Data Breach
-
Read more8Base ransomware claims to have stolen Volkswagen data—learn about the allegations, company's response, and tips for supply chain security to avoid similar breaches. -
Read moreF5 Networks' vulnerability left 269,000 devices at risk—learn about the attack, Shadowserver findings, and steps like patching and SIEM to defend against hacker exploits and data theft. -
Read moreLastPass warns of phishing emails with ZIP files dropping malware for keylogging and data theft—enable MFA, use antivirus, and verify sources to protect against these sneaky attacks. -
Read moreAPT group Mysterious Elephant exploits WhatsApp with custom malware for data theft—learn to patch vulnerabilities, monitor networks, and train against phishing to protect from these evolving cyber attacks. -
Read moreIgnoble Scorpius exploited a VPN login for ransomware chaos, stealing data and encrypting systems—learn to use MFA, segment networks, and detect threats early to safeguard your business from these growing risks. -
Read moreUC researchers reveal Pixnapping, letting hackers steal 2FA and app data via Android side channels—up to 61% accurate with AI. No full patch yet; update devices, check permissions, and secure apps to avoid risks. -
Read more"Trinity of Chaos" group (Muddled Libra, Bling Libra, LAPSUS$) steals 1B Salesforce records targeting retail/hospitality; launches DLS October 3, 2025, with FBI seizure October 9. EaaS model enables fraud—implement zero trust and ISAC intel to defend against data theft. -
Read moreIndian scammers use WhatsApp fake ticket alerts to push RAT-infected mParivahan apps, stealing OTPs, spying via camera, and draining banks. Download from official stores, update OS, use antivirus—report to 1930 if hit to stay safe. -
Read moreHigh-severity CVE-2025-61884 (CVSS 7.5) in Oracle E-Business Suite's Configurator allows unauthenticated HTTP attacks to access sensitive data (versions 12.2.3-12.2.14). Follows Cl0p-linked CVE-2025-61882 exploits—apply updates, segment networks, and scan for vulnerabilities now. -
Read moreNew SnakeKeylogger campaign spoofs CPA Global/Clarivate emails with ISO/ZIP lures containing BAT/PowerShell payloads to log keystrokes, hijack clipboard, and exfiltrate data. Persists via "SysUpdate" tasks—train users, sandbox attachments, and monitor PowerShell for defense.
Recent Posts
