Welcome to DBD. Cybercrime made global headlines in 2025. Attacks on well-known brands and organizations have raised public awareness of the severity, frequency and impact of cyber attacks. Ransomware attacks are at their highest ever recorded, and 2026 has the potential to be even worse, as cyber criminals continue to extort their victims, with little chance of being brought to justice. On a lighter note, I'd like to take this opportunity to wish you all a very Merry Christmas and all the best for the New Year. Thanks again for all your support. Stay safe. :)
Dentons Senior Analyst, Washington D.C.
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 17th November and 23rd November 2025.23rd November
A hacker group has issued an ultimatum after claiming to have 90 GB of Petrobras data, exposing a flaw in a supplier, raising concerns about weaknesses in the security chain, and pressuring the state-owned company for an immediate response
Cl0p Ransomware Strikes Globally: Cox Enterprises Hit - 9,479 Users’ Data Exposed via Oracle EBS Zero-Day
Conservative MPs have financial records leaked in party data breach
Critical 7-Zip Vulnerability With Public Exploit Requires Manual Update
Cyber attack causes data exposure, loss of emergency warnings in Jackson County
Cyber Attack Disrupts Key Financial Platforms Amidst Aerodrome and Velodrome Merger
Fake Shopping Websites and Phishing Attacks Spiking Ahead of Black Friday
Harvard University cyberattack data breach exposes alumni, donors, students and faculty records
Harvard University hit by major data breach after phishing call; alumni, donor data exposed
Harvard University Investigates Major Data Breach Following Phishing Scam
Iberia discloses customer data leak after vendor security breach
Iberia discloses security incident tied to supplier breach
India: APK file in fake SBI Aadhaar update compromises WhatsApp groups of ministers, officials, journalists in cyber attack
Israel: Cyber threats spike 150% since October 2023, Israeli healthcare most vulnerable
Mortgage Data Breach Hits JPMorgan, Citi and Morgan Stanley After Large-Scale Vendor Cyberattack
Millions of Americans exposed after automotive platform breach, hackers say
Over $18B in Potential Financial Losses from Ransomware Attacks on Manufacturing Sector Reported in 2025
Possible Data Breach Hits Clients of Major US Banks
South Korea: Repeat Voice Phishing Offender Sentenced to 3 Years
Spanish Flag Carrier Iberia Admits It’s Fallen Victim To A Cyber Attack And Customer Data Has Been Compromised
TEAM Companies Data Breach Affects Over 21K People
Thailand: Revenue Department warns of phishing scams disguised as tax refund emails
The Philippines: Department of the Interior and Local Government (DILG) probing alleged data breach
The Philippines: Department of the Interior and Local Government (DILG) to probe alleged data breach by hackers
Two Men Charged with Hacking and Extortion of U.S. Companies Previously Employed by Cybersecurity Firms
Two teens plead not guilty to Transport for London (TfL) cyberattack
Tycoon2FA Launches Nearly 1 Million Attacks Targeting Office 365 Accounts
22nd November
Australian Mining And Manufacturing Breaches Going Undetected For Weeks
Caught in Thailand: Russian Hacker Linked to £1B Crypto Laundering Nabbed at Phuket Resort
China-Linked APT31 Launches Stealthy Cyberattacks on Russian IT Using Cloud Services
CISA Alerts on Oracle Identity Manager RCE Flaw Being Actively Exploited
CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability
Cox Enterprises discloses Oracle E-Business Suite data breach
CrowdStrike Fires Worker Over Insider Leak to Scattered Lapsus$ Hunters
CrowdStrike Terminates Staff Over Alleged Collaboration with Hackers
Data Breach at Harvard’s Development Office May Have Exposed Donor Records, Personal Information
Dentsu Confirms Major Data Breach At Merkle, Exposing Sensitive Employee Information
DoorDash Suffers Data Breach Exposing User Contact Information, Blames Social Engineering Attack
Hackers target PayPal, Netflix, and TikTok with a new phishing scam
Matrix Push C2 Uses Browser Notifications for Fileless, Cross-Platform Phishing Attacks
Norway Savings Bank customer data exposed via Marquis attack
Password change email from ‘rnicrosoft.com’ is a phishing scam, Cybersecurity expert shares how to protect yourself
Russian Hacker Arrested In Thailand After FBI Tip
Russian hacking suspect wanted by the FBI arrested on Thailand resort island
Sneaky2FA: The phishing scam that steals credentials with browser-in-the-browser attacks
Thinking what to buy your child for Christmas? Stay away from AI toys, advocacy group warns
This new Android malware can actively spy on you
Two teenagers plead not guilty to carrying out Transport for London (TfL) cyber attack
Watson Clinic creates $10M fund for patients whose data was exposed
WhatsApp API flaw let researchers scrape 3.5 billion accounts
21st November
2025 Formula 1 Las Vegas Grand Prix Faces Rising Cybercrime Threats, Experts Caution
Africa bears the brunt of global ransomware attacks
Ahtna, Inc. Data Breach: SSNs & Names Exposed
AI-Powered Phishing Attacks Now 4.5x More Effective, Warns Microsoft
Android Malware Records Encrypted Messages, Hijacks Devices
Anthem, Inc. Data Breach Exposes SSNs & Medical Info
APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains
APT24’s New ‘BadAudio’ Campaign Exploits Legitimate Websites to Target Users
Attack Campaign “Operation DreamJob” Leveraging Job-Related WhatsApp Web Messages Against Manufacturing Firms
Attackers Escalate Privilege Through Critical Grafana Vulnerability
Authorities Sanctioned Russia-based Bulletproof Hosting Provider for Supporting Ransomware Operations
Broadcom Allegedly Breached by Clop Ransomware via Oracle E-Business Suite 0-Day Hack
Browser notifications abused to spread malicious links
CERT-In Warns of Critical Asus Router Flaw Exposing Millions in India
China’s APT31 linked to hacks on Russian tech firms
Chinese APT24 Cyberespionage Campaign Targets Taiwan with BADAUDIO Malware
CISA warns Oracle Identity Manager RCE flaw is being actively exploited
Cl0p gang hacks Oracle, exploiting Oracle's own EBS zero-day
Clop Ransomware Allegedly Breached Broadcom via E-Business Suite 0-Day Hack
Cl0p Ransomware Claims Breach of Canon and Mazda in Manufacturing Sector Attack
Clop Ransomware Claims Oracle Breach Using E-Business Suite 0-Day
Clop Ransomware Group Lists 39 Global Victims Including Mazda & Canon
Compromised VPN Credentials Leading Attack Vector in Ransomware Campaigns
Convenience culture is breaking personal security
Coupang fails to detect data breach affecting over 4,500 customers for 12 days
Coupang reports data breach affecting 4,500 customers
CrowdStrike catches insider feeding information to hackers
CrowdStrike fires insider who leaked data to hacker group
CrowdStrike fires ‘suspicious insider’ who passed information to hackers
Cybercriminals Exploit Browser Push Notifications to Deliver Malware
Data breach among staff fueling cyber attacks in financial institutions
Data Breach Hits Massachusetts Credit Union Affecting Nearly 57,000 Individuals
Data breach may expose person info of Norway Savings Bank customers
Data breach may have exposed personal info of Norway Savings Bank customers
Delta Dental of Virginia Data Breach Exposes SSNs and Names
Dentsu’s Merkle suffers data breach, sensitive information stolen
Despite Chinese hacks, Trump’s Federal Communications Commission (FCC) votes to scrap cybersecurity rules for phone and internet companies
DoorDash Confirms Data Breach After Social Engineering Attack on Employee
FBI Tip Leads To Arrest Of Suspected Russian Hacker, Sparks Extradition Battle
Federal Communications Commission (FCC) rolls back cybersecurity rules for telcos, despite state-hacking risks
Fired Techie Admits Hacking Employer’s Network in Retaliation for Termination
Flock Safety cameras used to monitor protesters, rights group finds
Former hacker warns AI-driven cybercrime is becoming harder to detect - and nearly impossible to stop
GANA Payment loses $3M in hack as WhatsApp Eternidade Stealer spreads in Brazil
Geisinger Health & Nuance Communications Data Breach Litigation Settled for $5 Million
Geisinger Health, Nuance reach $5M settlement over data breach
GenAI Is Everywhere - Here’s How to Stay Cyber-Ready
Google exposes BadAudio malware used in APT24 espionage campaigns
Google says hackers stole data from 200 companies following Gainsight breach
Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation
Grafana warns of max severity admin spoofing vulnerability
Hacker Is Selling Samsung Info - But It Isn’t What You Think
Hackers Adopt Matrix Push C2 for Browser-Based Malware and Phishing Attacks
Hackers Deploy New Matrix Push C2 to Launch Malware and Phishing Attacks Through Web Browsers
Hackers Seize Control of Windows with a Single Critical Graphics Vulnerability
Hackers stole internal Samsung data, now selling it to criminal groups. Should we be worried?
Hackers Using New Matrix Push C2 to Deliver Malware and Phishing Attacks via Web Browser
Hacking spree continues with Mazda, Canon, and NHS added to the list
Home routers hijacked for suspected Chinese spy campaign
INC ransomware claims attack against Middle Eastern fire security firm
Indonesia Detains Hacker Tied to Markets.com Crypto Theft After $398K Loss
Lessons From the European Airports Ransomware Attack
Local law enforcement agencies in Oklahoma, Massachusetts responding to cyber incidents
Logitech Confirms Data Breach, Security Leaders Respond
Logos Law Firm Fined 523 Million Won Over 1.59TB Data Breach
London Teens Deny Guilt In Massive Transport for London (TfL) Cyber Attack
Malicious Chrome Extensions Steal User Data Through Fake Free VPN Tools
Massive data leak hits Italian railway operator Ferrovie dello Stato via Almaviva hack
Middletown to Restart Utility Billing After Major Cyber Incident
Milvus Proxy Vulnerability Lets Attackers Forge Headers and Bypass Authorization Checks
MONOLOCK: The new “silent” ransomware group that rejects leak sites and affiliate panels
More than 150 ex-Dentsu employees plan legal action for data breach
National Telecom Public Company Limited Data Breach Exposes 1.2M Records
New Gainsight Supply Chain Hack Could Affect Salesforce Customers
New Sturnus Android Malware Reads WhatsApp, Telegram, Signal Chats via Accessibility Abuse
North Korean Hacking Groups Target Critical Sectors Worldwide with Zero-Day Exploits
Norway Savings Bank, Via Marquis Data Breach Affects 51,000
OAuth token compromise hits Salesforce ecosystem again, Gainsight impacted
Obfuscated Malicious Applications Using AI to Evade Antivirus Detection and Deploy Harmful Payloads
OncoHealth Data Breach Exposes Names & Dates of Birth
Oracle Allegedly Breached by Clop Ransomware via E-Business Suite 0-Day Hack
Play Ransomware Targets Highmark, NC Machinery & Others
Portland’s Living Room Theater working to reopen after apparent cyber attack
Ransomware Actors Primarily Targeting Retailers This Holiday Season to Deploy Malicious Payloads
Ransomware Attacks Poised to Hit Retailers Hard This Holiday Season
Ransomware gang claims theft of 1TB of data from Burj Khalifa fire-safety contractor NAFFCO
Ransomware gangs seize a new hostage: your AWS S3 buckets
Ransomware Groups Target Retailers Ahead of the Holiday Season With Malicious Payload Campaigns
Research shows identity document checks are missing key signals
Russian hacking suspect wanted by the FBI arrested on Thailand resort island
Russian money launderers bought a bank to disguise ransomware profit
Salesforce alerts customers of data breach traced to a supply chain partner
Salesforce Confirms Customers’ Data Was Accessed Following the Gainsight Breach
Salesforce Confirms New Breach Linked to Gainsight Apps
Salesforce Data Breach Exposes Customer Records via Gainsight App
Salesforce Data Stolen via Third-Party Gainsight, ShinyHunters Claim Breach, Announce ‘Almost 1,000’ Victims
Salesforce Disables Connections to Gainsight-Published Applications Amid Investigation of Data Breach
Salesforce Flags Unauthorized Data Access via Gainsight-Linked OAuth Activity
Salesforce Gainsight compromise: Early findings and customer guidance
Samsung Data Breach Exposes Medical Division Records, Consumer Devices Unaffected
Savannah-Chatham County Public School System (SCCPSS) student accounts targeted, accessed by phishing email scam
Scattered LAPSUS$ Hunters (SLSH) Announces Return and Teases New Website for November 24th
Scattered Spider Teens Plead Not Guilty in UK Court
'Scattered Spider' teens plead not guilty to UK transport hack
Securities and Exchange Commission (SEC) Dismisses Remains of Lawsuit Against SolarWinds and Its CISO
Securities and Exchange Commission (SEC) Drops SolarWinds Case After Years of High-Stakes Cybersecurity Scrutiny
ShadowPad Malware Deployed via WSUS RCE Vulnerability in New Chinese Cyber Campaign
ShinyHunters Breach Gainsight Apps on Salesforce, Claim Data from 1000 Firms
State of Ransomware in Healthcare 2025: Exploited Vulnerabilities Top Cause, Staff Capacity Biggest Weakness
SUNAFIL Peru Hit by Black Shrantac Ransomware Group Data Breach
Teen 'hackers', aged 18 and 19, 'tried to install ransomware on Transport for London (TfL) systems' in cyber attack which cost £39million, court hears
Teenagers deny carrying out London cyber attack that 'cost Transport for London (TfL) £39million'
Teenagers plead not guilty to London transport cyber attack
Teens plead not guilty over Transport for London (TfL) cyber attack
The Dark Web Job Market Now Focuses More on Practical Skills Than Formal Education
These ‘Gentlemen’ Aren’t Gentle: Rapidly Evolving Ransomware Threat
Transport for London cyber attack: Two teens plead not guilty
Trilateral sanctions target Media Land for supporting ransomware groups
Two suspected Scattered Spider hackers plead not guilty over Transport for London cyberattack
U.S. Sentences Samourai Wallet Founders for $237M Crypto Money Laundering Scheme
UNC2891 Hackers Using Cloned Cards and Raspberry Pi to Steal Cash from ATMs
University of Pennsylvania institutes mandatory information security training for all employees following data breach
US, UK & Australia sanction Russian host over ransomware links
US, UK, and Australia impose sanctions on Russian bulletproof hosting company
Wawa sends eGift Cards to thousands after massive data breach
What happens to your data when you chat with a chatbot?
What insurers really look at in your identity controls
Why it makes sense to make Cybersecurity Training mandatory for employees post Data Breach
‘World-class’ Russian hacker wanted by FBI nabbed in Phuket, arrest highlights global reach of cybercrime
Your Samsung Devices are safe despite the data leak
20th November
2 Men Arrested for Alleged WhatsApp Phishing Scams Targeting Thousands of Users in Singapore
2.3 Million Attacks Hit Palo Alto Networks’ GlobalProtect VPN Portals
5 Ways to Protect Yourself & Your Money This Black Friday
40% of Firms to Be Hit By Shadow AI Security Incidents
59 Gang Members Arrested in Cambodian Phishing Scheme
67-year-old Samourai CTO sent to prison in controversial bitcoin privacy case
A R100,000 Wake-Up Call: Lancet Labs Fined Amid South Africa’s Data Breach Epidemic
A Decade of Ransomware Chaos - Protecting IoT and Edge Systems in 2026
AI vs. AI: Why Deepfake Detection Alone Won’t Protect Your Enterprise
AI-powered malware email attacks soar by 131% amid new threats
Akira Ransomware Group Hits Multiple North American Companies
Arms Race: AI's Impact on Cybersecurity
Australia imposes sanctions on Russian cyber firms over ransomware attacks
Australia sanctions Russian cybercrime service providers over ransomware attacks
Authorities Sanction Russia-Based Bulletproof Hosting Provider for Supporting Ransomware Operations
Beckett Collectibles silent as Have I Been Pwned (HIBP) confirms data breach impacting half a million users
Burj Khalifa’s fire security firm claimed by hackers
Byzfunder Data Breach Affects 15,164 People: SSNs & Names Exposed
California Casualty Data Breach Exposes Social Security Numbers
CISA Issues New Guidance on Bulletproof Hosting Threat
Comet Browser Flaw Lets Hidden API Run Commands on Users’ Devices
Coupang data breach exposes data of 4,500 customers, including five most recent orders
Critical 7-Zip Vulnerability CVE-2025-11001 Prompts NHS Cyber Alert
Critical N-able N-central Vulnerabilities Allow Attackers to Read Sensitive Files and Access Legacy APIs
Crypto mixer founders sent to prison for laundering over $237 million
D-Link warns of new RCE flaws in end-of-life DIR-878 routers
Dermatology Associates Data Breach: Possible Exposure of SSNs & Health Information
Digital gaming, casino, and sports betting giant IGT hit by ransomware
DLL Sideloading Technique Used by China-Aligned APT to Strike Government and Media Sectors
Do Russian cyber firms back ransomware attacks? US, UK and Australia strike hard in coordination
DoorDash customer info accessed in data breach, company says
Doordash data breach exposes names, addresses, phone numbers, and more
DoorDash Data Breach Highlights the Human Weak Link in Cyber Defense
DoorDash Data Breach May Impact South Dakota Users
Doordash Hit With Data Breach - Exposes Customer Names, Phone Numbers, Addresses, More
Emerging Ransomware Variants Exploit Amazon S3 Misconfigurations and Weak Access Controls
EU eases AI, privacy rules as critics warn of caving to Big Tech
Eurofiber France Reports Data Breach After System Vulnerability Exploited
Europe Strengthens Cyber Defense as ENISA Becomes CVE Root
Everest Ransomware Says It Breached Brazilian Energy Giant Petrobras
Ex-FBI Agent Uncovers North Korean Hacker Hades in 4-Year Hunt
Fake Deals, Fake Stores, Real Losses: Black Friday Scams Hit Record High
Federal Communications Commission (FCC) spikes Biden-era cyber regulations prompted by Salt Typhoon telecom breaches
Generative AI Helps Cybercriminals Create More Convincing Scam Lures
GlobalProtect VPN portals probed with 2.3 million scan sessions
Google Play Store’s privacy practices still confuse Android users
Hacked by Trojan 1337: Indian Hacker Breaches Pakistan’s National Certainty Holdings & Bureau of Statistics
Hacker claims to steal 2.3TB data from Italian rail group, Almaviva
Holiday Rush, Cyber Crush: Why Retailers Are Prime Ransomware Targets This Season
INC Ransom Claims Cyberattack on UAE Safety Giant NAFFCO
India Among Top 10 Ransomware-Hit Nations in Q3 2025
Inside Media Land: Russian Hosts Sanctioned for £14B Cyber Hit
Iran-Linked Hackers Mapped Ship Automatic Identification System (AIS) Data Days Before Real-World Missile Strike Attempt
Is your password manager truly GDPR compliant?
Joii AI sanitary pad measures your period flow, but comes with privacy risks
LG Energy Solution targeted in ransomware attack linked to Akira gang
Logitech Confirms Data Breach After Cl0p, Linked to Oracle E-Business Suite Exploits, Takes Responsibility
MacOS DigitStealer malware poses as DynamicLake, targets Apple Silicon M2/M3 devices
Major WrtHug Cyber Operation Exposes Thousands of ASUS Routers
Mexico’s Guanajuato Prosecutor Office Hit by Massive Data Breach
Microsoft Update Creates Agentic OS Infostealer Attack Vector
Multi-threat Android malware Sturnus steals Signal, WhatsApp messages
National Security Agency (NSA) Releases Guidance for ISPs and Network Defenders to Mitigate Malicious Activity
New Android malware can capture private messages, researchers warn
New Eternidade Stealer Uses WhatsApp to Steal Banking Data
New Ransomware Variants Targeting Amazon S3 Services Leveraging Misconfigurations and Access Controls
New Research Uncovers Rhadamanthys Loader’s Anti-Sandboxing and Anti-Emulation Techniques
New Sanctions Target Russian Web Hosting Service over Suspected Ransomware Operations
New SonicWall SonicOS flaw allows hackers to crash firewalls
New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices
NSO seeks to overturn WhatsApp case, saying it is ‘catastrophic’ for the spyware maker
Ollama Vulnerabilities Let Attackers Execute Arbitrary Code via Malicious Model Files
Omni Family Health Settles Class Action Over 2024 Data Breach
Paid a ransom? Be prepared to be hit again...and again...
Palo Alto boss says nation states will soon weaponize quantum computing
Pepkor Lifestyle consumer phone numbers exposed in data breach
Phishing Attack Hits New Haven, Connecticut, School System
Phishing emails found impersonating Union Township Commission
Police Arrest Indonesian Hacker in UK Crypto Heist
Privacy oversight board finds FBI does not buy real-time location data
Public Accounts Committee criticises Ministry of Defence (MoD) for “farrago of errors” in Afghan data breach
Qilin Ransomware Attack Hits IGT and Marine Foods Express
Ransomware attacks surge in October with US and Europe the big drivers
Ransomware newcomer the Brotherhood claims 2 Australian victims in 1 day
RevolutionParts Data Breach: Actor Sells 5.1 Million Customer Records
Russian hackers target IVF clinics across UK used by thousands of couples
Russian Hosting Provider ‘Media Land’ Sanctioned for Supporting LockBit, BlackSuit, and Play Ransomware
Salesforce cuts off access to third-party app after discovering ‘unusual activity’
Salesforce investigates customer data theft via Gainsight breach
Salesforce investigates new incident echoing Salesloft Drift compromise
Salesforce says some of its customers’ data was accessed after Gainsight breach
Salesforce Warns that Customer Data May Have Been Accessed Through Gainsight App
Salesforce-linked data breach claims 200+ victims, has ShinyHunters’ fingerprints all over it
Samourai Wallet crypto mixer’s co-founders sentenced to prison
SANS Institute 2025 survey finds Operational Technology (OT) cybersecurity incidents rising as ransomware and remote access risks grow
Security gap in Perplexity’s Comet browser exposed users to system-level attacks
ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet
Sinobi Ransomware Group Targets Croft and Changepond
SK Telecom Rejects Government-Backed Compensation Plan for Data Breach Victims
SK Telecom Rejects Personal Information Commission's Data Breach Compensation Mediation Proposal
SK Telecom (SKT) rejects recommended compensation of $200 per user over data breach
Sneaky2FA phishing tool adds ability to insert legit-looking URLs
Sri Lanka: Nigerian hacker to be arrested over WhatsApp scam
Stolen VPN Credentials Most Common Ransomware Attack Vector
Supply Chain Breaches Impact Almost All Firms Globally
TamperedChef Attack Uses Everyday Applications to Deliver Payloads and Seize Remote Control
TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign
Tata Motors Passenger Vehicles Reports Rs 5,500 Crore Loss in Q2 Due to JLR Cyber Attack
The Akira Playbook: How Ransomware Groups Are Weaponizing MFA Fatigue
The confidence trap holding security back
The Shift in Cyber Attacks on Healthcare
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group - 'we are exposing their dark networks and going after those responsible'
Threat Actors Innovate with a New Operational Model Unifying Digital and Physical Threats
Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows
Twonky Server Critical Vulnerabilities Let Attackers Bypass Authentication
UK targets ‘bulletproof’ services that hosted ransomware gangs
UK, US and Australia Sanction Russian Bulletproof Hoster Media Land
UK, US Embassies Warn of Major Breach in Somalia’s eVisa System
UNC2891 Money Mule Network Reveals Full Scope of ATM Fraud Operation
US Faced 52% Of All Ransomware Attacks In Q3 2025, But India’s Rank May Surprise You
US, Australia, and UK Sanction Russian Cybercrime Infrastructure Supporting Ransomware
US, Australia, UK Sanction Russian Ransomware Infrastructure Providers
US, UK and Australia Impose New Sanctions on Russia-Based Hosting Firms for Enabling Ransomware Networks
US, UK, Australia impose sanctions on Russian bulletproof hosting provider
Use of AI Agents in Cyber Espionage Expands as Chinese Hackers Leverage Anthropic Tools
Utah Valley University (UVU) warns students of active phishing campaign targeting university
VITAS Hospice Services Data Breach Exposes Patient Social Security Numbers
Watson Clinic Agrees to $10 Million Data Breach Settlement
WEL Companies Data Breach Affects 122,960 People, Exposing Social Security Numbers
What Are Digital Footprints? Understanding Your Online Identity
WhatsApp Bug Allowed Global Enumeration of 3.5B User Accounts, Researchers Warn
WhatsApp-Based Malware Exfiltrates Contacts to Attack Server and Installs Additional Payloads
When IT fails, Operational Technology (OT) pays the price
Who Is Dark Storm? The Threat Actor European Security Teams Can’t Ignore
Why ‘AI-Powered’ Cyber-Attacks Are Not a Serious Threat...Yet
19th November
3.5 Billion Numbers Exposed? Massive WhatsApp Leak?
$6.5 Million Settlement Resolves Omni Family Health Class Action Data Breach Lawsuit
7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001)
50,000 CCTVs Hacked in India: Intimate Hospital Footage Sold Online
AI Is Supercharging Phishing: Here’s How to Fight Back
AI-powered fraud is exploding: it peaks in a very specific two-hour window
Airlines Reporting Corporation (ARC) Data Sale Scandal: Airlines’ Travel Records Used for Warrantless Surveillance
American Israel Public Affairs Committee (AIPAC) data breach exposed personal information of 810 individuals after months of unauthorized access
An ingenious Apple Service hoax is convincing users their account is under attack
Attackers are using “Sneaky 2FA” to create fake sign-in windows that look real
Ayuntamiento de Béjar Internal Documents Leaked Following Breach
Beckett Collectibles Silent After Alleged Data Breach, Customers Demand Answers
Beyond The Password Security Checkbox: Why Compliance Isn't Enough
BitB integrated into updated Sneaky 2FA Phishing-as-a-Service (PhaaS) kit
BRSK Data Breach: 230,105 Records of Telecom UK Customers for Sale
Business Overconfidence Increases Ransomware Risk In Australia
California man admits to laundering crypto stolen in $230M heist
Canada: Report released on school cyber attack
Canadian privacy regulators say schools share blame for PowerSchool hack
CarePro to Pay $1.3 Million to Settle Class Action Data Breach Lawsuit
China-aligned threat actor is conducting widespread cyberespionage campaigns
China-Linked Operation “WrtHug” Hijacks Thousands of ASUS Routers
CISA gives government agencies 7 days to patch new Fortinet flaw
Cline Bot AI Agent Vulnerable to Data Theft and Code Execution
Cybercriminals Leveraging Tuoni C2 Framework for Stealthy In-Memory Payload Delivery
Data breach at St. Anthony Hospital might have exposed personal information of more than 6,600 patients and staff
Data breach exposes info of over a million people at French agency
Destructive Akira Ransomware Attack with a Single Click on CAPTCHA in Malicious Website
Digital Transformation Risks: Critical Governance Gaps in Cloud Migration Impact 40% of Organizations in 2025
DoorDash Confirms Cybersecurity Incident After Social Engineering Attack
DoorDash Confirms Data Breach Affecting Customers, Couriers, and Merchants
DoorDash Confirms Data Breach, Stolen Information Includes Names, Addresses
DoorDash data breach: User info stolen, how to protect yourself
EdgeStepper Implant Reroutes DNS Queries to Deploy Malware via Hijacked Software Updates
Eternidade Stealer Trojan Fuels Aggressive Brazil Cybercrime
Eurofiber confirms November 13th hack, data theft, and extortion attempt
Eurofiber Data Breach - Hackers Exploited Vulnerability to Exfiltrate Users’ Data
European Commission ‘simplification’ proposal would weaken GDPR, AI regulations
Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild
Google Issues Emergency Update for 2 Billion Chrome Users
Hacker Selling Alleged Samsung Medison Data Stolen In 3rd Party Breach
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)
Hackers claim SAS Institute, but researchers are not so sure
Half of Ransomware Access Due to Hijacked VPN Credentials
Haravan Data Breach: Records for 5.3 Million Vietnamese eCommerce Customers Exposed
How Google Protects Its Servers from Cyber Attacks: A Deep Dive into DDoS Defense Mechanisms
How Kraken ransomware benchmarks your system first, then encrypts everything without warning, and steals data in the background silently
HR’s Role in Preventing Insider Threats: 4 Best Practices
‘Immediate financial risk': phishing attack targets student emails in New Haven
Innovative Physical Therapy Data Breach: SSNs & Names Exposed
Jeep, Dodge owners warned of scam risk after Stellantis data breach
Kaufman County Data Breach Update: Sensitive County Employee Information Compromised
‘Largest Data Leak in History’: WhatsApp Flaw Exposed Billions of Users
Law firm Pillsbury faces class action over April data breach
Lawmakers reintroduce bill to bolster cybersecurity at Securities and Exchange Commission
Logitech confirms 1.8 terabytes of data breach by hackers, says no sensitive info exposed; Is Clop extortion gang behind the attack?
Major Blow To Cybercrime: US, UK, Australia Sanction Russian Ransomware Hosts
Major names exposed in data breach at Ivy League school
Major Russian insurer facing widespread outages after cyberattack
Malware Attacks See 131% Spike In 2025
Meet ShinySp1d3r: New Ransomware-as-a-Service created by ShinyHunters
New Hampshire: State alerts SNAP recipients to phishing scam involving false threats to restrict monthly benefits
New Haven schools hit by 'sophisticated' email phishing attack seeking students' bank information
New Phishing Kit Using BitB Technique Targets Microsoft Accounts to Steal Credentials via Sneaky 2FA Attack
New Phishing Kit Using BitB Technique Targets Users to Steal Microsoft Account Credentials via Sneaky 2FA Attacks
New sanctions target Russian web hosting service over suspected ransomware operations
New Sneaky 2FA Phishing Kit with BitB Technique Attacking Users to Steal Microsoft Account Credentials
New WrtHug campaign hijacks thousands of end-of-life ASUS routers
Nova Stealer Malware Strikes macOS Users by Hijacking Legitimate Apps to Steal Cryptocurrency Wallets
Obscure MCP API in Comet Browser Breaches User Trust, Enabling Full Device Control via AI Browsers
Ontario, Alberta school boards caught unprepared in mass student data breach
Pajemploi data breach exposes personal information of 1.2 million childcare workers
Personic Data Breach Impacts 10,929 Nationwide: Health Information Exposed
Petrobras allegedly compromised by Everest ransomware
Philadelphia Water customers warned of a phishing scheme on a fake payment website
‘PlushDaemon’ hackers hijack software updates in supply-chain attacks
PlushDaemon Hackers Unleash New Malware in China-Aligned Spy Campaigns
Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices
Ransomware attack hits LG battery subsidiary
Ransomware Attacks Soar by 41%, Marking Start of ‘Golden Quarter’
Ransomware hits LG Energy Solution’s overseas facility
Researchers pull 100 Million WhatsApp phone numbers in an hour
Russia web hosting provider slapped with western sanctions for ransomware operations
Russian bulletproof hosting provider sanctioned over ransomware ties
School District Victim Of Phishing Scam, Whose 'Scope Is Extensive; 'Well Over' 10,000 Emails Sent
Score Sports Data Breach Affects 8,430 Individuals
SEKISUI Aerospace Data Breach: 53GB of Sensitive ITAR-Controlled Technical Data for Sale
ServiceNow AI Agents Can Be Tricked Into Acting Against Each Other via Second-Order Prompts
Single Click on CAPTCHA Triggers Destructive Akira Ransomware Attack on Malicious Website
Single Click on CAPTCHA Triggers Devastating Akira Ransomware Attack on Malicious Website
Sneaky2FA Phishing Kit Adopts Browser-in-the-Browser Tactics to Steal Credentials via Fake Microsoft Login Pages
Sneaky2FA Phishing-as-a-Service (PhaaS) kit now uses redteamers' Browser-in-the-Browser attack
Some New Haven families face ‘immediate financial risks’ following phishing attack, school official says
South Africa: Company that owns Incredible Connection and HiFi Corp notifies customers about data breach
South Korea: Police Raid Korea Telecom (KT) Offices in Data Breach Investigation
Stealth-patched FortiWeb vulnerability under active exploitation (CVE-2025-58034)
Stop Phishing Scams: How to Spot Fake Crypto Websites Fast
The Gentlemen Ransomware Group Deploys Dual-Extortion Tactics, Encrypting and Exfiltrating Data
‘The Gentlemen’ Ransomware Group with Dual-Extortion Strategy Encrypts and Exfiltrates Data
The long conversations that reveal how scammers work
The not-so-fun facts to know about ransomware for 2026
Thousands of scam emails sent to New Haven Public Schools students
Threat group reroutes software updates through hacked network gear
Three Nations Target Russian 'Bulletproof' Ransomware Host
Tricks that were once enough to protect your crypto can now be trashed
Trust, Habits And Other Drivers Of Modern Phishing
U.S., UK, Australia Sanction Russian Bulletproof Hosting Provider
UK Exposes Bulletproof Hosting Operator Linked to LockBit and Evil Corp
UK Ministry of Defence (MoD) warns staff not to discuss secrets in cars from China
UK smashes Russian cybercrime networks responsible for attacks on UK businesses
Update Chrome ASAP - attackers are already exploiting this nasty zero-day flaw
US, allies sanction Russian bulletproof hosting services for ransomware support
US, Allies Sanction Russian Bulletproof Ransomware Host
US, Australia and Britain impose sanctions on Russian cyber firms over ransomware links
US, UK and Australia sanction Russia cyber firms over ransomware links
US, UK, and Australia sanction Russian ‘bulletproof’ web host used in ransomware attacks
US, UK, Australia announce sanctions against Russia-based Media Land over ransomware operations
Utah Valley University (UVU) warns students of active phishing campaign targeting university
W3 Total Cache WordPress plugin vulnerable to PHP command injection
WhatsApp Data Breach: 3.5 Billion Numbers and Photos Leaked
WhatsApp Vulnerability Exposes Phone Numbers of 3.5 Billion Users
Why your compliance training won’t stop the next cyber-attack
WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
18th November
4 U.S. Citizens, Ukrainian Plead Guilty in North Korea IT Worker Scheme
5 Things CISOs, CTOs & CFOs Must Learn From Anthropic’s Autonomous AI Cyberattack Findings
81% of Kenyans targeted by scams, with voice phishing being most common threat
2025 sees a 47 per cent spike in ransomware attacks
A miracle: A company says sorry after a cyber attack - and donates the ransom to cybersecurity research
Agentic AI puts defenders on a tighter timeline to adapt
AI supercharging phishing, vishing and deepfake fraud tactics
AI-Enhanced Tuoni Framework Targets Major US Real Estate Firm
AI's scary new trick: Conducting cyberattacks instead of just helping out
Airline data broker to stop selling individuals’ travel records to government agencies
Alberta and Ontario privacy commissioners release findings of PowerSchool data breach
American Israel Public Affairs Committee (AIPAC) discloses data breach, customer information stolen
Anatomy of an Akira Ransomware Attack: When a Fake CAPTCHA Led to 42 Days of Compromise
Australian Businesses Must Fight Ransomware Criminals
Australian Institute of Criminology (AIC) research examines ransomware affecting individuals and small businesses
Australian Institute of Criminology (AIC) Study Probes Ransomware Impact on Individuals, SMEs
Azure Network Hit by Record-Breaking 15 Tbps DDoS Attack From 500,000+ Devices
Beware! Samsung Members App Becomes The House of a New Phishing Scam
British Hacker Must Repay $5.4M After Twitter Crypto Scam
British Hacker Ordered To Repay Millions In Bitcoin
British Hacker Ordered To Surrender £4.1 Million Bitcoin
Cabify investigates after claims of massive driver data breach
Canada: Privacy commissioner sounds alarm after Alberta student data breach findings released
Canada: ‘Privacy does not happen on its own’ - Report makes recommendations after mass student data breach
Canada: School boards caught unprepared in mass student data breach
Canada: School boards must make privacy changes after PowerSchool breach
CISA 2015 Receives Extension, Offering Brief Relief for Cyber Information Sharing
Cyber attack on Oracle Platform Results in Massive Washington Post Data Leak
Cyber-attack on Kenya’s government sites
Cyberattack Volume Increases Fueled by 48% Year-over-Year Increase in Ransomware Attacks
Dark Web Profile: Sarcoma Ransomware
Data Breach At Princeton University May Have Exposed Student, Staff Information
Data breach compromises Princeton University
Data Stolen in Eurofiber France Hack
Discovery Practice Management Settle Lawsuit Over 2020 Data Breach
DoorDash Confirms Data Breach - Hackers Accessed Users Personal Data
DoorDash confirms data breach affecting customers, drivers and businesses
DoorDash Confirms Data Breach After Hackers Access Users’ Personal Data
DoorDash Confirms Data Breach After Social Engineering Attack, User Details Exposed
DoorDash Confirms Data Breach Compromised User Data
DoorDash Confirms Data Breach Exposing Customer Personal Information
DoorDash data breach exposes personal info after social engineering attack
DoorDash Discloses October Data Breach From Social Engineering Scam, Starts Notifying Users
DoorDash Faces Data Breach Following Social Engineering Scam
DoorDash says personal information of customers, dashers stolen in data breach
Drivestream Data Breach: SSNs & Financial Information Exposed
Dutch police seize hundreds of servers in takedown of criminal hosting network
Eurofiber Data Breach - Hackers Exploited Vulnerability to Exfiltrate Users’ Data
Eurofiber France confirms the major data breach
Eurofiber France discloses data breach
Everest Ransomware Claims Breach of Sportswear Giant Under Armour, Stealing Over 340 GB of Customer and Company Data
Everest ransomware gang claims breach of Under Armour
Everest Ransomware Group Allegedly Exposes 343 GB of Sensitive Data in Major Under Armour Breach
Everest Ransomware Group Allegedly Exposes 343 GB of Sensitive Data in Under Armour Breach
First-Ever AI Cyber Attack: Chinese hackers’ operation targets Governments of multiple Countries
Fortinet Silent Patch Raises Concern Among Security Researchers
Fortinet warns of new FortiWeb zero-day exploited in attacks
French agency Pajemploi reports data breach affecting 1.2M people
Full renewal of state and local cyber grants program passes in House
GenAI and Deepfakes Drive Digital Forgeries and Biometric Fraud
GeoHealthResearch Database Leaked by Threat Actor on Dark Web Forum
Google fixes new Chrome zero-day flaw exploited in attacks
Google Issues Security Fix for Actively Exploited Chrome V8 Zero-Day Vulnerability
Google patches yet another exploited Chrome zero-day (CVE-2025-13223)
Greater Toronto Area (GTA) school boards did not have ‘reasonable measures’ to stave off student data breach
Habib Bank AG Zurich Compromised by Qilin Ransomware Group
Hacker behind Obama X breach ordered to return $5.4m in bitcoin
Hackers claim oil giant Petrobras, alleging oil-rich maps theft
Hackers claim to have hit Under Armour in massive data breach - here's what we know, and how you can stay safe
Half a Million Stolen FTSE 100 Credentials Found on Criminal Sites
Hamilton Construction Data Breach: SSNs & Names Exposed
Healthcare Ransomware Attacks Shift to Data Theft
How attackers use patience to push past AI guardrails
Investigation shows major crypto exchanges struggle to stop illicit flows
Iranian Hackers Use DEEPROOT and TWOSTROKE Malware in Aerospace and Defense Attacks
Jaguar Land Rover (JLR) cyber-attack results in Tata loss
Jaguar Land Rover (JLR) revenue drops 25% amid £196m cyber attack costs
Jaguar Land Rover suffers heavy losses due to cyber incident
Japan Financial Investment Association (JFIEA) Data Breach
June Cyber Attack Breaches Dealmed Medical Systems, Personal Info Exposed
Kraken’s Stealth Benchmark: Ransomware Evolves to Test and Terrorize Systems
Lessons from the Information Commissioner's Office’s Capita enforcement action - what can we learn?
LG battery subsidiary says ransomware attack targeted overseas facility
LG Energy Solution Data Breach May Have Exposed 1.7TB of Employee Records and SQL Data
Logitech admits data breach after zero-day exploit linked to Clop gang
Logitech Confirms Data Breach After CL0P Ransomware Claim, Impacting Employees, Consumers, Suppliers
Logitech confirms data breach following Cl0p’s Oracle hack claims
Logitech Hit by Data Security Breach Linked to Oracle E-Business Vulnerability
Logitech IT system hit by zero-day cyberattack
Lovable apps may be dangerous by design, research finds
Lynx Ransomware Deployed via Compromised RDP Logins with Backup Deletion
Major Cyber Attack on Anthropic: Chinese Hackers Target AI Platform
Marquis Software Solutions Data Breach: SSNs & Names Exposed
Massive Cyberattack Hits Kenyan Ministries, Sites Replaced With Racist Messages
Master how to report a breach for fast and effective cyber incident response
Medusa Ransomware Attacks Nationwide Legal, MFE Formwork, and Others
Microsoft Azure Blocks 15.72 Tbps Aisuru Botnet DDoS Attack
Microsoft Azure Fends Off ‘Largest DDoS Attack Ever Observed in the Cloud’
Microsoft Entra guest invites harnessed in new phishing campaign
Microsoft Mitigates Record 5.72 Tbps DDoS Attack Driven by AISURU Botnet
Miller Financial Group Data Breach: SSNs & Financial Details Exposed
NetApp sues former Chief Technology Officer (CTO) for alleged data breach
New npm Malware Campaign Redirects Victims to Crypto Sites
New ShadowRay attacks convert Ray clusters into crypto miners
New Telephone-Oriented Attack Delivery (TOAD) phishing campaign targets Microsoft Entra guest invitees with fake invoices
Oscars Group Hit by Medusa Ransomware, Hackers Threaten Data Release
Pennsylvania Attorney General Confirms Data Breach After Ransomware Attack
Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack
Phishing Season 2025: How AI is Supercharging Cyber Crime
Princeton Database Breached in Targeted Phishing Incident
Princeton University Data Breach: Donor Information Exposed in Compromised Database
Princeton University Data Breach - Database with Donor Info Compromised
Princeton University data breach hits students, alumni - here's what we know
Princeton University Data Breach Impacts Alumni, Students, Employees
Princeton University Hit by Data Breach Affecting Donor Records
Pro-Russian group claims hits on Danish party websites as voters head to polls
Qilin alleges extensive Spark Power hack
QuaLex Manufacturing Hit by Qilin Ransomware Attack
Ransomware Gangs Splinter Over Q3’25 as Ransomware-as-a-Service (RaaS) Model Fades
Ransomware in critical industries: What new data reveals about sector weaknesses and the escalating human toll
Ransomware payment ban proposals spark concern from law firms
Ransomware resilience may be improving in the health sector
Ransomware-related breach confirmed by Pennsylvania Attorney General’s Office
Researchers Detail Tuoni C2's Role in an Attempted 2025 Real-Estate Cyber Intrusion
Resilience At Risk: Talent and Governance in the Age of AI
Russian suspect detained in Thailand is allegedly tied to Void Blizzard group
Rhysida Ransomware Group Breaches Smoll & Banning CPAs in Kansas
Samsung users face massive phishing attack, lurking inside Samsung Members
SAS Institute Data Breach Exposes Source Code and Tools
Seven npm Packages Use Adspect Cloaking to Trick Victims Into Crypto Scam Pages
Sinobi: The bougie-exclusive ransomware group that wants to be a ninja
Skira Ransomware Strikes Innovex Holdings in Thailand: 30TB of Data Breached
Sneaky 2FA Phishing Kit Adds BitB Pop-ups Designed to Mimic the Browser Address Bar
Somalia government probes digital visa platform data breach
Somalia investigates major e-visa data breach affecting 35,000 applicants
Somalia’s Immigration Agency Implements Security Measures After Data Breach
St. Anthony Hospital in Chicago Notifies Patients About February Data Breach
'Sucker lists': Why you should never pay a ransomware scammer
The Data (Use and Access) Act and How it Affects the UK GDPR and Data Protection Act (DPA) 2018, and Privacy and Electronic Communications Regulations (PECR)
The “deepfake paradox” could undermine the justice system
The New Face of Social Engineering
The privacy panic around machine learning is overblown
The Top Inevitable Cyber Threats Organizations Must Learn to Contain
Thomas Davies, DPM Data Breach Affects 14,581 Patients
Threat Actors Leveraging Compromised RDP Logins to Deploy Lynx Ransomware After Deleting Server Backups
Threat Actors Use Compromised RDP to Deploy Lynx Ransomware After Deleting Backups
UK Hacker Ordered to Return 45 crore rupees Bitcoin After Breaching Barack Obama’s X Account
UK Twitter hacker ordered to repay $8.3 million in Bitcoin
Under Armor data breach by Everest Ransomware Group
W3 Total Cache Vulnerability Puts Over One Million WordPress Sites at Risk
What security pros should know about insurance coverage for AI chatbot wiretapping claims
Which AI models are the hacker’s best friend?
17th November
5 Reasons Why Attackers Are Phishing Over LinkedIn
70 Million+ Installs at Risk as Logic Flaw Exposes Internal Networks
430,000 Cabify drivers’ records stolen, hackers claim
Acting on FBI Tip, Thailand Detains Suspected Russian Hacker
Akira ransomware expands to Nutanix AHV, raising stakes for enterprise security
Akira ransomware poses imminent threat to critical infrastructure, CISA says
Alleged Void Blizzard hacker arrested in Thailand
American Israel Public Affairs Committee (AIPAC) Data Breach Exposed Personal Identifiers, Payment Card Data and Banking Information
American Israel Public Affairs Committee (AIPAC) Discloses Data Breach, Says Hundreds Affected
Bangkok Eagle Wings Co.,Ltd. Targeted in Ransomware Data Breach
Blossom Cloud Data Breach Exposes Source Code
British Hacker Behind 2020 Obama Twitter Breach Loses $5.4M Bitcoin Fortune
British hacker must repay £4m after hijacking celebrity Twitter accounts
British Hacker Ordered to Surrender £4.1m in Bitcoin Linked to 2020 Twitter Breach
British hacker who hit Obama and Musk’s Twitter accounts told to repay $5.4M in Bitcoin
British hacker who targeted celebrities' social accounts ordered to repay over £4m in Bitcoin
British hacker who targeted Kim Kardashian and Kanye West in Bitcoin scam ordered to hand over £4million
Cabify Data Breach: 430K Driver Records Allegedly For Sale
Cargus Data Breach Exposes Over 550k Records
Chinese Cybersecurity Firm Data Breach Exposes State-Sponsored Hackers Cyber Weapons and Target List
CISA gives federal agencies one week to patch exploited Fortinet bug
Community 1st Data Breach: Sensitive Information Exposed
Critical Lynx+ Gateway Vulnerability Exposes Data in Cleartext, CISA Warns
CrowdStrike Reports North America and Europe as Leading Targets for Ransomware Attacks
Cyber Readiness Stalls Despite Confidence in Incident Response
Cyber-Attack Costs Carmaker Jaguar Land Rover (JLR) $258m in Q2
Cyberattack Drains £196m From Jaguar Land Rover’s Quarterly Results
Cyberattack hit Pennsylvania Attorney General’s office, personal data potentially accessed
Cyberattack leaves Jaguar Land Rover short of £680 million
Cybercriminals Use Microsoft Entra Invitations to Deliver Telephone-Oriented Attack Delivery (TOAD) Attacks
Cyble Uncovers Sophisticated Multi-Brand Phishing Campaign Targeting European Enterprises
DoorDash Confirms Data Breach Exposing Customer Information
DoorDash confirms data breach impacting users’ phone numbers and physical addresses
DoorDash email spoofing vulnerability sparks messy disclosure dispute
DoorDash faces data breach due to social engineering
DoorDash Hit by Cybersecurity Breach, Millions of Users Potentially Exposed
DoorDash notifies users of data breach
DoorDash Says Personal Information Stolen in Data Breach
DoorDash Says Social Engineering Scam Led to Data Breach
DoorDash was just hit with its third data breach - what to do next
DoorDash's new data breach leaked emails and physical addresses
Dragon Breath Uses RONINGLOADER to Disable Security Tools and Deploy Gh0st RAT
Dutch police seizes 250 servers used by “bulletproof hosting” service
EchoGram Flaw Bypasses Guardrails in Major LLMs
EHR Vendor Identifies Business Associate Data Breach
Eurofiber France Confirms Data Exfiltration After System Breach
Eurofiber France reportedly hit by data breach
Eurofiber France warns of breach after hacker tries to sell customer data
Eurofiber reports data breach in France, major customers affected
Everest Ransomware Says It Stole Data of Millions of Under Armour Users
Fake Streams and Phishing Scams Hit XRP Investors, Ripple Warns
Five men admit helping North Korean IT workers infiltrate US companies
Florida District 1 Medical Examiner Suffers Major Data Breach
Goyal Books Data Breach Exposes 236k User Records
Hacker Behind Musk & Obama Bitcoin Scam Faces Staggering $5M Bill as Stolen Crypto Soars
Hacker group brings down The Copenhagen Post website ahead of local elections
Hacker who hijacked Elon Musk and Barack Obama’s X accounts ordered to pay £4,000,000
How Prepared Are You For The Inevitable Data Breach?
IBM AIX Hit by Three Critical Vulnerabilities, One a Perfect 10. Patch Now!
India Rolls Out New Privacy Rules Giving Users More Control Over Their Data
Indian student sentenced to 97 months in prison for multi-million dollar fraud scheme in Texas; phishing attack targeting elderly
Information Communication Board of the Sarawak Chinese Annual Conference (ICBSCAC) Data Breach Hits Malaysian Methodist Church Website
Jaguar Land Rover (JLR) cyber-attack drags Tata Motors into the red
Jaguar Land Rover (JLR) Reports £485m Loss After Cyber-attack Halts Production
Jaguar Land Rover (JLR) reveals extent of damage caused by cyber attack on bottom line
Jaguar Land Rover (JLR) revenues down 24% as it continues to count cost of cyber attack
Jaguar Land Rover Warns Customer Data May Have Been Stolen
Jaguar Land Rover’s Cyber Siege: Tata’s Data Breach Ripples Through US Supply Chains
Jailed British hacker who hijacked X accounts including Apple, Bill Gates, and Barack Obama - then used them for a 'double your money' Bitcoin scam - has to hand back $5.4 million in ill-gotten crypto gains
Joseph James O'Connor ordered to pay back over £4m in Bitcoin after hacking celebrity X accounts
Kenya: Hackers target several government websites, temporarily take over presidency portal
Kenya: What we know about the cyberattack that defaced multiple government websites
Kenyan government websites back online after hackers deface pages with white supremacist messages
Kraken Uses Benchmarking to Enhance Ransomware Attacks
Lawyers’ Mutual Data Breach: Names & SSNs Exposed
LinkedIn Messages Are a Popular Protocol for Phishing Attacks
Liverpool hacker who targeted Obama, Musk and Kim Kardashian ordered to pay back £4m of Bitcoin
Logitech confirms data breach
Logitech confirms data breach - but says it isn't sure exactly what information was lost
Logitech Confirms Data Breach Following CL0P Victim Claims
Logitech Confirms Data Breach Following Designation as Oracle Hack Victim
Logitech Confirms Data Breach From Zero-Day Exploit Attack
Logitech confirms large customer data breach. What that means for you
Logitech Data Breach - What We Know As 0-Day Hack Attack Confirmed
Logitech discloses cyberattack, after Cl0p claims 1.8TB data theft tied to Oracle flaw
Lotus Powergear Data Breach by NightSpire Ransomware
Malaysian Search and Rescue Operation Coordination System (SAROCS) Data Breach: Coordination System for Sale
Malicious NPM packages abuse Adspect redirects to evade security
Merck Data Breach: Financial Account Information Exposed
Microsoft: Azure hit by 15 Tbps DDoS attack using 500,000 IP addresses
Microsoft Entra Invitations Hijacked in Surge of Telephone-Oriented Attack Delivery (TOAD) Phishing Attacks
Nebraska Attorney General’s Lawsuit Against Change Healthcare Survives Motion to Dismiss
New APT42 cyberespionage campaign sets sights on defense, government officials
New ClickFix attacks reuse ancient ‘finger’ command
New EVALUSION ClickFix Campaign Delivers Amatera Stealer and NetSupport RAT
North Korean Hackers Infiltrate 136 U.S. Companies, Generate $2.2 Million
Payroll data for nearly 10,000 Washington Post employees stolen in cyber attack
Pennsylvania Attorney General confirms data breach after INC Ransom attack
Pennsylvania attorney general says SSNs stolen during August ransomware attack
Princeton University discloses data breach affecting donors, alumni
Princeton University reported brief data breach affecting advancement database
Princeton University says database containing donor, alumni info breached
Privia Medical Group Reports Data Breach Affecting 2,024 Texans
Propeller Industries Data Breach Affects SSNs & More
Prosecutors Seize 42 BTC From British Hacker Behind Obama Twitter Breach
Qilin takes responsibility for Cornerstone Staffing Solutions hack
‘Random’ cyberattack shuts down Living Room Theaters in Portland
Ransomware Payments Decline, But Data Resilience Remains Critical for EMEA Enterprises
Research says that Ransomware Payments have declined across Australia
RondoDox botnet malware now hacks servers using XWiki flaw
Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time
Saint Anthony Hospital Data Breach: Names & SSNs Exposed
Samsung users targeted in phishing scam with fake 'Urgent account verification' messages
Samsung’s Pre-Installed AppCloud Sparks Surveillance Controversy Despite No Verified Evidence of Malicious Activity
San Benito County auditor confirms stolen funds recovered from October 15th phishing scam
SeAH Holdings Data Breach Exposes Source Code and Keys
ShinyHunters’ OAuth Onslaught: How Phishing via LinkedIn is Plundering Salesforce Data
South Korean man sentenced to prison for sending $16K to North Korean hacker
SpearSpecter Cyberespionage Campaign Linked to Iranian IRGC Targets High-Value Officials
Surveillance tech provider Protei was hacked, its data stolen and its website defaced
The First Autonomous AI Cyber Attack Exposed
The gang targeting America’s grid now says it’s coming for Canada
The Gentlemen Ransomware Group Claims Two New Victims
There's a phishing scam going around in the Samsung Members app
Threat Actor Claims Cabify Driver Data Breach Affecting 430,000 Records
Threat Actors Exploit Xanthorox AI to Create Multiple Types of Malicious Code
Twitter hacker ordered to repay £4.1m in Bitcoin after celebrity account scam
U.S. Announces Five Guilty Pleas and $15M Seizure in Cybercrime Case
UK Twitter hacker who breached Obama's account ordered to repay $5.4 million in Bitcoin
UK Twitter hacker who hijacked Obama’s account ordered to give up $5.4m in Bitcoin
Under Armour hit by ransomware, hackers claim “millions of personal data”
University of Pennsylvania says info compromised in data breach has been ‘mischaracterized’
Unraveling Threads: Cyber Attack Hits H&M and Adidas Fabric Supplier Fulgar
US: Five Plead Guilty in North Korean IT Worker Fraud Scheme
When Machines Attack Machines: The New Reality of AI Security
Why manufacturers need to do more to avoid the risk of ransomware
Yurei Ransomware: Encryption Mechanics, Operational Model, and Data Exfiltration Methods
Yurei Ransomware Exposed File Encryption Operation Model and Data Transfer Tactics
Yurei Ransomware File Encryption, Operation Model and Data Transfer Methods Uncovered
