SonicWall Discloses Compromise of Cloud Backup Service
SonicWall said that threat actors accessed firewall preference files stored in the cloud for around 5% of its firewall install base
Information Security Magazine
VC Firm Insight Partners Notifies Victims After Ransomware Breach
1 week 4 days ago
Insight Partners has released more details of a 2024 ransomware breach impacting thousands of individuals
NCA Singles Out “The Com” as it Chairs Five Eyes Group
1 week 4 days ago
The UK’s National Crime Agency is the new chair of the Five Eyes Law Enforcement Group
FileFix Campaign Using Steganography and Multistage Payloads
1 week 5 days ago
FileFix campaign hides PowerShell script and encrypted EXEs in JPGs via multilingual phishing
Critical CVEs in Chaos-Mesh Enable In-Cluster Code Execution
1 week 5 days ago
A trio of critical vulnerabilities in the Chaos-Mesh platform allow in-cluster attackers to run arbitrary code, even in default configuration
TaskUs Employees Behind Coinbase Breach, US Court Filing Alleges
1 week 5 days ago
An employee of outsourcing firm TaskUs allegedly sold data stolen during the Coinbase data breach to hackers for $200 per record before her arrest in January 2025
Microsoft Disrupts RaccoonO365 Phishing Kit, Seizes 338 Malicious Sites
1 week 5 days ago
Microsoft revealed it has seized 338 websites associated with RaccoonO365, a phishing kit which has stolen at least 5000 Microsoft credentials worldwide
A Quarter of UK and US Firms Suffer Data Poisoning Attacks
1 week 5 days ago
New IO research reveals a surge in AI attacks attempting to corrupt underlying training data
Shai-Hulud Worm Prowls npm to Steal Hundreds of Secrets
1 week 5 days ago
A secret-stealing worm is spreading fast across the npm ecosystem, experts have warned
Fifteen Ransomware Gangs “Retire,” Future Unclear
1 week 6 days ago
Fifteen ransomware groups have claimed shutdown on BreachForums; experts warn of rebrands and copycats
Gucci and Alexander McQueen Hit by Customer Data Breach
1 week 6 days ago
The attack, which is linked to ShinyHunters, has reportedly compromised data relating to 7.4 million unique email addresses
Chinese AI Villager Pen Testing Tool Hits 11,000 PyPI Downloads
1 week 6 days ago
AI-native Villager, which automates Kali and DeepSeek penetration tests, has reached 11,000 PyPI downloads fueling dual-use threat
UK: Tax Refund-Themed Phishing Slows in 2025
1 week 6 days ago
Reports of email phishing attempts impersonating the UK’s HM Revenue & Customs plummeted in the first half of 2025
JLR Extends Production Halt After Cyber-Attack
1 week 6 days ago
Jaguar Land Rover (JLR) has confirmed that its pause in production will last until at least Wednesday, September 24
API Threats Surge to 40,000 Incidents in 1H 2025
1 week 6 days ago
Thales claims there were over 40,000 API incidents in the first half of 2025
FinWise Bank Warns of Insider Data Breach
1 week 6 days ago
An insider data breach at FinWise may have impacted 689,000 customers
HybridPetya Mimics NotPetya, Adds UEFI Compromise
2 weeks ago
HybridPetya ransomware mimics Petya/NotPetya, with an added UEFI bootkit and Secure Boot bypass
SEO Poisoning Targets Chinese Users with Fake Software Sites
2 weeks ago
SEO poisoning attack has been observed targeting Chinese Windows users via lookalike domains, installing Hiddengh0st and Winos
AI-Forged Military IDs Used in North Korean Phishing Attack
2 weeks ago
Genians observed the Kimsuky group impersonate a defense institution in a spear-phishing attack, leveraging ChatGPT to create fake military ID cards
CISA at Risk After OIG Accuses it of Wasting Federal Funds
2 weeks ago
US Department of Homeland Security OIG claims CISA mismanaged a key cyber retention incentive program
Checked
4 hours 2 minutes ago