Marquette County Medical Care Facility Announces Data Breach Disclosure
Marquette County Medical Care Facility (MCMCF) has reported a data breach that was identified in March 2025. On March 3, 2025, MCMCF recognized an incident of business email compromise…

SparkKitty Spyware Discovered on App Store and Play Store: Compromising Personal Photos for Cryptocurrency Data Theft
Kaspersky has identified a new spyware threat known as SparkKitty, which has infiltrated both the Apple App Store and Google Play. This sophisticated malware is designed to steal sensitive…

Thousands of Private Camera Feeds Exposed Online: Ensure Your Security is Intact
If you have internet-connected cameras in or around your home, it is crucial to review their settings. Recent research has uncovered over 40,000 cameras exposing images of residential and…

Google Launches Imagen 4: Advanced Text-to-Image Model Now Available at No Cost
Google has introduced Imagen 4, its advanced text-to-image model, which is now available for free exclusively on AI Studio. This release represents a significant upgrade from previous versions, enhancing…

U.S. Visa Regulation Mandates Public Access to Social Media Accounts for Applicants
The United States Embassy in India has announced a significant update for applicants seeking F, M, and J nonimmigrant visas, advising that social media accounts should be made public.…

Dublin ETB Penalized €125,000 for Violations of Data Protection Regulations
Dublin’s Education and Training Board (CDETB) has been subjected to a penalty of €125,000 imposed by the Data Protection Commission following a significant data breach. This incident compromised the…

Androxgh0st Botnet Expands Operations, Targeting University Server Infrastructure in the United States
Recent findings from CloudSEK indicate that the Androxgh0st botnet is undergoing significant evolution, with academic institutions, such as the University of California, San Diego, becoming key targets. This sophisticated…

Claude Enhances Capabilities with Integrated Memory Support to Match ChatGPT
AI startup Anthropic is set to enhance its Claude AI model by introducing a built-in memory feature aimed at competing with OpenAI’s ChatGPT, which has already implemented advanced memory…

Mitigating Undetected Threats Within Your Entra Environment
Inviting guest users into your Entra ID tenant may expose you to significant risks.

A vulnerability in Microsoft Entra’s subscription management allows guest users to create and transfer subscriptions…

Microsoft Vulnerability Continues to Expose SaaS Applications Two Years Post-Discovery
A critical vulnerability in Microsoft’s Entra ID continues to expose numerous enterprise applications, two years post-discovery. Semperis, an identity security provider, presented new findings regarding this threat at the…

Arrest of ShinyHunters and Associates in France
The FBI’s recent apprehension of Conor Brian Fitzpatrick, known online as “Pompompurin,” in March 2023, marked a significant disruption to the operations of “Breached.” Fitzpatrick, an American national, was…

Emerging WordPress Malware Disguises Itself on Checkout Pages, Mimicking Cloudflare Functionality
A recent analysis has unveiled a complex malware campaign targeting WordPress sites, facilitated by a malicious plugin masquerading as a legitimate WordPress Core component. This sophisticated attack, active since…

Data Brokers’ Non-Compliance with State Consumer Protection Agency Registration Requirements
Hundreds of data brokers remain unregistered with state consumer protection agencies, as highlighted by recent findings from privacy advocacy groups.

Data brokers, in various forms, aggregate personally identifiable information…

Emergence of Advanced ‘Fake Interview’ Schemes Utilizing 35 npm Packages for Malware Distribution
The recent resurgence of North Korea’s ‘Contagious Interview’ campaign has emerged as a significant threat, targeting job seekers through malicious npm packages designed to compromise developers’ devices. These packages…

Ongoing nOAuth Vulnerability Impacting 9% of Microsoft Entra SaaS Applications Two Years Post-Discovery
Recent research has highlighted ongoing risks associated with a known security vulnerability in Microsoft’s Entra ID, which may allow malicious actors to execute account takeovers within certain software-as-a-service (SaaS)…

Hackers Exploit Open-Source Tools to Target Financial Institutions in Africa
Unit 42, the research team at Palo Alto Networks, has uncovered a malicious campaign targeting financial organizations throughout Africa. This campaign, conducted by a group identified as CL-CRI-1014, has…

The Implications of Security Breaches
Six months following a significant data breach affecting students, families, and school staff nationwide, including all school districts in Southeastern North Carolina, the North Carolina Department of Public Instruction…

Facial Recognition: Options and Procedures for Opting Out
During a recent visit to our Estonian office, our remote team engaged in discussions about travel experiences. David Ruiz, our senior privacy advocate, shared his choice to opt out…

Hacker ‘IntelBroker’ Indicted in the United States for International Data Theft Violations
A British national, known online as “IntelBroker,” has been indicted in the United States for the global theft and sale of sensitive data, allegedly causing damages estimated at $25…

Exploitation of Open-Source Tools by Cyber Criminals Targeting Financial Institutions Throughout Africa
Cybersecurity researchers have reported a series of cyber attacks targeting financial organizations across Africa since July 2023, utilizing a combination of open-source and publicly accessible tools to maintain persistent…

French Authorities Apprehend Four Individuals Linked to Notorious BreachForums
Four individuals in their twenties have been apprehended in France due to their alleged involvement with the notorious dark web forum, BreachForums.

On June 25, Laure Beccuau, a State…