ServiceAide Data Breach Compromises Sensitive Information of 500,000 Catholic Health Patients
A recent security incident involving Serviceaide has resulted in a data leak that potentially compromises the sensitive health information of approximately 500,000 patients under the care of Catholic Health.…

Analyzing the Security Breach: The Rapid Exploitation of the TeleMessage Application
It has been widely reported that Mike Waltz, the former National Security Advisor under President Trump, was observed utilizing a messaging application that closely resembles Signal during a cabinet…

Exploitation of Malicious PyPI Packages Targeting Instagram and TikTok APIs for User Account Validation
Cybersecurity researchers have identified malicious packages uploaded to the Python Package Index (PyPI) repository that function as tools to validate stolen email addresses against TikTok and Instagram APIs. The…

Compromised KeePass Password Manager Triggers ESXi Ransomware Incident
Cybercriminals have been distributing modified versions of the KeePass password manager for an extended period, utilizing these trojanized applications to install Cobalt Strike beacons, facilitate credential theft, and ultimately…

DDoSecrets Expands Index with Addition of 410GB of TeleMessage Breach Data
DDoSecrets has successfully indexed a substantial dataset of 410GB, comprising breached data from TeleMessage. This data includes various forms of messages and associated metadata, all stemming from a cyber…

Cocospy Stalkerware Applications Taken Offline Following Data Breach Incident
A recent development has seen the discontinuation of three surveillance applications that were implicated in unauthorized access to millions of mobile devices. The applications in question—Cocospy, Spyic, and Spyzie—were…

O2 UK Addresses Vulnerability Exposing Mobile User Location Data in Call Metadata
A vulnerability in O2 UK’s deployment of Voice over LTE (VoLTE) and WiFi Calling technologies has been identified, which could potentially disclose the general location and other identifying information…

Individual Sentenced for SIM Swap Attack Linked to SEC Bitcoin Hoax Tweet
Eric Council Jr. has been sentenced for his involvement in a SIM swap incident that occurred in 2024, which culminated in a fraudulent tweet concerning a Bitcoin ETF posted…

Go-Based Malware Executes XMRig Miner on Linux Systems Through Exploitation of Redis Configuration Vulnerabilities
Cybersecurity researchers have identified a new Linux cryptojacking campaign targeting publicly accessible Redis servers, named RedisRaider by Datadog Security Labs. This malicious activity involves aggressive scanning of randomized…

Emergency Updates for Windows 10 Address BitLocker Recovery Challenges
Microsoft has issued emergency out-of-band updates to address a critical issue that causes Windows 10 systems to enter BitLocker recovery mode following the installation of the May 2025 security…

Consumer Vulnerability to Social Media Fraud Ads Reaches 50%
Around half of consumers in both the UK and the US have reported being targeted by social media advertisements that promote retail fraud guides and services, along with disguised…

Chinese Cyber Threat Actors Implement MarsSnake Backdoor in Prolonged Campaign Against Saudi Organization
Threat hunters have uncovered the tactics of a China-aligned threat actor known as UnsolicitedBooker, which targeted an undisclosed international organization in Saudi Arabia with a previously undocumented…

Arla Foods Acknowledges Cybersecurity Breach Impacting Production and Leading to Operational Delays
Arla Foods has recently acknowledged that it suffered a cyberattack that has significantly disrupted its production operations. The company clarified that the attack specifically impacted its facility in Upahl,…

Regeneron Commits to Enhancing Security Measures Following Acquisition of 23andMe
The planned acquisition of the genetic testing company 23andMe by Regeneron Pharmaceuticals has raised significant concerns about the future of data security and customer privacy. In a recent announcement…

Emergence of Nitrogen Ransomware: Targeting Financial Institutions in the United States, United Kingdom, and Canada
Nitrogen, a ransomware variant, has surfaced as a significant threat to organizations globally, targeting critical sectors and leveraging sophisticated tactics to breach defenses. This malware operates by encrypting files…

Key Insights from the 2025 State of Penetration Testing Report: An In-Depth Analysis of the Current Landscape
In the recent State of Pentesting Report 2025, Pentera engaged 500 Chief Information Security Officers (CISOs) from global enterprises, including 200 from the United States, to analyze their strategies,…

Microsoft Announces Enhanced “Advanced” Settings for Windows 11
At the recent Build 2025 developer conference, Microsoft introduced the ‘Advanced Settings’ feature aimed at enhancing user customization within Windows 11. This new functionality is designed to empower both…

Growing Cyber Risks Associated with Generative AI Drive Investment in AI Security Solutions
Around 73% of organizations are now investing in AI-specific security tools due to escalating concerns regarding the cyber risks associated with Generative AI (GenAI), as reported in the latest…

Compromised RVTools Installer Distributing Bumblebee Malware
Recent findings have revealed that the RVTools installer available on its official website has been compromised, leading to the distribution of malware. Investigations indicate that this malicious software is…

Cyber Attack Targets Major Supplier for UK Supermarkets Aldi, Tesco, and Sainsbury’s, Leading to Ransom Demand
Owen Scott reports that Peter Green Chilled, a logistics provider serving various supermarkets in the UK, has experienced a significant cyberattack resulting in a ransom demand. In response to…