government social media healthcare service provider fine education law enforcement finance dark web web retail security phama app insurance telecoms charity travel manufacturing operating system legal tech gaming publishing transport
story hacked malware unauthorised access ransomware vulnerability accidental disclosure phishing unsecured database poor security insider threat unsecured server hacked email lost device website hacked identity theft ddos stolen documents hacking financial Trojans inside job breached RDP spear phishing
cyber attack breach notification privacy security flaw legislation poor operations user credentials physical security customer data third party Cryptocurrency enforcement email hacked insecure storage court action encryption fraud VPN passwords zero day spyware state hacking 3rd parties employee data remote working

Thousands of Oregon prison files accessed by prison worker
Google worker charged with using internal data to make 12m on bets
California Attorney General sues 23andMe successor for 2023 data breach
JINX0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
New AI Usage Report Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI Power users
ThreatsDay Bulletin Claude Security Plugin Azure PrivEsc Kali365 MFA Bypass FIFA Scams 15 More
Microsoft Slams Public ZeroDay Disclosures Amid GitHub Researcher Account Removal
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
Romanian National Sentenced for Selling Access to Networks of Oregon State Government Office
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
3 SOC Steps that Shut Down Incident Risks Early
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
Lithuania investigates theft of 600000 state registry records
Malware seller known as Venom extradited to France
UK Visa Portal spilled thousands of applicants passports and selfies online and hasnt fixed the leak
Silent Ransom Group Impersonating IT Personnel through Social Engineering
NL Schiphol cargo worker arrested over alleged data leaks to drug networks
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
CERTIn Recommends 12Hour Patching for InternetFacing Flaws Amid AIAssisted Attacks
MFA Prompt Bombing Why Your Second Factor Isnt Saving You
THN Webinar New AI DDoS Attacks Are Smarter Learn How to Fight Back
MuddyWater Uses DLL SideLoading in Espionage Campaign Targeting 9 Countries
TrapDoor Supply Chain Attack Spreads CredentialStealing Malware via npm PyPI and CratesIO
Lazarus Deploys RemotePE MemoryOnly RAT Against Financial and Crypto Firms
The Alert Firehose Finally Meets Its Match
Weekly Recap Linux Flaws Defender 0Days Router Botnets and Supply Chain Chaos
PowerSchools 1725 Million Settlement Exposes Years of Student Data Tracking
France Sees More Violent Attacks on Crypto Holders Than Any Other Country
LaravelLang PHP Packages Compromised to Deliver CrossPlatform Credential Stealer
Claude Mythos AI Finds 10000 HighSeverity Flaws in Widely Used Software
Packagist Supply Chain Attack Infects 8 Packages Using GitHubHosted Linux Malware
npm Adds 2FAGated Publishing and Package Install Controls Against Supply Chain Attacks
UK Victims feel violated after water firms data breach
Rhode Islands workers compensation notifies those affected by January data breach
UK 35588010 confiscation order secured following proceeds of crime hearing
Making Vulnerable Drivers Exploitable Without Hardware The BYOVD Perspective
Megalodon GitHub Attack Targets 5561 Repos with Malicious CICD Workflows
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware