Leak of VanHelsing Ransomware Builder Discovered on Cybersecurity Forum
The VanHelsing ransomware-as-a-service (RaaS) operation has recently experienced a significant security lapse, with the source code for its affiliate panel, a data leak blog, and its Windows encryptor builder…

Coinbase Reports Data Breach Affecting 69,461 Customers
Coinbase, a major cryptocurrency exchange boasting over 100 million users, has disclosed that a recent data breach has affected 69,461 customers. This incident, attributed to unauthorized access by a…

NCSC Assists Organizations in the Secure Disposal of IT Assets
Organizations seeking to securely manage the decommissioning of outdated IT assets can benefit from a newly released guide by the National Cyber Security Centre (NCSC). This initiative emphasizes the…

Fraudulent Kling AI Advertisements Exploit Vulnerabilities to Distribute Malware
Scammers have been leveraging the identity of Kling AI, a prominent AI-powered video generation tool, to disseminate malware through fraudulent advertisements and deceptive websites. Check Point Research has conducted…

Security Researchers Uncover PWA JavaScript Vulnerability Leading to Redirects to Malicious Adult Fraudulent Applications
Cybersecurity researchers have uncovered a new campaign that utilizes malicious JavaScript injections to redirect mobile device users to a fraudulent Chinese adult-content Progressive Web App (PWA) scam.

The payload…

Marks & Spencer Anticipates $402 Million Profit Impact Due to Cybersecurity Incident
British retailer Marks & Spencer (M&S) is facing a substantial profit decline estimated to reach £300 million ($402 million) as a result of a recent cyberattack that disrupted its…

Significant Portion of Americans Advocates for Restrictions on Biometric Technologies
A significant portion of the American public expresses deep-seated apprehensions regarding the use of biometric data online. Recent findings from a survey conducted by the Identity Theft Resource Center…

Enhancing Phishing Attack Detection: A Case Study on Tycoon2FA
It takes just one email to compromise an entire system. A single expertly crafted message can bypass filters, deceive employees, and grant attackers the access they require. Left undetected,…

Kettering Health Experiences System-Wide Disruption Following Ransomware Incident
Kettering Health, a prominent healthcare network in Ohio operating 14 medical centers, has experienced a significant disruption due to a cyberattack that resulted in a system-wide technology outage. This…

U.S. Teen to Enter Guilty Plea in PowerSchool Extortion Case
A 19-year-old college student in Massachusetts has agreed to plead guilty in connection with an extensive extortion scheme targeting PowerSchool, a leading educational software provider. According to a document…

Malicious Kling AI Facebook Advertisements Distribute RAT Malware to Over 22 Million Potential Targets
Counterfeit Facebook pages and sponsored advertisements on the social media platform have been identified as tools used to direct users to fraudulent websites impersonating Kling AI, with the intent…

Mitigating Threats to Service Desks: Strategic Solutions and Recommendations
Service desk agents play a critical role in assisting users during IT-related challenges, providing a personal touch that often enhances customer satisfaction. Unfortunately, this human factor also presents a…

M&S Prepares for £300 Million Cybersecurity Incident Expenses
Marks & Spencer (M&S) is facing substantial financial repercussions from an ongoing cyber incident, estimating costs to reach approximately £300 million ($400 million). The primary source of this financial…

KrebsOnSecurity Targeted by a 6.3 Tbps Distributed Denial of Service Attack Utilizing Aisuru Botnet
KrebsOnSecurity recently endured a significant Distributed Denial of Service (DDoS) attack that reached a staggering throughput of 6.3 terabits per second (Tbps). This incident has been attributed to the…

Significant Surge in PureRAT Malware Incidents: Fourfold Increase in 2025, Utilizing PureLogs to Target Russian Enterprises
Russian organizations are currently facing a sophisticated phishing campaign aimed at distributing malware known as PureRAT, as reported by Kaspersky. This campaign, which commenced in March 2023, has escalated…

European Union Imposes Sanctions on Stark Industries for Facilitating Cyberattacks
The European Union has enacted significant sanctions against Stark Industries, a web-hosting provider, along with its CEO Iurie Neculiti and owner Ivan Neculiti. This decision arises from their involvement…

The Approach of Private Investigators in Managing Digital Forensics
The contemporary landscape is defined by an unprecedented volume of data. From texts and emails to social media updates and deleted files, an array of information continuously accumulates and…

Enhancing CI/CD Workflow Security with Wazuh
Continuous Integration and Continuous Delivery/Deployment (CI/CD) encompasses practices that automate the development and release of code across various environments. CI/CD pipelines are essential in contemporary software development, ensuring that…

Malicious Chrome Extensions Imitating Fortinet, YouTube, and VPN Services Engage in Data Theft
A recent investigation has unveiled a sophisticated campaign targeting Google Chrome users, employing over 100 malicious browser extensions that masquerade as legitimate tools, including VPNs, AI assistants, and cryptocurrency…

Vulnerability in Google Cloud Functions Raises Significant Security Concerns
A potential privilege escalation vulnerability impacting Google Cloud Platform (GCP) Cloud Functions and its associated Cloud Build service has been identified. This issue, uncovered by Tenable Research, enabled attackers…

Disruption of Lumma Infostealer Malware Operation: Seizure of 2,300 Domains
Earlier this month, a highly coordinated disruption effort targeted the Lumma malware-as-a-service (MaaS) information stealer operation, resulting in the seizure of thousands of domains and a significant portion of…