government social media healthcare service provider fine education law enforcement finance dark web web retail security phama app insurance telecoms charity travel manufacturing operating system legal tech gaming publishing transport
story hacked malware unauthorised access ransomware vulnerability accidental disclosure phishing unsecured database poor security insider threat unsecured server hacked email lost device website hacked identity theft ddos stolen documents hacking financial Trojans inside job breached RDP spear phishing
cyber attack breach notification privacy security flaw legislation poor operations user credentials physical security customer data third party Cryptocurrency enforcement email hacked insecure storage court action encryption VPN fraud zero day passwords spyware 3rd parties state hacking cloud employee data

USB worm spreads cryptostealing malware via Windows shortcut files
Nintendo confirms data stolen in WebMD subsidiary cyberattack
Gentlemen ransomware uses multiple EDR killers to disable defenses
We Didnt Have a Data Breach The Internet Disagreed
Dark Forums Jabber Promised Private Encrypted Messaging Evidence Suggests Otherwise
Active FortiBleed Campaign Impacting Fortinet Devices Across 194 Countries
Cybersecurity breach includes Crime Stoppers of Hamilton data
Data analysis of the Global Schools Group breach Part 2
UK More than one year later HCRG is first notifying patients of ransomware attack
145 Mastra npm Packages Compromised via Hijacked Contributor Account
The Top 10 Attack Surface Exposures in 2026
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization
Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline
Crypto Clipper Campaign Abuses Fake Reviews AI Narrators and VirusTotal Comments
GitHub dismissed security reports on flaws now exploited by supplychain worm researchers say
Cybercriminals Are Targeting EdTech Data Breaches and Ransomware Attacks on the Rise
Hospital worker suspected of accessing Princess of Waless medical records to face prosecution
ChinaLinked SprySOCKS Backdoor Expands to Windows with DriverBased Stealth
Survey 94 of Incidents Involve Anonymized Infrastructure Teams Are Still Reactive
New Rokarolla Android Malware Steals PINs SMS Codes and Crypto Wallet Funds
ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
Scoop FulcrumSec Leaks Novo Nordisk Data After 25M Demand Goes Unpaid 2
One threat actor demanded 50 million from Novo Nordisk Another one demanded 25 million Neither got paid
Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts
Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites
152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic
The Onboarding Password Mistake That Creates Unnecessary Risk
Weekly Recap Chrome 0Day UniFi Exploits macOS Stealers VPN Flaw and More
OneClick Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails Files and MFA Codes
LiteLLM Vulnerability Chain Lets LowPrivilege Users Take Over AI Gateway Servers
North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels
Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails
AU American Express ordered to fix security gaps after customer was spied on
JLR ordered 30000 staff to reset passwords in person after cyberattack
ShinyHunters Claims Theft of 297GB of Council of Europe Data Claims Unconfirmed As Yet
Novo Nordisk reports data breach tells clinical trial patients to remain vigilant
UK Hotel guests issued urgent check alert as personal details stolen from major chain
US Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals