breach
Cisco Webex bug lets hackers gain code execution via meeting links
ClickFix increasingly utilized in state-backed malware attacks
Could Ransomware Survive Without Cryptocurrency?
Critical security flaw affects Asus AiCloud routers, urgent update required
Critics call Florida bill aiming to protect minors a threat to encryption
CVE-2025-24054 Under Active Attack - Steals NTLM Credentials on File Download
Cyber attack on Central Texas Paediatric Orthopaedics impacted over 140,000 patients
Cyber insurance causes ransomware demands to skyrocket
Data breach confirmed by Ahold Delhaize after INC ransomware claims
Entertainment venue management firm Legends International disclosed a data breach
Entertainment venue management giant Legends International reveals major data breach
Ethereum phishing scam victims warned in Operation Avalanche
Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT
Food retail giant behind several major US supermarket brands confirms data stolen in major ransomware breach
Gasconade County R-2 system withstands cyber attack, federal agents to continue investigation
Hacker accused of breaching U.S. and Israeli firms, selling Argentine company data stands trial in Azerbaijan
Hacker Returns $7.5M to KiloEx Following Bounty Offer
HHS fines Guam hospital over ransomware attack, HIPAA violations
How the Channel is Evolving in the Cybersecurity Sector
How the HackersTent Team Recovered $3M Stolen Cryptocurrency
Huge ransomware blackmail at Ahold Delhaize
Indian businesses face nearly 700 ransomware attacks per day
Information Commissioner’s Office (ICO) Fines Law Firm £60,000 Following Cyber-attack
Interlock ransomware gang pushes fake IT tools in ClickFix attacks
Japan sees $700 million in hacked trades as phishing scams explode
Kentucky woman’s garbage truck scam cost Galveston $1.5 million
KiloEx DEX exploiter returns $1.4M out of the $7M stolen funds
KiloEx Exchange Recovers $7.5M as Hacker Gives Back Stolen Funds
KiloEX exploiter returned $6.9M after white hat bounty offer
KiloEx Hacker Returns $5.5M in Crypto - But $2M Still Missing
KiloEx Hacker Returns Entire $7.5M Four Days After Exploit
KiloEx Hacker Returns Stolen Funds Just Days After Hack
Legends International notifies customers, employees of data breach
Legends International suffers data breach affecting employees and venue visitors
Lemonade discloses auto insurance data breach impacting 190,000 applicants
Manta Co-Founder ‘Targeted’ by Lazarus Group in Zoom Phishing Attempt
Manta Network Co-Founder Dodges Lazarus-Targeted Zoom Call Attack by a Whisker
Manta Network Co-Founder Falls Victim to Zoom Phishing Scam by North Korea’s Lazarus Group
Manta Network co-founder targeted by Lazarus in Zoom phishing attack
Manta Network Co-Founder Targeted in Sophisticated Zoom Phishing Attack Using Deepfake Videos
Massive Cyber Attack Cripples Nippon Life India Mutual Fund Website
MedEx Ambulance data breach impacted over 118,000 patients
Medusa Ransomware: Inside the 2025 Resurgence of One of the Internet’s Most Aggressive Threats
MEXC Warns Users of SMS Phishing Scams Falsely Claiming to Be from the Platform
Midnight Blizzard Targets European Diplomats with Wine Tasting Phishing Lure
Multi-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader
Nascent SheByte Phishing-as-a-Service (PhaaS) platform gains traction
Nemesis darknet market founder indicted for years-long “borderless powerhouse of criminal activity”
New payment-card scam involves a phone call, some malware and a personal tap
Operation Avalanche Busts $4.3M Ethereum Phishing Scam
Oracle Cloud leak leads CISA to issue warning about credential risks
Pacific Northwest imaging practice confirms patient data breach
Paradies Shops to settle ransomware-related breach for $6.9M
Phishing campaigns abuse Windows NTLM hash leak bug
Phishing Scam Targets Crypto Leaders via Fake Zoom Calls and Downloads Trap
Ransomware Attacks Soar 126% Over Q1 2025
Ransomware remains major threat to SMBs in 2024
Rethinking Resilience for the Age of AI-Driven Cybercrime
Roblox Team Warns Of New “Phishing Scam” Affecting Some Players
Samsung phones are saving your passwords in plain text
Scammers pose as FBI IC3 employees to 'help' recover lost funds
Securing digital products under the Cyber Resilience Act
Sell Us Your Hacker Account, Admins Paid Extra - SYS Initiative Says
Sensor-Rich Technology Giant Sensata Suffers a Ransomware Attack that Disrupted Various Operations
SheByte’s $199 phishing kit subscriptions fuel uptick in targeted bank attacks
SonicWall SMA VPN devices targeted in attacks since January
SonicWall SMA100 vulnerability exploited by attackers (CVE-2021-20035)
Tether Freezes USDT Worth $870K Across Three Addresses Linked to Phishing Scam
The UK’s phone theft crisis is a wake-up call for digital security
The Zoom attack you didn’t see coming
This Google phishing email is so convincing, even Gmail didn’t flag it
This Massive Insurance Data Breach Leaked 1.6 Million Users' Information
U.S. Secret Service and Canadian Police Disrupt $4.3M Ethereum “Approval Phishing” Scam
UK law firm fined for carelessness after cyberattack
“Vote for me” scam turns into chain reaction of stolen Facebook, X accounts
When ransomware strikes, what’s your move?
Widely available AI tools signal new era of malicious bot activity
Windows NTLM Hash Flaw Targeted in Global Phishing Attacks
Windows vulnerability with NTLM hash abuse exploited for phishing
Your DNA could be hacked, scientists warn
17th April
180% Surge in AI-Powered Phishing Attacks Targets Critical Infrastructure
2025 Ransomware: Business as Usual, Business is Booming
A whopping 46% of US companies’ employees reuse passwords
Ahold Delhaize confirms data theft after INC ransomware claims attack
AI-based Gamma platform harnessed in multi-stage phishing intrusion
Airport retailer agrees to $6.9 million settlement over ransomware data breach
Albert Heijn parent company hit by major ransomware attack, hackers steal data
Alleged data breach in Isle of Man government's freedom of information system
Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks
Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks
Apple plugs zero-day holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201)
Australia emerges as data breach hotspot in Q1
Australia's Small Businesses Face Rising Data Breach Threats
Australian companies face new ransomware reporting requirements
Australian lottery broker confirms cyber attack
Blockchain Offers Security Benefits – But Don't Neglect Your Passwords
Car rental giant Hertz says vendor data breach impacted customers' personal information
Chinese Hacker Group Mustang Panda Bypass EDR Detection With New Hacking Tools
Chrome extensions with 6 million installs have hidden tracking code
CISA Flags Actively Exploited Vulnerability in SonicWall SMA Devices
CISA tags SonicWall VPN flaw as actively exploited in attacks
CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension
CISA Urges Action on Potential Oracle Cloud Credential Compromise
CISA warns of increased breach risks following Oracle Cloud leak
Conduent Discloses Client Data Theft in SEC Filing
Conduent says January cyber attack compromised clients’ end users’ personal data
CrazyHunter Hacker Group Exploits Open-Source GitHub Tools to Target Organizations
CrazyHunter Hacker Group Using Open-Source Tools from GitHub to Attack Organizations
Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution
Crypto miners are draining power - and disappearing
Cyber threats against energy sector surge as global tensions mount
Cybercriminals shift to subtle identity theft
Data breach victims more often than not face delays in critical notifications
Data-stealing cyberattacks are surging - 7 ways to protect yourself and your business
DaVita hit by ransomware attack
Department of Health and Human Services (HHS) Office for Civil Rights Settles HIPAA Ransomware Cybersecurity Investigation with Public Hospital
Don't Fall for This New Gmail Phishing Scheme
Dutch parent company of Hannaford and Stop & Shop confirms data stolen in cyberattack
English law firm fined £60,000 after cyber attack
Entertainment services giant Legends International discloses data breach
Ethereum Name Service (ENS) founder warns of Google spoof that tricks users with a fake subpoena
Ethereum Scam Alert: $4.3M Stolen in Approval Phishing Attack - Here’s How to Stay Safe
European diplomats targeted by Russian phishing campaign promising fancy wine tasting
Ex-Googler Shares Extremely Sophisticated Phishing Attack That Comes From Official Google Mail; Company Reacts
Extensive Oregon agency data breach admitted by Rhysida ransomware gang
Fake jobs, tolls, and deliveries text cost Americans half a billion
Five phishing scams advisers should know (and how to guard against them)
Florida draft law mandating encryption backdoors for social media accounts billed ‘dangerous and dumb’
Fortune 500 firm's ex-employee exposes thousands of clients
From Remote Ransomware To Adversarial AI: How Small Businesses Were Targeted By Cybercriminals In 2024
Ghost Ransomware Targets Organizations Across 70+ Countries
Google suspended 39 Million advertiser accounts last year, thanks to AI
Got a weird email from Google? Read this before opening
Hacked law firm 'didn't think it was a data breach' – the Information Commissioner's Office (ICO) disagreed
Hacker Leaks 33,000 Employee Records in Third-Party API Breach
Harvest Ransomware Attack: Stolen Data Now Publicly Disclosed
IBM X-Force report finds shift from ransomware to credential theft in 2024
Identity Attacks Now Comprise a Third of Intrusions
In last-minute reversal, US agency extends support for cyber vulnerability database
Information Commissioner’s Office (ICO) Issues Merseyside-Based Law Firm £60,000 Fine After Cyber-Attack
Internet Initiative Japan (IIJ) Reports Potential Data Breach Affecting 4 Million Users
iPhone AI app leaked user-generated Not Safe For Work (NSFW) stories
Kidney dialysis company experiences ransomware attack
Lemonade attributes data breach to technical issue in auto insurance quote system
Mandatory ban on councils making ransomware payments would be “powerful deterrent”: Local Government Association
Mass Ransomware Campaign Hits S3 Buckets Using Stolen AWS Keys
Massive AWS access key database leveraged in ransomware campaign
Massive medical company data breach impacts millions
Microsoft Thwarts $4 billion in Fraud Attempts
Microsoft vulnerabilities: What’s improved, what’s at risk
MITRE support extended 11 more months, yet uncertainty remains
Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL Updates
Network Edge Devices the Biggest Entry Point for Attacks on SMBs
Node.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers
NTLM Hash Exploit Targets Poland and Romania Days After Patch
Older SonicWall SMA100 vulnerability exploited in the wild
Over 1.6 million customers now hit in massive insurance data breach - how to check if you're one of them
Over two thirds of Australian businesses hit by ransomware
Phishing scammers exploit Google to target crypto users
Popular AI program spoofed in phishing campaign spawning fake Microsoft Sharepoint logins
Ransomware Attacks Rose by 126% Attacking Consumer Goods & Services Companies
Ransomware Attacks Surge 126%, Targeting Consumer Goods and Services Sector
Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH
Russian Hackers Bypass MFA With Alarming New Phishing Tactic, Experts Warn
Senators Urge Cyber-Threat Sharing Law Extension Before Deadline
Sophisticated cyber-attack at international service provider disrupted
Southeast Asian firms faced surge in ransomware attacks in 2024
State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
Staying on Windows 10? Infostealers could be lurking, experts warn
Stop & Shop, Albert Heijn, Food Lion: Ransomware gang targets grocery heavyweights
Texas: Is TXTag texting you about an unpaid toll bill? How to know if you're being scammed
The Continued Abuse of Legitimate Domains: A Spike in the Exploitation of Google Drive to Send Phishing Attacks
Two months later, Mt. Baker Imaging confirms data breach
U.S. Secret Service, Canadian Officials Disrupt $4.3M Ethereum “Approval Phishing” Scam
University of Kentucky student-athlete believed to be a victim of Matthew Weiss data breach
Unsecured database exposes sensitive data of UK healthcare workers
Watch out - this official-looking Google email is actually from scammers and can take over your account
Watch Out for This Sophisticated Phishing Email That Looks Like It's From Google
What Kuala Lumpur International Airport’s US$10 Million Ransom Demand Tells Us About Cyber Risk Today
When AI agents go rogue, the fallout hits the enterprise
Windows NTLM hash leak flaw exploited in phishing attacks on governments
Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054)
16th April
1.3 Billion Data Breach Victims in 2024; 500,000 from Pennsylvania State Education Association
4Chan Outage Sparks Cyberattack Rumors and Data Leak Concerns
41% of Attacks Bypass Defenses: Adversarial Exposure Validation Fixes That
92% of Mobile Apps Found to Use Insecure Cryptographic Methods
AI unleashes more advanced scams. Here's what to look out for (and how to stay protected)
Android devices to auto-restart if locked for 3 days: why does it matter?
Apple fixes two zero-days exploited in targeted iPhone attacks
Apple says zero-day bugs exploited against ‘specific targeted individuals’ using iOS
BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian Forum
“Bot” students enroll in US community colleges to steal financial aid
British Columbia Health Authority Data Breach Sparks Identity Theft Concerns
British law firm fined after ransomware group publishes confidential client data
Browser extensions make nearly every employee a potential attack vector
Chaos Reigns as MITRE Set to Cease CVE and CWE Operations
China-Backed Hackers Exploit BRICKSTORM Backdoor to Spy on European Businesses
Chinese Android Phones Shipped with Fake WhatsApp, Telegram Apps Targeting Crypto Users
Chinese firm tied to Uyghur rights abuses now training Tibet police on hacking techniques
CISA at the Last Minute Extends Funding for Crucial MITRE CVE Program
CISA extends CVE program contract with MITRE for 11 months amid alarm over potential lapse
CISA extends funding to ensure 'no lapse in critical CVE services'
CISA warns of potential data breaches caused by legacy Oracle Cloud leak
Common Vulnerabilities and Exposures (CVE) database funding extended through 2026 - was the panic all for nothing?
Common Vulnerabilities and Exposures (CVE) Program Stays Online as CISA Backs Temporary MITRE Extension
Cozy Bear targets EU diplomats with wine-tasting invites (again)
Customers at risk: fraudulent Uber accounts for sale and rent on Facebook
Developers Beware: Slopsquatting & Vibe Coding Can Increase Risk of AI-Powered Attacks
Ethereum-powered ZKsync loses millions over compromised admin account
Experts Uncover Four New Privilege Escalation Flaws in Windows Task Scheduler
Former MTV execs’ ghost platform still leaking personal data of numerous creatives
From Third-Party Vendors to U.S. Tariffs: The New Cyber Risks Facing Supply Chains
Funding uncertainty may spell the end of MITRE’s CVE program
Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins
Google Blocked 5.1 Billion Harmful Ads and Suspended 39.2 Million Advertiser Accounts in 2024
Google blocked over 5 billion ads in 2024 amid rise in AI-powered scams
Google used AI to suspend over 39M advertiser accounts suspected of fraud
Google vulnerability enables convincing phishing attack targeting crypto users
Hacker accessed customer information in Hertz data breach
Hertz Confirms Data Breach After Hackers Stole Customer PII
Hertz Data Breach Exposes Customer Information in Cleo Zero-Day Attack
Hertz So Bad: Alarming Data Breach Exposes Customer Data To Hackers
Huge ransomware campaign targets AWS S3 storage: attackers have thousands of keys
Identities stolen after Interior Health data breach
Interlock Ransomware Employs Multi-Stage Attack Via Legitimate Websites to Deliver Malicious Browser Updates
Interlock ransomware evolves tactics with ClickFix, infostealers
Interlock Ransomware Uses Multi-Stage Attack Through Legitimate Websites to Deliver Malicious Browser Updates
Law Firm Fined £60,000 After Ransomware Group Publishes Client Data
Massive Data Breach Exposes Personal Information of 30 Million Hamrah Aval Users in Iran
MITRE CVE Contract Extended Just Before Expiration
MITRE set to lose funding today, CISA intervenes
MITRE warns of lapse with CVE program as contract with US set to expire
MITRE warns that funding for critical CVE program expires today
More than 100,000 had information stolen from Hertz through Cleo file share tool
Multiple Groups Exploit NTLM Flaw in Microsoft Windows
New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks
New Windows Task Scheduler Bugs Let Attackers Bypass UAC and Tamper with Logs
North Korean Hackers Targeted Nearly 18,000 in Phishing Campaign During Martial Law Turmoil
NSO lawyer names Mexico, Saudi Arabia, and Uzbekistan as spyware customers accused of 2019 WhatsApp hacks
Over 16,000 Fortinet devices compromised with symlink backdoor
Phishing to Payout: How Insurance Makes Victims Pay More
Possible National Security Crisis Averted: CISA’s Reversal Extends Support for CVE Database
Ransomware gang 'CrazyHunter' Targets Critical Taiwanese Organizations
Russian state-sponsored Cozy Bear targets European politicians with wine-tasting events
Scalper Bots Fueling Driver and Vehicles Standards Agency (DVSA) Driving Test Black Market
Server-Side Phishing Attacks Employees & Member Portals to Steal Login Credentials
Server-Side Phishing Attacks Target Employee and Member Portals to Steal Login Credentials
Strategic AI readiness for cybersecurity: From hype to reality
The future of authentication: Why passwordless is the way forward
Think you're downloading Binance? It’s malware in disguise
U.S. and Canadian authorities disrupt $4.3m crypto phishing scam
U.S. Government Funding for MITRE's CVE Ends April 16th, Cybersecurity Community on Alert
UK Fines Law Firm 60,000 Pounds for Ransomware Data Breach
UnitedHealth Adopts Aggressive Approach to Recover Ransomware Attack Loans
What's happening with MITRE and the CVE program uncertainty
When companies merge, so do their cyber threats
Whistleblower: Musk’s DOGE Stole Data, Caused Breach at U.S. Agency
Whistleblower Alleges Disturbing Data Breach Risks at the National Labor Relations Board (NLRB) Involving Musk-Linked “DOGE” Team
Why the CVE database for tracking security flaws nearly went dark - and what happens next
15th April
4chan Breached? Hacker from Rival Soyjak Forum Claims Source Code Leak
4chan down, major hack suspected
4chan Goes Offline After Hacker Appears to Hijack the Site
‘4chan just got hacked hard’: X users claim massive data breach exposes emails, database and passwords
4chan, the 'internet’s litter box,' appears to have been pillaged by rival forum
23andMe bankruptcy draws investigation from House panel over data concerns
94% of firms say pentesting is essential, but few are doing it right
AI Ransomware that teaches itself how to breach firewalls
Ambulance service breached – now hackers might know your blood type and bank info
An IKEA operator in Eastern Europe lost $23M due to ransomware
Application platform-related breach confirmed by insurer Lemonade
Australian Businesses at Risk as Threat Actors Exploit Fortinet Vulnerabilities
Bengaluru Firm Hit by Ransomware; Hackers Demand ₹60 Lakh Ransom
Black Basta chat leaks reveal details on ransomware infrastructure
Bot Traffic Overtakes Human Activity as Threat Actors Turn to AI
Canada Revenue Agency (CRA) accounts hacked after 28,000 social insurance numbers stolen in data breach
China accuses NSA of launching cyberattacks on Asian Winter Games
China accuses US of cyberattacks, names suspected NSA agents
China Names and Shames US Hackers, Calls Out 3 Alleged NSA Agents
Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
Chrome extensions ask for too many dangerous permissions and see everything
CMC confirms ransomware attack, says core services remain safe
CMC Corporation hit by ransomware attack
CMC Group hit by ransomware attack, authorities launch investigation
Compliance Now Biggest Cyber Challenge for UK Financial Services
Conduent confirms data breach impact on clients’ details
Conduent confirms hackers accessed its system in January cyberattack
Creator of $132 Million Global Phishing Service Jailed for Eight Years
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence
Critical flaws fixed in Nagios Log Server
Crypto Developers Targeted by Python Malware Disguised as Coding Challenges
Cyber-criminal who led ‘phishing’ website used by thousands of online scammers jailed
Cybercriminal groups embrace corporate structures to scale, sustain operations
Data breach at rental company Hertz exposes customers' personal information
Data Poisoning: The Next Evolution of Ransomware That No One is Ready For
DaVita hit by ransomware attack
DaVita Kidney Dialysis Firm Was Attacked by Ransomware this Weekend
Decentralized crypto exchange KiloEx loses $7.5M in exploit
DeFi platform KiloEx offers $750K bounty to hacker
Dialysis Provider DaVita Hit with Ransomware Attack
Difficult but doable: organizations can spot fake job seekers
DOGE BIG BALLS Campaign Blurs Lines Between Exploitation, Recon, and Reputation Damage
DOGE Big Balls Ransomware Attack - What You Need To Know
DOGE ‘Big Balls’ Ransomware Utilizes ZIP-Based LNK Shortcuts and BYOVD Techniques for Stealthy Attacks
Fake PDFCandy File Converter Websites Spread Malware
For security, Android phones will now auto-reboot after three days
Gladinet's Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability
Google adds Android auto-reboot to block forensic data extractions
Hacker group claims breach of 30 million Iranian mobile subscribers
Hackers Lurked in US Bank Regulator’s Systems for Over a Year After 2023 Security Breach
Hackers Stole Credit Card, Driver's License Info in Hertz Data Breach
Hackers want $75,000 for data allegedly stolen from Takeda
Hertz announces data breach that exposed sensitive personal information
Hertz Australia confirms Australian customers impacted by global Hertz data breach
Hertz Confirms Data Breach Affecting Customer Information
Hertz confirms data breach that exposes credit cards, drivers' licenses and more
Hertz data breach: Customers in US, EU, UK, Australia and Canada affected
Hertz data breach caused by CL0P ransomware attack on vendor
Hertz Data Breach Exposes Customer Personal Information to Hackers
Hertz Data Breach Exposes Drivers Licenses and Other Personal Info
Hertz Data Breach Included Credit Card, Personal Data: Here's What You Should Know
Hertz Discloses Data Breach Linked to Cleo Hack
Hertz Just Had a Serious Data Breach
Hertz says hackers stole customer credit card and driver’s license data
Hertz warns UK customers of Cleo-linked data breach
Hospitals Targeted by Stealthy New Malware Called ResolverRAT
How effective are employee phishing tests?
Incomplete NVIDIA patch could leave AI infrastructure and data at risk
Infamous message board 4chan taken down following major hack
Is 4Chan down? Users claim hacker leaked staff emails and moderator passwords
Kidney dialysis company DaVita hit by ransomware, patient care continues
Kidney Dialysis Services Provider DaVita Hit by Ransomware
KiloEx issues ultimatum to hacker after US$7.5m exploit
KiloEx offers $750K bounty for hacker in DeFi platform attack
KiloEx offers hacker 10% reward to return stolen funds, gives 72-hour deadline
KiloEx tells hacker to return 90% of the $7 million stolen from its perpetual vaults or face relentless legal pursuit
Krafton denies Battlegrounds Mobile India (BGMI) data breach allegations raised in Indian legal complaint
LabHost Phishing Mastermind Sentenced to 8.5 Years
Laboratory Services Cooperative experienced a cybersecurity incident
Landmark Admin data breach impact now reaches 1.6 million people
LLMs Create a New Supply Chain Threat: Code Package Hallucinations
Long Beach starts notifying people affected by data breach
Loretto Hospital Investigates Data Breach Affecting Over 500 Patients in Chicago
LPL Sues Ameriprise for Sending Clients ‘Misleading’ Data Breach Notices
Majority of Browser Extensions Can Access Sensitive Enterprise Data, New Report Finds
Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders
Meta Resumes E.U. AI Training Using Public User Data After Regulator Approval
Midnight Blizzard deploys new GrapeLoader malware in embassy phishing
More Ransomware Responders Report Decline in Ransom Payments
More Resilient Organizations Successfully Battled Ransomware in 2024
New “Slopsquatting” Threat Emerges from AI-Generated Code Hallucinations
North Korea hacks 120 Koreans with phishing emails disguised as documents
North Korea sent over 126,000 phishing emails to South Koreans
North Korean Hackers Exploit LinkedIn to Infect Crypto Developers with Infostealers
Notorious image board 4chan hacked and internal data leaked
Oracle Confirms Hacking Incident Involving Obsolete Servers
Organizations Found to Address Only 21% of GenAI-Related Vulnerabilities
Potentially huge Hertz data breach sees customer personal info and driver licenses stolen
Ransom Demands Shrink as Firms Push Back
Ransomware Attack Announced by True Dental Care for Kids and Adults
Ransomware attack limits DaVita operations
Ransomware attacks by hackers jumped in Q1
Ransomware payouts fall, according to report
Renal care provider DaVita says ransomware attack disrupted its daily operations
Renewed APT29 Phishing Campaign Against European Diplomats
ResolverRAT malware attacks pharma and healthcare organizations via phishing and DLL side-loading
ResolverRAT Malware Targets Healthcare, Pharma with Phishing Tactics
Retail sector a prime target for ransomware in Q1 2025
Singapore: A ransomware attack hit a vendor to DBS. What is a ransomware attack and how does it affect companies?
South Korea: Police say North Korea impersonated horoscope writers, counterintelligence command in 120,000 phishing emails
Spotting Phishing Attacks with Image Verification Techniques
Study Hotels allegedly subjected to Play ransomware attack
techUK opposes ban on public sector ransomware payments
Top kidney dialysis firm hit by damaging ransomware attack
TymeBank Alerts Customers and all Consumers to VAT Phishing Scam
TymeBank alerts customers to new VAT-related phishing threats
UK Organizations Cite Phishing as the Most Disruptive Type of Cyberattack
UK Software Firm Exposed 1.1TB of Healthcare Worker Records
UK’s Cyber Crime Down in 2024: Better ‘Cyber Hygiene Among Small Businesses
Wave of Wine-Inspired Phishing Attacks Targets EU Diplomats
What the State of Pentesting Report 2025 Reveals About Cybersecurity Readiness
X trained Grok on European user data, watchdog claims
Your Android phone is getting a new security secret weapon - how it works
ZK Token Crashes 17% in 30 Minutes as Hacker Gains Control of $5M in Unclaimed ZKSync Airdrop Tokens
14th April
5 steps to secure your X account after data breach
$407,000 lost since December 2024 in OneMotoring phishing scam resurgence in Singapore
Advanced Device Code Phishing Leveraged by Russian APT
AI Hallucinations Create “Slopsquatting” Supply Chain Threat
AI-Powered Phishing Detection – Does It Actually Work?
Akira ransomware group encrypts network through webcams
Alleged FUD Malware ‘GYware’ Advertised on Hacker Forum for $35/Month
Alleged NASCAR hack claimed by the Medusa ransomware group
AUD 500,000 Lost in Cyber Attack on Australian Superannuation Funds
Australia: Lynx claims ransomware attack on Newcastle law firm
Australia: New South Wales-based TMA Group listed by Sarcoma ransomware
Australian steel industry provider Galvatech listed by Qilin ransomware
Binance Users Targeted by Sophisticated Phishing Scam
Black Basta: The Fallen Ransomware Gang That Lives On
Chinese police ensnaring Tibetans over phone and internet activity, Human Rights Watch says
Cracked cybercrime forum reemerges
Cybercrime group rolls out major updates for on sale phishing tool
Cybersecurity firm buying hacker forum accounts to spy on cybercriminals
Cybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind
Cybersecurity leaders discuss Oracle’s second recent hack
Data breach at Chicago’s Loretto Hospital affects about 500 people
Data Breach at Planned Parenthood Lab Partner Exposes Info of 1.6 Million
Data breach purportedly hits Wolters Kluwer
Dialysis firm DaVita hit by ransomware attack
Dialysis firm DaVita hit by ransomware attack, says patient care continues
Dialysis firm DaVita suffers ransomware attack
Don't Ignore This! Android Users On Older Versions at High Risk of Data Breach; CERT-In Issues Warning
Fortinet Finds Attackers Maintain Access Post-Patch via SSL-VPN Symlink Exploit
Fortinet Issues Fixes After Attackers Bypass Patches to Maintain Access
Google Chrome fixes browsing history leaks by purple “visited” links
Govtech giant Conduent confirms client data stolen in January cyberattack
Hackers Allegedly Leaked 1.59 Million Rows of Indian Insurance User’s Sensitive Data
Hacker claims theft of 4.4 million WooCommerce users’ personal information
Hackers using AI-produced audio to impersonate tax preparers, IRS
Hertz confirms customer info, drivers' licenses stolen in data breach
Hertz says customers’ personal data and driver’s licenses stolen in data breach
IKEA black Friday ransomware attack cost franchise firm millions
IKEA lost millions after 2024 'Black Friday' cyber attack
IKEA's Greek Parent Shrugged Off Ransomware Attack Last November
Incomplete Patch Leaves NVIDIA and Docker Users at Risk
India: CERT-In Issues Nationwide Alert Over QR Code, Phishing, & Fake VPN Scams
Indian Air Force (IAF) jet involved in Myanmar quake relief operation faces mid-air cyber attack
Indian Air Force (IAF) jet on Myanmar relief operation faced cyber attack in air
Insurance firm Lemonade says breach exposed driver’s license numbers
Kidney dialysis firm DaVita hit by weekend ransomware attack
Kidney Dialysis Provider DaVita Hit by Ransomware Attack
Kidney Disease Treatment Firm DaVita's Stock Falls on Ransomware Attack Disclosure
Laboratory Services Cooperative (LSC) confirms security breach exposing Kidney Disease Treatment Firm DaVita's Stock Falls on Ransomware Attack Disclosuresensitive data of 1.6 million people
Loretto Hospital data breach exposes private files of 500 people
Major WordPress Plugin Flaw Exploited in Under 4 Hours
Morocco Investigates Major Data Breach Allegedly Claimed by Algerian Hackers
New Malware ResolverRAT Targets Healthcare and Pharma Sectors
New Malware Variant Identified: ResolverRAT Enters the Maze
New Research Highlights Vulnerabilities of Popular AI Tools in Phishing Scams
New ResolverRAT malware targets pharma and healthcare orgs worldwide
Nonprofit employer association must face data breach lawsuit, court says
Oracle Health Data Breach Affected Multiple Hospitals Potentially Leaking Sensitive Patient Information
Organizations can’t afford to be non-compliant
Over 1.6 million individuals compromised in Laboratory Services Cooperative data breach
Package hallucination: LLMs may deliver malicious code to careless developers
Pakistan-Linked Hackers Expand Targets in India with CurlBack RAT and Spark RAT
Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft
Planned Parenthood lab suffers data breach exposing information of 1.6 Million: What to know
Pre-Installed Malware on Cheap Android Phones Steals Crypto via Fake WhatsApp
Prodaft Offers "No Judgment" Deal to Buy Dark Web Accounts from Cybercrime Forum Users
Qilin and Devman Hacking Group Allegedly Breach ‘Feel Four,’ $60,000 Ransom Demanded
Ransomware attack on Bengaluru firm, hackers demand up to Rs 60 lakh
Ransomware attack on Sensata Technologies disrupted daily operations
Ransomware attacks surge 69% across global education sector
Ransomware disrupts some operations of kidney dialysis company DaVita
Remote access tools most frequently targeted as ransomware entry points
Report explores Russian cyber underground's global impact
ResolverRAT Campaign Targets Healthcare, Pharma via Phishing and DLL Side-Loading
Samsung Germany Data Breach Exposes Over 216,000 Customers’ Information
Sector by sector: How data breaches are wrecking bottom lines
Singapore: More than S$400,000 lost to phishing scams impersonating OneMotoring
Smishing Campaign Hits Toll Road Users with $5 Payment Scam
Stealthier Tycoon2FA phishing kit appears as PhaaS platforms fuel SVG exploitation
The CISO’s Guide to Managing Ransomware Threats in 2025
The quiet data breach hiding in AI workflows
This worrying Microsoft 365 phishing kit has seen a huge upgrade, experts warn
Thousands of Fortinet devices compromised: hackers lurk after previous breaches
Toward a Safer Digital ASEAN: Building Legal and Law Enforcement Synergy
Tycoon2FA phishing kit rolled out significant updates
US Blocks Foreign Governments from Acquiring Citizen Data
Vulnerability crush: organisations are being exploited via CrushFTP in widespread cyber attack
Why shutting down systems can backfire during a cyber attack
Yale hotel data held hostage, claims ransomware gang
Your favorite Android AI app might be spilling secrets – and hackers are watching
