Discord Reveals Data Breach Following Third-Party Compromise Information Security Magazine 9 months ago Discord said a third-party customer services provider was compromised to access user data, with the attackers aiming to extort a financial ransom
NCSC: Patch Critical Oracle EBS Bug Now Information Security Magazine 9 months ago A critical Oracle E-Business Suite vulnerability is being actively exploited by the Clop ransomware group
Microsoft: Critical GoAnywhere Bug Exploited in Medusa Ransomware Campaign Information Security Magazine 9 months ago A critical GoAnywhere vulnerability is being exploited by the Medusa ransomware group, says Microsoft
Europol Calls for Stronger Data Laws to Combat Cybercrime Information Security Magazine 9 months ago Europol’s Cybercrime Conference has warned that cybercriminals are exploiting new technologies faster than law enforcement can adapt
Ransomware Group “Trinity of Chaos” Launches Data Leak Site Information Security Magazine 9 months ago A new TOR data leak site published by the Trinity of Chaos ransomware group unveils 39 firms’ data and threatens Salesforce litigation
Scanning of Palo Alto Portals Surges 500% Information Security Magazine 9 months ago Experts warn that threat actors may be gearing up for compromise after large uptick in scans of Palo Alto Network portals
Asahi Confirms Ransomware Attack, Data Stolen from Servers Information Security Magazine 9 months ago Asahi confirmed it has fallen victim to a ransomware attack, and revealed it has started manual order processing amid ongoing operational disruption
Renault Informs Customers of Supply Chain Data Breach Information Security Magazine 9 months ago Renault and Dacia have become the latest big-name brands to suffer a supply chain breach
Chinese-Speaking Cybercrime Group Hijacks IIS Servers for SEO Fraud Information Security Magazine 9 months ago Cisco Talos has identified a Chinese-speaking cybercrime group that targets high-value Internet Information Services (IIS) for SEO fraud
Hackers Target Unpatched Flaws in Oracle E-Business Suite Information Security Magazine 9 months ago Patches for the targeted vulnerabilities were released in Oracle’s July 2025 security update
WestJet Data Breach Impacts 1.2 Million Customers Information Security Magazine 9 months ago WestJet revealed that customer personal details and membership data were stolen in the June 2025 attack
US Government Shutdown to Slash Federal Cybersecurity Staff Information Security Magazine 9 months ago The US government shutdown is estimated to result in around 65% of CISA staff being furloughed, with fears that threat actors will exploit critical security gaps
Extortion Emails Sent to Executives by Self-Proclaimed Clop Gang Member Information Security Magazine 9 months ago The initial investigation shows early signs of links with the FIN11 and Clop cyber extortion groups
Confucius Shifts from Document Stealers to Python Backdoors Information Security Magazine 9 months ago The Confucius cyber-espionage group has shifted its tactics from document-focused stealers to Python-based backdoors like AnonDoor
Free VPN Apps Found Riddled With Security Flaws Information Security Magazine 9 months ago A new study by Zimperium has revealed serious risks in free VPN apps, exposing users to privacy threats and security flaws
Expired US Cyber Law Puts Data Sharing and Threat Response at Risk Information Security Magazine 9 months ago Experts argued that the lapse of the Cybersecurity Information Sharing Act could have far-reaching consequences in US national cyber defenses
Forrester: Agentic AI-Powered Breach Will Happen in 2026 Information Security Magazine 9 months ago Forrester predicts agentic AI will be responsible for a major data breach in 2026
Phishing Dominates EU-Wide Intrusions, says ENISA Information Security Magazine 9 months ago ENISA reveals phishing and vulnerability exploitation accounted for majority of intrusions in past year
Broadcom Issues Patches for VMware NSX and vCenter Security Flaws Information Security Magazine 9 months ago Broadcom has released security patches for critical flaws affecting several VMware products
Shortcut-based Credential Lures Deliver DLL Implants Information Security Magazine 9 months ago A new campaign has been observed using malicious Windows shortcuts in credential-themed ZIP files to deploy PowerShell script