Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and 
Dentons Senior Analyst, Washington DC
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 26th May and 1st June 2025.1st June
Coinbase hit by $400M data breach after Indian support staff bribed
Conti Ransomware Gang Exposed in Major Intelligence Leak
Fraudsters, murderers, students: who the GRU assembled a team of hacker provocateurs from and why it failed
Google Confirms Gmail Warning - How To Keep Your Email Account
GRU Hacker Unit Exposed After Journalists Access Unsecured Server
Indian call centre agents accused of leaking customer data in $400 million Coinbase hack
Motorway toll scams on the rise in France after holiday weekend
Nearly Three Years After Data Breach, T-Mobile Finally Begins Sending Settlement Payments, With Some Users Reporting They Received More Than Originally Expected
Ransomware 2.0 How AI-Powered Attacks Are Evolving
Where Did The Name 'Phishing' Come From?
31st May
19-year-old hacker breached Spain’s DGT, CNMC and more
Adidas issues warning to customers after details stolen in cyber attack
AI tools fuel surge in phishing, crypto scams and malware attacks
Australian businesses now have to fess up when they pay off ransomware criminals
Beware: Weaponized AI Tool Installers Infect Devices with Ransomware
Beware of Weaponized AI Tool Installers That Infect Your Devices With Ransomware
BitMEX Foils Lazarus Group’s Phishing Attempt, Uncovers Operational Lapses
BitMEX uncovers holes in Lazarus Group's operational security
Britain’s Companies Are Being Hacked
Data Breach Exposed 57K Healthcare System Patients' Info, Lawsuits Say
Exploit details for max severity Cisco IOS XE flaw now public
Interlock Ransomware Deploys New NodeSnake RAT in UK Attacks
Iowa County cyber attack response
Iowa County using outside vendor to restore services follow cyber-attack
LexisNexis Risk Solutions Data Breach Exposes 364,000 individuals personal Data
Massive data breach exposes 184 million passwords and logins
Merseyside Police warn public to be wary of phishing scams
Microsoft Reveals Techniques To Defending Against Advancing AiTM Attacks
Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump
New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora
Ransomware attacks cost Philippine-based firms $500,000 each
Russian Cyberattack Targets Greek Logistics Partner of Nespresso
Serviceaide Facing Multiple Class Action Lawsuits Over 483K-Record Data Breach
Threat Actors Leverage Google Apps Script To Host Phishing Websites
Threats and harassment: How a “data entry” job turned out to be a “pig butchering” scam
Tycoon2FA Infra Used by Dadsec Hacker Group to Steal Office365 Credentials
U.S. Department of Justice (DoJ) Seizes 4 Domains Supporting Cybercrime Crypting Services in Global Operation
Urgent alert for Americans as 184 million passwords leak in major data breach - what you must do now
30th May
96% of IT pros say AI agents are a security risk, but they're deploying them anyway
184 Million Passwords Leaked in Massive Unencrypted Data Breach: Experts Warn of Global Fallout
184,000,000 Usernames and Passwords Exposed in Extraordinary Data Breach - Apple, Microsoft, Facebook, Google, Netflix, Instagram, Spotify, Discord, Roblox and PayPal Users Affected
Adidas Canada alerts customers of data breach
Adidas Hit by Major Data Breach, Millions Potentially Affected
AI agents have access to key data across the enterprise
AI-driven phishing attacks surge against Australian targets in 2024
Australia: Ransomware reporting rules require all businesses to do a risk assessment
Australian ransomware victims now must tell the government if they pay up
Better Together: How MFA and Strong Password Practices Can Help Bolster Security
BitMEX Thwarts Lazarus Group Phishing Attempt Targeting Crypto Users
Bradford Health Services discloses data breach
China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil
Chinese Phishing Service Haozi Resurfaces, Fueling Criminal Profits
CISA Urged to Enrich Known Exploited Vulnerabilities (KEV) Catalog with More Contextual Data
Comprehensive Ransomware Mitigation Strategies for 2025 Enterprises
ConnectWise Hit by Cyberattack; Nation-State Actor Suspected in Targeted Breach
Considering cybersecurity: 9 ways to protect your hospital
Countering Spear Phishing with Advanced Email Security Solutions
Credential phishing facilitated by Google Apps Script exploitation
Criminals defeat human intelligence with fake AI installers they poison with ransomware
Cyber Threats Masquerading as AI Tool Installers Deploy CyberLock, LuckyGh0$t, Numero
Cyberattacks on M&S and Co-op trigger shift in UK online shopping habits
Dadsec Hacker Group Uses Tycoon2FA Infrastructure to Steal Office365 Credentials
Dark Web Profile: NightSpire Ransomware
Data breach at Missouri Department of Conservation exposed employees’ personal information
Data Breach Exposes Sensitive Info of Over 364,000 Americans
DDoS incident disrupts internet for thousands in Moscow
Delinea Report finds 69% of organisations breached by ransomware over past year
Deloitte Allegedly Suffers Major Data Breach - Source Code and GitHub Credentials Reportedly Leaked
Deloitte Data Breach: Alleged Leak of Source Code & GitHub Credentials
Department of Conservation reports data breach involving HIPAA-protected information
Detecting Evolving Phishing Campaigns in 2025 Cyber Environments
EDDIESTEALER Malware Uses ClickFix CAPTCHA to Steal Browser Data Across All Platforms
Eight things we learned from WhatsApp vs. NSO Group spyware lawsuit
Evolving attacks by the UTG-Q-015 hacking operation detailed
Fake AI software installers are spreading ransomware
FBI Flags Philippines Tech Company Behind Crypto Scam Infrastructure
Germany doxxes Conti ransomware and TrickBot ring leader
Global phishing campaign powered by Nifty infrastructure
Google Apps Script abused to launch dangerous phishing attacks
Hackers are exploiting critical flaw in vBulletin forum software
Hospitals in Maine, New Hampshire limit services after cyberattack on Catholic health organization
How one wrong click can infect your entire device: Staying safe online in 2025
How to actually get your money back if a phishing scam catches you out
How to Put Humans at the Forefront of Retail Cyber Defense
Indonesian Nuclear Energy Regulator BAPETEN Allegedly Breached
Interlock ransomware: what you need to know
Lafayette Federal Credit Union data breach leads to multiple class action lawsuits
Latrodectus malware detected on over 44,000 IP addresses
‘Legal Aid Agency data breach enabled by fragility of IT systems’
LexisNexis data breach affected over 360,000 people
Mandatory Ransomware Payment Disclosure Begins in Australia
Mandatory ransomware reporting: great, but tell us what’s being learned
Massive Data Breach Exposes 184 Million Login Credentials from Major Tech Platforms
Massive data breach exposes over 184 Million passwords: Banks, social media, government platforms affected
Melbourne-based 3P Corporation breached by Space Bears ransomware
Melbourne-based financial services and advice firm hit with cyber attack
Microsoft Reveals Techniques for Defending Against Evolving Adversary-in-the-Middle (AiTM) Attacks
Missouri Conservation Department employees’ health information leaked in data breach
Missouri Department of Conservation reports data breach involving HIPAA-protected information
Most high-traffic email domains still vulnerable to phishing
Multiple payloads deployed via fake AI tool installers
NetBird malware spread in advanced finance exec-targeted spear-phishing
New Apache InLong Vulnerability (CVE-2025-27522) Exposes Systems to Remote Code Execution Risks
New ChatGPT Scam Infects Users With Ransomware: ‘Exercise Extreme Caution’
New EDDIESTEALER Malware Bypasses Chrome's App-Bound Encryption to Steal Browser Data
North Carolina Energy Provider Settles Data Breach Lawsuit
Nova Scotia Power saw the potential for a cyber attack, but did too little too late
Nova Scotia Power says it believes it knows who stole customer data
Palo Alto Networks Warns of Escalating Ransomware Tactics Driven by Sophisticated Threat Alliances
Plea agreement ties 19-year-old to PowerSchool data breach
Police takes down AVCheck site used by cybercriminals to scan malware
Practice Resources Agrees to $1.5 Million Data Breach Settlement
Privacy nightmare: Microsoft OneDrive gives AI chatbot full read access to user content
PureHVNC RAT distributed via job lures in new phishing attack
Ransomware attack on DataPost compromises personal data of 146 Income Insurance policyholders
Ransomware attack on Singapore vendor DataPost exposes data of income insurance customers
Ransomware, Rewritten: How AI Is Fueling Both Sides of the Fight
Safari Flaw Exploited by BitM Attack to Steal User Login Data
Security Leaders Share Thoughts on Kettering Outage
Serviceaide Data Leak Impacts Nearly 500,000 Catholic Health Patients
St. Cloud Alerts Residents to Potential Data Breach Following 2024 Cyber Incident
System Outage From an Apparent Interlock Ransomware Attack Disrupts Operations at Kettering Health
The hidden threat of ‘shadow AV’
Threat Actor Claims TikTok Breach, Puts 428 Million Records Up for Sale
Threat Actors Exploit Google Apps Script to Host Phishing Sites
U.S. and Global Law Enforcement Agencies Team Up to Smash Cybercrime Ring by Seizing Hacker Havens
U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud
UK allocates over £1 billion to bolster cyber and electromagnetic warfare capabilities
UK Ministry of Defence (MoD) Launches New Cyber Warfare Command
Unigaz Allegedly Targeted in MedusaLocker Ransomware Attack, Sensitive Data Leaked
US Banks Urge Securities and Exchange Commission (SEC) to Repeal Cyber Disclosure Rule
US blacklists Philippine tech firm accused of enabling global crypto scams
US Environmental Protection Agency Allegedly Breached, Over 100GB of Data Offered for Sale
US military IT specialist arrested for allegedly trying to leak secrets to foreign government
Using AI to outsmart AI-driven phishing scams
Victoria’s Secret reportedly victim of cyber attack, shuts down website
Victoria’s Secret takes website offline after security incident
Victoria’s Secret US Website Restored After Security Incident
Victoria’s Secret Website Down After Security Incident
Vietnam-linked hackers using fake AI video tools to spread malware
Why privacy in blockchain must start with open source
Why schools take a long time to report ransomware
29th May
9 Million FWD Vietnam Insurance Records Allegedly Exposed
$12M Vanishes in Crypto Heist Targeting Cork Protocol’s Depeg Market
69% of organisations hit by ransomware in the last 12 months
364,333 Americans At Risk As Data Giant Discovers Breach – Social Security Numbers, Names and Other Sensitive Info Stolen
A third of UK fintechs put customers data at risk of cyber attack
Adidas Confirms Data Breach, Security Leaders Weigh In
Adidas data breach highlights supply chain risk for retailers
Adidas Data Breach Linked to Third-Party Vendor
Adidas faces major data breach, exposing customer data
Adidas issues password warning after data breach
AI is a Ticking Time Bomb for Your Data, Reveals New Report From Varonis
AI-fuelled scams & phishing soar in New Zealand
AI-powered ransomware surge despite fewer ransoms paid
Alleged Data Breach Affects Estonian Logistics Tracking Website tymap.app
Alliance Healthcare Italy Allegedly Targeted by Ransomware Attack
An Enterprise Playbook to Defending Against Volt Typhoon
Apple Safari exposes users to fullscreen browser-in-the-middle attacks
APT41 Leveraging Google Calendar for C2, Distributes TOUGHPROGRESS Malware
Australia: The businesses that must report ransomware payments
Carousell phishing scam leads to 40 cases and HK$4.6m loss, including HK$650K from throat lozenge fraud
Chief Financial Officers (CFOs) in the Crosshairs as Sophisticated NetBird Spear-Phishing Campaign Unfolds
China-linked hackers exploit Google Calendar in cyberattacks on governments
Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations
CISOs prioritize AI-driven automation to optimize cybersecurity spending
ConnectWise breached in cyberattack linked to nation-state hackers
ConnectWise Confirms Hack, “Very Small Number” of Customers Affected
ConnectWise says nation-state attack targeted multiple ScreenConnect customers
Cork Protocol Hacked: Hacker Swaps $12M for Ethereum in Daring Move
Cybercriminals exploit AI hype to spread ransomware, malware
Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools
Cybersecurity Teams Generate Average of $36M in Business Growth
Czech Government Attributes 2022 Cyberattack to Chinese State-Backed APT31
Czech government holds China responsible for cyber-attack on Ministry of Foreign Affairs network
Czech Republic says China behind cyberattack on ministry, embassy rejects accusations
Data broker LexisNexis discloses data breach affecting 364,000 people
Data Protection Gap Analysis: Identifying Weak Spots Before Regulators Do
DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints
DragonForce Ransomware Group Exploits MSP’s RMM Software in Attacks
Empowering machine learning for robust cyber-attack prevention in online retail: an integrative analysis
Estonia issues arrest warrant over major pharmacy data breach
Facebook and email users urged to change passwords after massive data breach uncovered
Fake Bitdefender website used to spread infostealer malware
Fake ChatGPT and InVideo AI Downloads Deliver Ransomware
Fullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal Credentials in Safari
Global ransomware victimization remains elevated
Global retail giant removes website and pauses all online orders after crippling cyber attack
'Haozi' Gang Sells Turnkey Phishing Tools to Amateurs
How CISOs can regain ground in the AI fraud war
Indonesia’s National University Admissions Body (SNPMB) Allegedly Suffers Major Data Breach
Infinox Allegedly Targeted in Ransomware Attack by Arkana Group
Interlock Ransomware deploys NodeSnake RAT to Establish Persistent Access to Corporate Networks
Iranian International Behind Robbinhood Ransomware Scheme Pleads Guilty
Is Victoria's Secret Facing A Data Breach? Company Responds After Online Shutdown
Israel: Shin Bet foils dozens of Iranian phishing attempts against senior officials
Israel: Shin Bet says it foiled 85 Iranian cyberattacks, including phishing attempts posing as Israeli official
Israel: Shin Bet thwarts dozens of Iranian cyberattacks
It took 17 minutes for an attacker to uncork $12M in crypto
LexisNexis data breach exposes 364,000 personal records
LexisNexis data breach exposes personal information
Major data leak hits Unimed, 14 Million patient-doctor messages exposed
Major international brand hit by data breach in South Africa
Malware Analysis Reveals Sophisticated RAT With Corrupted Headers
Massive Data Breach Exposes 184 Million Login Credentials
Massive data breach exposes 184 million passwords and logins
Massive data breach exposes 200 million passwords from tech giants
More Than 1.8 Million Individuals Affected by 2024 ALN Medical Management Data Breach
NATO condemns Chinese cyber attack on Czech ministry
Nearly 1 million ransomware detections in India in 2024, threats grow more aggressive
New Browser Exploit Technique Undermines Phishing Detection
New Malware Spotted Corrupts Its Own Headers to Block Analysis
New Russian-Linked Hacker Group ‘Void Blizzard’ Targets Western Critical Infrastructure
New Spear-Phishing Attack Targeting Financial Executives by Deploying NetBird Malware
New Spear-Phishing Campaign Targets Financial Executives with NetBird Malware
New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers
North Korea’s Laptop Farm Scam: ‘Something We’d Never Seen Before’
Nova Scotia Power CEO one of 280K customers impacted by data breach
Novel NodeSnake RAT deployed in university-targeted Interlock ransomware intrusions
Online shopping safety warning to M&S shoppers following cyber attack
Over 90% of Top Email Domains Vulnerable to Spoofing Attacks
Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin
Over 200,000 Customers of French Dealership Auto-ici Allegedly Exposed in Data Breach
Over 184 million passwords from Apple, Google, Facebook, and Microsoft leaked online, claims researcher
Palo Alto Networks Releases Unit 42 Ransomware Report
Pay up: Understanding Australia’s new ransomware reporting requirements
Pig butchering facilitator sanctioned for scamming Americans out of $200M, US Treasury says
Possible ransomware attack disrupts Maine and New Hampshire Covenant Health locations
Red teaming - why cybersecurity’s coolest job is basically Top Gun for hackers
Research Finds Training Produces Huge Reductions in Phishing Attack Success
Russia-linked hackers posing as journalists attempt to attack UK Defence Ministry
Russian-linked hackers posing as journalists targeted Ministry of Defence, government says
Salvation Army purportedly subjected to Chaos ransomware attack
Scammers impersonate New Jersey Motor Vehicle Commission (MVC) in phishing text scheme demanding fake traffic payments
Sheboygan Ransomware Breach Compromises Data of 67,000+ Residents
Singapore: At least 146 Income Insurance customers hit by ransomware attack on data handling firm
Singapore: Details of 146 Income Insurance policyholders compromised after cyber attack of external vendor
Some Victims of 2024 City of Sheboygan Data Breach Just Now Being Notified
South Africa under siege: Why cyber security must be a business imperative
Southeast Asian provider of ‘infrastructure laundering’ for scams is sanctioned by US
Spanish Police Dismantle Cybercriminal Network, Hacker ‘Alcasec’ and Former Secretary of State for Security Arrested
Sui Community Launches Vote on Recovering $162,000,000 in Stolen Crypto From Hacker
That LexisNexis Data Breach Was So Bad, It Might Lead to a Class-Action Lawsuit
Thousands of ASUS Routers Hijacked in Stealthy Backdoor Campaign
Thousands of ASUS routers infected with backdoor that survives firmware updates
Threat actors abuse Google Apps Script in evasive phishing attacks
Threat Actors Exploit Top Domain Zones for Cyber Attacks
Tiffany & Co. data breach affects South Korean customers
Two NHS trusts affected by cyber attack on mobile phone software
UChicago Medicine alerts 38,000 patients of data breach linked to third-party vendor
Unheard of: Chinese hackers use Google Calendar to control malware and steal data
US government sanctions tech company involved in cyber scams
US sanctions firm linked to cyber scams behind $200 million in losses
UTG-Q-015 Hackers Launch Massive Brute-Force Attacks on Government Web Servers
Victoria’s Secret Hit By ‘Security Incident’ After Attacks on UK Retailers
Victoria’s Secret takes down website after security incident
Victoria’s Secret temporarily takes website offline due to security issue
Victoria’s Secret website down as company investigates security incident
Victoria’s Secret Website Down After Security Incident
Victoria’s Secret website hit by cyber attack
Void Blizzard Hacker Group Escalates Cyber Attacks on NATO and Ukraine
What CISOs can learn from the frontlines of fintech cybersecurity
What The LockBit Data Breach Reveals About Its Inner Workings
Why ransomware attack simulation training is essential to prepare for cyberattacks
Your IT Infrastructure is Hybrid. So Why Not Your Security Model?
28th May
69% of Organizations Breached by Ransomware Over Past Year, Delinea Report Finds
251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and Elasticsearch
38,000 UChicago Medicine patients affected by debt collector's data breach, officials say
364,000 Impacted by Data Breach at LexisNexis Risk Solutions
Adidas admits data breach after third-party hack
Adidas Admits Data Breach Following Third-Party Attack
Adidas confirms customer data stolen in third-party breach, but still no word if US or EU customers impacted
Adidas confirms customer data was accessed during cyber attack
Adidas Confirms Data Breach, Customer Contact Details Exposed
Adidas contacts customers who used this service after details stolen in cyber attack
Adidas Customer Data Stolen in Third-Party Attack
Adidas hit by cyber attack as customer contact details stolen
Adidas hit by cyber attack in which customer data compromised
Adidas Races to Contain Customer Service Data Breach
Adidas tells customers to look out for key message after cyber attack
Alleged Access to Over 70 of Dubai Corporations Offered for Sale
Amazon Spain Faces Alleged 5.1 Million User Data Leak
Apple blocked over $9 billion in App Store fraud in five years
Apple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store Threats
Apple Stops 1.9M Risky Apps, Terminates 146K Fraud Accounts in 2024
APT41 malware abuses Google Calendar for stealthy C2 communication
Attack on LexisNexis Risk Solutions exposes data on 300k+
Attackers hit MSP, use its Remote Monitoring and Management (RMM) software to deliver ransomware to clients
Australia: Queensland law firm investigating breach by SafePay ransomware
Australian Telecom Superloop’s Portal Access Allegedly Offered for Sale
Beware of the weakest link in cybersecurity
Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor
Building a Whole School Approach to Cybersecurity
Businesses Face Identity Theft Too – Here’s How to Stay Ahead
Canada: Beware of scammers trying to cash in on Nova Scotia Power cyber attack
Canada: Federal privacy commissioner launches investigation into Nova Scotia Power data breach
Cetus Users Set for Full Refund as $260M Recovery Plan Passes Sui Community Vote
Chinese spies blamed for attempted hack on Czech government network
Co-op thanks customers for patience during cyber attack
Coca-Cola employee details spilled by Everest ransomware gang
Consumer data stolen in cyber attack, confirms Adidas
Crossroads Trading data breach results in multiple class action lawsuits
Crypto platform mulls 100% compensation after $223M hack
Customer data exposed in Adidas cyber attack
Cyber attack targets University Hospital Southampton
Cyber experts urge shoppers to add security feature to ‘all accounts’ following hacks on UK stores
Czech Republic Accuses China of Government Hack
Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack
Czechia blames China for Ministry of Foreign Affairs cyberattack
Dark Partners cybercrime gang fuels large-scale crypto heists
Data breach affects 38,000 UChicago Medicine patients
Data breach exposes passwords from Google and other tech giants
Data Breaches, Phishing Attempts, and Scams Surge in Q1 2025
Data broker giant LexisNexis says breach exposed personal information of over 364,000 people
Data review shows nearly 68,000 people impacted by Sheboygan network breach, city says
Delinea report finds 69% of firms hit by ransomware last year
DragonForce attacks MSP and spreads ransomware to customers
DragonForce double-whammy: First hit an MSP, then use Remote Monitoring and Management (RMM) software to push ransomware
DragonForce Exploits SimpleHelp Flaws in Targeted MSP Ransomware Attack
DragonForce Ransomware Actors Exploits RMM Tools to Gain Access to Organizations
DragonForce ransomware hacks SimpleHelp RMM tool to attack MSPs
Estonia issues arrest warrant for Moroccan wanted for major pharmacy data breach
Everest ransomware gang has a new cash cow – the Middle East, and we’ll tell you why
Fake Bitdefender Site Spreads Trio of Malware Tools
Fake AI Video Tool Ads on Facebook, LinkedIn Spread Infostealers
Fall of LockBit, the Russian ransomware giant
Federal Trade Commission (FTC) Orders GoDaddy to Bolster Its Security After Years of Attacks
Flagship Bank Facing Alleged Ransomware Attack by Akira Group
From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign
Fujipoly Ltd Allegedly Targeted by Spacebears Ransomware
GitHub becomes go-to platform for malware delivery across Europe
Gone phishing: the rise of retail cyber crime in four charts
Google warns of Vietnam-based hackers using bogus AI video generators to spread malware
Google, Facebook and Apple passwords exposed in massive data breach affecting 184 million users
Guilt admitted by RobbinHood ransomware attacker
Hacker Swaps $12M to Ethereum From Cork Protocol Attack
Hackers Exploit SimpleHelp RMM Tool to Deploy DragonForce Ransomware
Hackers say they’ve snatched data from the Salvation Army
Has There Been Another Roblox Data Breach?
How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds
Instagram Boss Warns of ‘Sophisticated’ Google Phishing Scam
Interlock ransomware gang deploys new NodeSnake RAT on universities
Iranian hacker admits role in Baltimore ransomware attack
Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore
Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks
Iranian man pleads guilty to ransomware attacks that targeted Baltimore, other US cities
Iranian national in US pleads guilty in Baltimore ransomware attack
Ivanti Vulnerability Exploit Could Expose UK NHS Data
Kettering Health ERs now fully operational, as system continues cyber attack recovery
Legal Aid Data Breach Leaks Millions of Sensitive Records, Ministry of Justice’s Poor Cybersecurity Practices Slammed
LexisNexis breach: Data broker hack exposed trove of sensitive information, including Social Security numbers
LexisNexis Data Breach Exposes Social Security Numbers and Personal Data of 364,000 Americans
LexisNexis Risk Solutions says 364,000 impacted by breach involving GitHub data
Major data leak exposes 1.6 Million Etsy, TikTok Shop customer emails
Malware Hidden in AI Models on PyPI Targets Alibaba AI Labs Users
Massive cyberattacks highlight the need for countries to increase investment in digital security
Massive Data Breach Exposes 184 Million Login Credentials: What to Do
Massive security blunder: Russian nuclear site blueprints exposed in public procurement database
MathWorks confirms ransomware attack amid ongoing outages
MATLAB With Over 5 Million Customers Suffers Ransomware Attack
MATLAB, Serving Over 5 Million Users, Hit by Ransomware Attack
Mediclinic targeted in alleged Everest ransomware attack
Mental Denial of Service: Narrative Malware and the Future of Resilience
Meta begins training AI using EU citizens’ data, but the fight’s not over yet
Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say
Microsoft exposes Laundry Bear targeting critical infrastructure
Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access - Even When Uploading Just One File
Microsoft OneDrive Flaw Exposes Users to Data Overreach Risks
Mimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and Proxyware
More than $12 million stolen from crypto platform Cork Protocol
More than 40% of Fintech Breaches Linked to Third-Party Vendors
New Phishing Campaign Uses DBatLoader to Drop Remcos RAT: What Analysts Need to Know
New PumaBot botnet brute forces SSH credentials to breach devices
New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto
New Russian State Hacking Group Hits Europe and North America
NHS patient data at risk in major cyber attack
NHS trusts' data 'stolen' in cyberattack
NHS trusts hit by cyber attack, patient data feared stolen
Nova Scotia Power confirms ransomware attack, no ransom paid
One in four ransomware payers left with missing data
OneDrive File Picker Flaw Gives Apps Full Access to User Drives
Oregon becomes second state to ban sale of precise geolocation data
Over 200K fraudulent developers were kicked out of the Apple App Store last year
Over 360K exposed after Christmas hack at data analytics giant
OxBykes reports data breach caused by App misconfiguration
Phishing email impersonating Monterey County sheriff targets thousands, officials warn
Ransomware attack against Wisconsin city hits almost 67K
Ransomware attack disrupts MathWorks services, investigation ongoing
Ransomware gang claims cyberattack on Mediclinic, threatens data leak
RE/MAX deals with alleged 150GB data theft: Medusa ransomware demands $200K
Revenue Cycle Management Firm's Data Breach Total Soars
Robbinhood Ransomware Operator Charged for Attacking Government and Private Networks
Russia-linked hackers are attacking small businesses using fake Microsoft Entra pages
Russian hackers responsible for theft of personal data of tens of thousands Dutch police officers
Salvation Army suffers alleged ransomware attack
Security Gaps Are Leaving Firms Wide Open to Ransomware
SilentWerewolf Attack Combines Legitimate Tools with Code Obfuscation for Stealthy Infiltration
Sri Lanka: Pensions Department Hit By Ransomware Attack; No Data Loss Reported
Sri Lanka's Pensions Department Hit By Cloak Ransomware, 617GB Of Data Allegedly Leaked
Staggering data breach at New Jersey hospital impacts over 57,000. Are you one of them?
Sui network votes to hack the hacker who drained $220m from Cetus
Sygnia Uncovers North Korean Hacker Posing as Employee in Insider Cyberattack
The latest in phishing scams: stealing your information through fake online forms
The rise of AI-driven phishing attacks: A growing threat and the power of smarter defenses
The Salvation Army Allegedly Breached by Threat Actor Chaos
Top math software and services platform still offline following ransomware attack
UChicago Med confirms data breach of patient information
Ukraine tallies up Russian cyberattacks on local media since start of war
Victims react after data breach in Baltimore Archdiocese abuse case
Victoria’s Secret hit by outages as it battles security incident
Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites
West Lothian Council acknowledges data loss from cyber attack
Who’s Afraid of Ransomware?
Worldwide Operation Shuts Down Hundreds of Ransomware Servers and Domains, Ending Key Attack Infrastructure
27th May
4.5% of breaches now extend to fourth parties
5 Largest Ransomware Attacks Ever Recorded
8.75 million hit by online threats in South Africa in Q1
94 billion browser cookies are being sold to hackers on Telegram
840k-patient per year hospital empire fights ransomware attack
67,947 Americans Warned as US City Data Breach May Have Exposed Names, Dates of Birth, Social Security Numbers and More
Adidas become latest victims of cyber attack as customers warned of data breach
Adidas confirms customer data stolen in cyber attack
Adidas Confirms Cyber Attack, Customer Data Stolen
Adidas Data Breach - Customer Data Exposed Via Third-Party Service Provider
Adidas Data Breach Exposes Customer Contact Info
Adidas Discloses Cyber-Attack, Customer Data Compromised
Adidas Falls Victim to Third-Party Data Breach
Adidas hit by major cyber attack as customer details exposed
Adidas loses customer data in latest cyber attack
Adidas says customer data stolen in cyber attack
Adidas Says Cyberattack Targeted Customers’ Personal Information, Credit Card Data Marked ‘Safe’ From Breach
Adidas warns cyber attack stole customer data
Adidas warns of data breach after customer service provider hack
Africa faces rising ransomware threat, warns Kaspersky
After Pahalgam Attack, How Pakistan Unleashed Cyber Terrorism On India
AI is perfecting scam emails, making phishing hard to catch
Akira Ransomware Group Claims Breach of Laboratorios Belloch, Exposing Sensitive Data
Alleged Data Breach at Bangladesh Road Ministry
Anti-Corruption Platform Ipaidabribe.com Allegedly Suffers Major Data Breach
Cash-strapped university facing a class action lawsuit over data breach
China accuses Taiwan-linked group of cyberattack on local tech company
China, Taiwan trade accusations over cyberattacks
Coca-Cola Denies Ultimatum: Everest Ransomware Group Dumps Employee Data Due to Unpaid Ransom
Coca-Cola Europacific Partners targeted in major data breach
Coca-Cola ignores ransom demand, hackers dump employee data
Coinbase Data Breach Exposes Crypto Founders: Security Risks and Trading Implications in 2025
Coinbase faces legal action following data breach impacting more than 69k customers
Cooper Health System data breach affects nearly 60,000 individuals
Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets
Data Breach at Alera Exposed Data of More Than 10,000 Individuals
Data breach at KBC Securities Services: financial information leaked to thousands of customers
DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers
DragonForce looking to usurp other ransomware gangs
DragonForce ransomware abuses SimpleHelp in MSP supply chain attack
DragonForce Ransomware Leveraged in MSP Attack Using RMM Tool
Dutch intelligence unmasks previously unknown Russian hacking group 'Laundry Bear'
Elit Avia allegedly targeted by ransomware gang, crew data leaked
Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers
Europol, as part of Operation Endgame 2.0, destroyed the infrastructure of hacker groups and paralyzed their operations
Everest Ransomware Leaks Coca-Cola Employee Data Online
FBI Warns about Silent Ransom Group Targeting Law Firms
FBI warns legal firms of Luna Moth extortion attacks where hackers will call their office
French ISP ‘Free’ 2024 Data Breach Exposed Almost 14 Million User Accounts
Germany raises alarm over Windows Server 2025 flaw rated 9.9/10
GitLab ‘Vulnerability Highlights the Double-Edged Nature of AI Assistants’
Global Cyber Raid: ₹190 Crore Ransomware Network Crushed Were You A Target?
Global data breach affects 184 million users, no damage reported in Pakistan
Governments Urge Organizations to Prioritize SIEM/SOAR Adoption
Guangzhou police attribute cyberattack on tech company to hacker group allegedly linked to Taiwan’s Democratic Progressive Party (DPP)
Hackers Are Calling Your Office: FBI Alerts Law Firms to Luna Moth's Stealth Phishing Campaign
Hackers Mimic OneNote Login to Steal Office365 & Outlook Credentials
Hackers steal Adidas customer data in cyber attack
Hackers Use Fake OneNote Login to Capture Office365 and Outlook Credentials
Hong Kong Monetary Authority (HKMA) Warns Public About Fraudulent Banking Websites and Phishing Scams
How CISOs can defend against Scattered Spider ransomware attacks
How Does External Attack Surface Management (EASM) Go Beyond Vulnerability Management?
How well do you know your remote IT worker?
Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack
Iranian national admits to Greenville City Hall ransomware attack
Iranian pleads guilty to launching Baltimore ransomware attack, faces 30 years behind bars
Iranian pleads guilty to RobbinHood ransomware attacks, faces 30 years
Jordan’s major bank data stolen, claim hackers
Kettering Health radiation oncology back to treating patients after cyber attack
Kettering Health says radiation oncology is back online after ransomware attack
'Kisses from Prague': The fall of a Russian ransomware giant
Law Firms Warned of Silent Ransom Group Attacks
Legal Practice Board of Western Australia confirms Dire Wolf ransomware attack
Major hack exposes 184 million Apple and Google accounts: Change your passwords NOW
Malicious Machine Learning Model Attack Discovered on PyPI
Marks & Spencer (M&S) cyber attack latest as customers warned of scam emails
Marks & Spencer (M&S) cyber attack probe looks at possible IT helpdesk hack, online fashion still 'weeks away' from return
Marlboro-Chesterfield Pathology breach affected over 235,000 patients
Massive 47GB Data Breach Exposes Millions Of Passwords For Google, Netflix And More
MathWorks, Creator of MATLAB, Confirms Ransomware Attack
MATLAB developer bringing systems back online following ransomware attack
MATLAB developer confirms ransomware attack behind service outage
Meta wants to use your content to train its AI, and no GDPR will stop it
Microsoft, Dutch security agencies lift veil on Laundry Bear cyber espionage group
More than 184 million passwords exposed in massive data breach - Apple, Google, Microsoft and more
Nationwide Recovery Service Data Breach Victim List Grows
Nearly 70,000 impacted by ransomware attack on Sheboygan, Wisconsin
Nearly 280,000 impacted by Nova Scotia Power ransomware hack
New Jersey hospital hack exposes patients’ personal details
New Russian Cyber Threat ‘Laundry Bear’ Hits Western Targets
New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency
New York Department of Motor Vehicles (DMV) warns of latest fraudulent text message scam. What to do if you're targeted
Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom
Operation ENDGAME cracks down on ransomware
Pakistan’s National Cyber Emergency Response Team (CERT) warns after massive global data breach affecting 180 million users
Pakistanis Asked to Change All Social Media Passwords after Data Theft
Pakistanis Urged To Immediately Change All Passwords After Massive Global Data Breach
Palo Alto Networks Report Identifies Evolving Ransomware Tactics in Asia Pacific
Planned Parenthood Patients File Lawsuits Over Laboratory Services Cooperative Data Breach
Preparing for the UK's Cyber Security and Resilience Bill
Preparing your organisation for a potential ransomware payment ban
Ransomware attack on MATLAB developer MathWorks - licensing center still locked down
Ransomware attacks on banks: trends and prevention strategies
Regulator has closed case in fundraising platform after data breach
Robbinhood ransomware: Iranian man pleads guilty to cyber crime that cost US government millions
Russia-Affiliated Void Blizzard Impersonates European Defense & Security Summit in Phishing Emails
Russia-Linked Hackers Target Tajikistan Government with Weaponized Word Documents
Russian hackers behind attacks on police, NATO, Dutch intelligence says
Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages
Russian hospital programmer gets 14 years for leaking soldier data to Ukraine
Russian Laundry Bear cyberspies linked to Dutch Police hack
SafePay ransomware hits over 235K Marlboro-Chesterfield Pathology patients
Scam email imitating Dallas’ planning department asks for thousands of dollars in fees
Securing Healthcare: Safeguarding Patient Care and Privacy Through Agile Cyber Strategies
South Korea expands data breach investigation to KT and LG Uplus
Taiwan's Democratic Progressive Party (DPP) authorities found organizing cyberattacks against Guangzhou tech company
Threat Actors Use Fake DocuSign Notifications to Steal Corporate Data
United Airlines Faces Alleged Data Breach 272 Million Records Exposed
Unsophisticated Actors, Poor Hygiene Prompt Critical Infrastructure (CI) Alert for Oil & Gas
US Government Launches Audit of NIST’s National Vulnerability Database
US law firms facing Luna Moth ransomware threat
Vulnerabilities found in NASA’s open source software
Warning issued to anyone who gets Marks and Spencer (M&S) e-mails after cyber attack
What Is Anti-Ransomware? Why Detection Alone Won’t Stop the Next Attack
What will be the impact of Operation Endgame?
Why app modernization can leave you less secure
Why Quiet Expertise No Longer Wins Cybersecurity Clients
Word to the wise: Beware of fake Docusign emails
26th May
$2.5M Gone in Hours - Victim Hit Twice in Sophisticated Stablecoin Phishing Scam
$2.5 Million Vanishes in Double Crypto Phishing Scam
$4.4 Million Settlement Agreed to Resolve WellNow Urgent Care Data Breach Litigation
52% of Security Operations Center (SOC) Teams Are Overworked, New Report Shows
Adidas confirms customers data breach
Adidas Confirms Data Breach Impacting Customers Who Interacted with Help Desk in Turkiye
Adidas Confirms Data Breach of Customer Information
Adidas next retailer hit by cyber attack
AI forces security leaders to rethink hybrid cloud strategies
AI, Ransomware, and IoT Dominate Kaspersky’s Cybersecurity Outlook for META Region
Alleged 500GB Data Leak Impacts Chinese Industrial Gas Giant Messer Group
Asia-Pacific region experiences 13% growth in cyber-attacks
BIOS under attack: hackers increasingly focus on boot threats
Cellcom hit by major cyber attack, disrupting voice and text services
Chevrolet retailer in Brazil allegedly hit by cyberattack
Chinese Hackers Exploit Cityworks 0-Day to Hit US Local Governments
Chinese Hackers Exploit Cityworks Flaw to Target US Local Governments
Coinbase Breach Explained: Bribed Support Agents, Stolen Data and a $20M Bounty
Coinbase faces another data breach lawsuit claiming stock drop damages
Coinbase Faces Class Action Lawsuit Over Data Breach and UK Regulatory Violations
Cooper Health System Data Breach Affects Almost 60,000 Individuals
Crypto investor loses $2.6M in stablecoins in double phishing scam
Crypto Investor Suffers $2.6 Million Loss in Stablecoins Through Sophisticated Double Phishing Scam
Cyber attack to cost Marks & Spencer (M&S) £300 million, operations disrupted through July
Data Breach Fallout: Coinbase Sued Over Hidden UK Regulator Deal
Data breach hits over 180 million users globally, including Pakistan
Electricity supply emerges as prime cyber attack target
Energy provider confirms ransomware attack and data breach
EsSalud Peruvian Health Insurance Data Allegedly Leaked Online
Europol, as part of Operation Endgame 2.0, destroyed the infrastructure of hacker groups and paralyzed their work
FBI warns law firms they’re being targeted by hackers
Former employees pursue class action over ‘concealed’ data breach at Interior Health
Fraud conviction overturned for DeFi exploiter behind $114M Mango Markets manipulation
Global Law Enforcement Cripples Ransomware Infrastructure
Hacker Steals $223 Million From Crypto Platform Cetus
Hackers Breach Indonesia's Perludem Site to Promote Online Gambling
Hackers just hit a $5 Billion hospital empire, demand ransom
Hackers steal $2.6M in double crypto phishing scam
Hacktivism Reborn: How a Fading Cyber Threat Has Become a Modern Battleground
Here’s how you can protect yourself from being scammed with deepfakes
How to Avoid Common Crypto Scams and Phishing Attacks in 2025
Hundreds demand compensation following SK Telecom data breach that affected millions
Impersonating Meta, Powered by AppSheet: A Rising Phishing Campaign Exploits Trusted Platforms to Evade Detection
India Meteorological Department (IMD) restricts access to weather data over fear of cyber attack
Investigation into SK Telecom data breach expands to KT, LG Uplus
Investor Sues Coinbase Over Stock Slide Tied to Data Breach and $4.5 Million Financial Conduct Authority (FCA) Fine
Kaspersky Identifies Evolving Ransomware and Cybersecurity Trends in META Region
Luxury aviation services firm allegedly breached, staff details leaked
Major AT&T leak exposed 31 Million records, hackers claim
Major data breach as 184 million Apple, Netflix, Google logins leaked
Marks & Spencer (M&S) boss issues major cyber attack update after online orders paused
Marks & Spencer (M&S) hack may have been caused by security issues at Indian IT giant Tata Consultancy Services
Marks and Spencer chief gives online ordering update after 'cyber incident'
Marlboro-Chesterfield Pathology data breach impacted 235,911 individuals
Massive Data Breach Exposes 184 Million Login Credentials
Massive Global Data Breach Compromises 184 Million Google, Microsoft, and Social Media Accounts
Massive global data breach exposes over 180 million user accounts
Mumbai Advertising Firm Hit by Ransomware Attack, Hackers Demand Bitcoin
National Institute of Standards and Technology (NIST) Introduces New Metric to Measure Likelihood of Vulnerability Exploits
National Institute of Standards and Technology (NIST) proposes new metric to gauge exploited vulnerabilities
Nigeria, South Africa among countries with escalated online threats in Q1 2025
No Power Outage, Just a Data One: Nova Scotia Hit by Ransomware Surge
Nova Scotia Power confirms data breach, customer information compromised
Nova Scotia Power Confirms Ransomware Attack - 280k Customers Affected
Nova Scotia Power Confirms Ransomware Attack, 280k Notified of Data Breach
Nova Scotia Power confirms 'sophisticated' ransomware attack
Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto
Over 180 million users’ passwords, login credentials stolen in massive data breach, says national cyber security body
Pakistan: National Cyber Emergency Response Team (PKCERT) issues urgent warning following massive social media data breach
Phishing attacks exploit AppSheet to mimic Meta & evade defences
Phishing Tactics Are Evolving - Here’s How Cybercriminals Are Getting Smarter
Probe into SK Telecom data breach expands to KT, LG Uplus
Ransomware a leading cause of U.S. health data breaches
“Reject all” cookies button must be present and visible, German court says
Researchers Drop Proof-of-Concept (PoC) for Fortinet CVE-2025-32756, Urging Quick Patching
Salesforce hack at largest Coca-Cola bottler
Scammers Use Fake Ledger Letters to Steal Crypto Wallet Info
SilverRAT Source Code Leaked Online: Here’s What You Need to Know
Sophisticated Hacker Group TA-ShadowCricket Attacking Government & Enterprise Networks
Staying one step ahead of ransomware attacks in 2025
Street-Level QR Phishing: Cybercriminals Take Social Engineering to the Real World
TA-ShadowCricket: Sophisticated Hacker Group Targeting Government and Enterprise Networks
This dangerous new phishing scam spoofs a top Google program to try and hack Facebook accounts
Tiffany confirms data breach in South Korea following Dior incident
Trojanized Version of Popular Password Manager KeePass Distributed Via Malicious Search Ads, Fueled Extended Campaign of Ransomware Attacks
U.S. Banking Associations Petition Securities and Exchange Commission (SEC) to Rescind Cyber Breach Reporting Mandate
UK, US Police Target Ransomware Gangs In Latest Action
Unsecured database leak exposes 184 million login records from major technology platforms
What happens when a business is targeted by a cyber attack?
Why layoffs increase cybersecurity risks
Zscaler ThreatLabz 2025 Phishing Report: Phishing Evolves With GenAI
