The European Commission reports a cyber attack on its central mobile infrastructure that may have exposed staff names and phone numbers.
Category: cyber attack
cyber attack, cyber attacks, Cybersecurity, data breach, Data Breaches, Europe, Global Security News
Cyber Attack Hits European Commission Staff Mobile Systems
The European Commission reports a cyber attack on its central mobile infrastructure that may have exposed staff names and phone numbers.
cyber attack, cyber attacks, Cybersecurity, data breach, Data Breaches, Europe, Global Security News
Cyber Attack Hits European Commission Staff Mobile Systems
The European Commission reports a cyber attack on its central mobile infrastructure that may have exposed staff names and phone numbers.
AI, cyber attack, cyber attacks, Cybersecurity, Data Breaches, Global Security News, Security
Flickr Notifies Users of Data Breach After External Partner Security Flaw
Flickr says a third-party email vendor flaw may have exposed user names, emails, IP data, and activity logs,…
AI, BreachForums, cyber attack, cyber attacks, Data Breaches, Global Security News, Security
Substack Breach: 662,752 User Records Leaked on Cybercrime Forum
Substack confirms a breach after hacker accessed internal user records now circulating on crime forums, exposing emails, phone numbers, and account metadata.
AI, cyber attack, Cybersecurity, Global Security News, malware, Security
macOS Users Hit by Python Infostealers Posing as AI Installers
Microsoft details 3 Python Infostealers hitting macOS users via fake AI tools, Google ads, and Terminal tricks to steal passwords and crypto, then erase traces.
cyber attack, cyber attacks, Global Security News, Security
Sanctioned Bulletproof Host Linked to Hijacking of Old Home Routers
Compromised home routers in 30+ countries had DNS traffic redirected, sending users to malicious sites while normal browsing appeared unaffected.
china, cyber attack, cyber attacks, Global Security News, malware, Security
Chinese Mustang Panda Used Fake Diplomatic Briefings to Spy on Officials
A new spy campaign by Mustang Panda uses fake US diplomatic briefings to target government officials. Discover how this silent surveillance operation works.
APT28, cyber attack, cyber attacks, Exploits, Global Security News, Microsoft, Security
Op Neusploit: Russian APT28 Uses Microsoft Office Flaw in Malware Attacks
A new campaign by the Russian-linked group APT28, called Op Neusploit, exploits a Microsoft Office flaw to steal emails for remote control of devices in Ukraine, Slovakia, and Romania.
cyber attack, cyber attacks, Cybersecurity, data breach, Global Security News, Security
Everest Ransomware Claims 90GB Data Theft Involving Legacy Polycom Systems
Everest ransomware claims a breach involving legacy Polycom systems later acquired by HP Inc., alleging the theft of 90GB of internal data.
cyber attack, cyber attacks, Cybersecurity, data breach, Global Security News, Security
Everest Ransomware Claims 90GB Data Theft From HP Inc.’s Polycom Systems
Everest ransomware claims a breach involving legacy Polycom systems now under HP Inc, alleging 90GB of internal data, with no confirmation from HP so far.
cyber attack, Cybersecurity, Exploits, Global Security News, Phishing Scam, Security
Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins
A multi-stage phishing campaign is targeting business users by exploiting Vercel cloud storage, PDF attachments, and Telegram bots to steal Dropbox credentials.
cyber attack, Cybersecurity, Exploits, Global Security News, Phishing Scam, Security
Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins
A multi-stage phishing campaign is targeting business users by exploiting Vercel cloud storage, PDF attachments, and Telegram bots to steal Dropbox credentials.
cyber attack, Cybersecurity, Exploits, Global Security News, Phishing Scam, Security
Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins
A multi-stage phishing campaign is targeting business users by exploiting Vercel cloud storage, PDF attachments, and Telegram bots to steal Dropbox credentials.
cyber attack, Cybersecurity, Exploits, Global Security News, Phishing Scam, Security
Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins
A multi-stage phishing campaign is targeting business users by exploiting Vercel cloud storage, PDF attachments, and Telegram bots to steal Dropbox credentials.
cyber attack, cyber attacks, Cybersecurity, Global Security News, malware, Security
Notepad++ Updates Delivered Malware After Hosting Provider Breach
A months-long breach allowed Chinese State-sponsored hackers to hijack Notepad++ updates in 2025, exposing users to malware via a compromised hosting provider.
cyber attack, cyber attacks, Cybersecurity, Global Security News, malware, Security
Notepad++ Updates Delivered Malware After Hosting Provider Breach
A months-long breach allowed Chinese State-sponsored hackers to hijack Notepad++ updates in 2025, exposing users to malware via a compromised hosting provider.
cyber attack, cyber attacks, Cybersecurity, Global Security News, malware, Security
Notepad++ Updates Delivered Malware After Hosting Provider Breach
A months-long breach allowed Chinese State-sponsored hackers to hijack Notepad++ updates in 2025, exposing users to malware via a compromised hosting provider.
cyber attack, cyber attacks, Cybersecurity, Global Security News, malware, Security
Notepad++ Updates Delivered Malware After Hosting Provider Breach
A months-long breach allowed Chinese State-sponsored hackers to hijack Notepad++ updates in 2025, exposing users to malware via a compromised hosting provider.
0day, cyber attack, Cybersecurity, EPMM, Global Security News, Security
Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack
Ivanti has disclosed two critical remote code execution (RCE) flaws (CVE-2026-1281 & CVE-2026-1340) in its EPMM software.
0day, cyber attack, Cybersecurity, EPMM, Global Security News, Security
Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack
Ivanti has disclosed two critical remote code execution (RCE) flaws (CVE-2026-1281 & CVE-2026-1340) in its EPMM software.
0day, cyber attack, Cybersecurity, EPMM, Global Security News, Security
Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack
Ivanti has disclosed two critical remote code execution (RCE) flaws (CVE-2026-1281 & CVE-2026-1340) in its EPMM software.
0day, cyber attack, Cybersecurity, EPMM, Global Security News, Security
Ivanti Issues Urgent Fix for Critical Zero-Day Flaws Under Active Attack
Ivanti has disclosed two critical remote code execution (RCE) flaws (CVE-2026-1281 & CVE-2026-1340) in its EPMM software.
cyber attack, Cybersecurity, Global Security News, malware, Security
Windows Malware Uses Pulsar RAT for Live Chats While Stealing Data
We usually think of computer viruses as silent, invisible programs running in the background, but a worrying discovery shows that modern hackers are getting much more personal.
Android, cyber attack, Global Security News, malware, Security
Arsink Spyware Posing as WhatsApp, YouTube, Instagram, TikTok Hits 143 Countries
Another day, another Android malware campaign targeting unsuspecting users worldwide by masquerading as popular apps.
Artificial Intelligence, cyber attack, Cybersecurity, Global Security News, Security
Operation Bizarre Bazaar: New LLMjacking Campaign Targets Unprotected Models
Pillar Security Research has discovered Operation Bizarre Bazaar, a massive cyberattack campaign led by a hacker known as Hecker. Between December 2025 and January 2026, over 35,000 sessions were recorded targeting AI systems to steal compute power and resell access via silver.inc.
Apple, cyber attack, cyber crime, Global Security News, Scams and Fraud, Security
Malicious Google Ads Target Mac Users with Fake Mac Cleaner Pages
Mac users searching for software on Google or other search engines should be extra careful.
cyber attack, Cybersecurity, Global Security News, GoToResolve, malware, Security
GoTo Resolve Tool’s Background Activities Compared to Ransomware Tactics
New research from Point Wild’s Lat61 team reveals how the HEURRemoteAdmin.GoToResolve.gen tool allows silent, unattended access to PCs. Learn why this legitimate remote administration software is being flagged as a security risk and its surprising connection to ransomware tactics.
cyber attack, Cybersecurity, Global Security News, GoToResolve, Lat61, Security
GoTo Resolve Flagged for Silent Access, Abuse Linked to Ransomware Tactics
New research from Point Wild’s Lat61 team reveals how the HEURRemoteAdmin.GoToResolve.gen tool allows silent, unattended access to PCs. Learn why this legitimate remote administration software is being flagged as a security risk and its surprising connection to ransomware tactics.
cyber attack, cyber crime, Cybersecurity, data breach, Global Security News, Security
ShinyHunters Target 100+ Firms Using Phone Calls to Bypass SSO Security
ShinyHunters is driving attacks on 100+ organisations, using vishing and fake login pages with allied groups to bypass SSO and steal company data, reports Silent Push.
cyber attack, cyber crime, Cybersecurity, fraud, Global Security News
US Charges 31 Suspects in Nationwide ATM Jackpotting Scam
US prosecutors have charged 31 more suspects in a nationwide ATM jackpotting scam, bringing the total number of defendants to 87 across multiple states.
cyber attack, cyber attacks, Global Security News, malware, Security
Poland Thwarts Russian Wiper Malware Attack on Power Plants
Poland blocked a Russian wiper malware attack on power and heating plants, officials say, avoiding outages during winter and prompting tighter cyber rules.
Chrome, cyber attack, cyber crime, Global Security News, malware, Security
$6,000 “Stanley” Toolkit Sold on Russian Forums Fakes Secure URLs in Chrome
Say hello to Stanley, a new malicious toolkit that guarantees bypassing Google’s Chrome Web Store review process.
cyber attack, cyber crime, Cybersecurity, Global Security News, malware, North America
Venezuelan Nationals Face Deportation After Multi State ATM Jackpotting Scheme
According to authorities, both suspects were in the United States unlawfully.
cyber attack, Global Security News, leaks, Security
ShinyHunters Leak Alleged Data of Millions From SoundCloud, Crunchbase and Betterment
ShinyHunters claim more data breaches and leaks are coming soon!
cyber attack, Cybersecurity, Global Security News, malware, Security
Hackers Are Using LinkedIn DMs and PDF Tools to Deploy Trojans
That LinkedIn message pretending to be job offer could just be malwre.
cyber attack, Cybersecurity, Global Security News, hacking news, hacktivism
Iranian TV Transmission Hacked With Message from Exiled Prince
Unidentified hackers disrupted Iranian state television to broadcast messages from exiled Crown Prince Reza Pahlavi. Read about the economic crisis, the internet blackout, and the latest reports on the protest death toll.
cyber attack, cyber attacks, Cybersecurity, data breach, Global Security News, Security
Everest Ransomware Claims McDonalds India Breach Involving Customer Data
The notorious Everest ransomware group is claiming to have breached McDonald’s India, the Indian subsidiary of the American…
Apple, cyber attack, cyber attacks, cyber crime, Global Security News, Security
RansomHouse Claims Data Breach at Major Apple Contractor Luxshare
RansomHouse claims to have breached Apple contractor Luxshare, but no evidence has been released. Links are offline and the breach remains unverified.
backdoor, cyber attack, Exploits, Global Security News, malware, Phishing Scam, Security
Hackers Exploiting PDF24 App to Deploy Stealthy PDFSIDER Backdoor
Resecurity has identified PDFSIDER malware that exploits the legitimate PDF24 App to covertly steal data and allow remote access. Learn how this APT-level campaign targets corporate networks through spear-phishing and encrypted communications.
cyber attack, cyber attacks, cyber crime, Cybersecurity, Global Security News, Security
ICE Agent Doxxing Platform was Crippled After Coordinated DDoS Attack
The activist website called “ICE List” was offline after a massive DDoS attack. The crash followed a leak of 4,500 federal agent names linked to the Renee Nicole Good shooting.
Browser, Chrome, cyber attack, Global Security News, malware, Security
GhostPoster Browser Malware Hid for 5 Years With 840,000 Installs
Researchers uncover a 5-year malware campaign using browser extensions on Chrome, Firefox and Edge, relying on hidden payloads and shared infrastructure.
cyber attack, cyber attacks, Cybersecurity, Global Security News, Security
Hacker Claims Full Breach of Russia’s Max Messenger, Threatens Public Leak
A hacker claims a full breach of Russia’s Max Messenger, threatening to leak user data and backend systems if demands are not met.
cyber attack, Cybersecurity, Global Security News, Magecart, malware, Security
Widespread Magecart Campaign Targets Users of All Major Credit Cards
Researchers at Silent Push have exposed a global Magecart campaign stealing credit card data since 2022. Learn how this invisible web-skimming attack targets major networks like Mastercard and Amex, and how to stay safe.
cyber attack, Cybersecurity, Europe, Global Security News, Security
Russian BlueDelta (Fancy Bear) Uses PDFs to Steal Logins in Just 2 Seconds
New research from Recorded Future reveals how Russian state hackers (BlueDelta) are using fake Microsoft and Google login portals to steal credentials. The campaign involves using legitimate PDF lures from GRC and EcoClimate to trick victims.
cyber attack, cyber attacks, cyber crime, Cybersecurity, Global Security News, Security
Everest Ransomware Claims Breach at Nissan, Says 900GB of Data Stolen
Everest ransomware claims to have breached Nissan Motor Corporation, alleging the theft of 900GB of internal data, including documents and screenshots.
BreachForums, cyber attack, cyber crime, Global Security News, leaks, Security
Database of 323,986 BreachForums Users Leaked as Admin Disputes Scope
Database of 323,986 BreachForums users leaked online as forum admins claim the exposed data is partial and dates back to August 2025.
CISA, cyber attack, Cybersecurity, Global Security News, Security
CISA Urges Emergency Patching for Actively Exploited HPE OneView Flaw
CISA adds a critical HPE OneView flaw (CVE-2025-37164) to its KEV catalogue with a Jan 28 deadline. Learn how this 10.0 RCE bug puts server infrastructure at risk.
cyber attack, Cybersecurity, Global Security News, hacking news, Security
Hacker Behind Wired.com Leak Now Selling Full 40M Condé Nast Records
A hacker claims to be selling nearly 40 million Condé Nast user records after leaking Wired.com data, with multiple major brands allegedly affected.
cyber attack, cyber attacks, cyber crime, Global Security News, malware, Security
Lone Hacker Used Infostealers to Access Data at 50 Global Companies
A Hudson Rock report reveals how an Iranian hacker named Zestix breached 50 global companies, including Iberia Airlines and Pickett & Associates, by using stolen passwords and a lack of MFA.
cyber attack, Cybersecurity, data breach, Global Security News, Laws & Legalities, Security
Major Data Breach Hits Company Operating 150 Gas Stations in the US
Texas based Gulshan Management Services, operator of Handi Plus and Handi Stop gas stations, reports a data breach impacting over 377,000 people.
Crypto, cyber attack, cyber attacks, Global Security News, Phishing Scam, Security
Ledger Confirms Global-e Breach, Warns Users of Phishing Attempts
Ledger confirms data breach via Global-e partner. Customer info exposed, phishing attacks active. No passwords or crypto recovery phrases leaked.
AI, cyber attack, Global Security News, Security
How To Build Ransomware-Resilient AI Data Pipelines: A Practical Guide for Modern Enterprises
Modern enterprises depend on AI data pipelines for analytics and automated decision-making. As these pipelines become more integrated…
cyber attack, Cybersecurity, data breach, Global Security News, Honeypot, Security
Resecurity Says ShinyHunters Fell for Honeypot After Breach Claim
Resecurity denies breach claims by ShinyHunters, says attackers accessed a honeypot with fake data. No real systems or customer info were compromised.
crowdstrike, cyber attack, cyber attacks, Cybersecurity, Global Security News, Security
ShinyHunters Claim Breach of US Cybersecurity Firm Resecurity
The hacking group ShinyHunters has claimed responsibility for breaching Resecurity, a US-based cybersecurity company headquartered in Los Angeles.…
Botnet, cyber attack, Cybersecurity, Exploits, Global Security News, malware, Security
RondoDox Botnet is Using React2Shell to Hijack Thousands of Unpatched Devices
RondoDox hackers exploit the React2Shell flaw in Next.js to target 90,000+ devices, including routers, smart cameras, and small business websites.
cyber attack, cyber attacks, Cybersecurity, data breach, Global Security News, Security
Tokyo FM Data Breach: Hacker Claims Over 3 Million Records Stolen
Tokyo FM is investigating claims of a massive data breach involving 3 million records. Learn what information was allegedly taken and how you can stay safe.
cyber attack, cyber attacks, cyber crime, Europe, Global Security News, Security
Hacker Claims European Space Agency Breach, Selling 200GB of Data
A hacker using the alias 888 is claiming responsibility for a major data breach affecting the European Space…
cyber attack, Cybersecurity, Global Security News, leaks, Security
Everest Ransomware Leaks 1TB of Stolen ASUS Data
On December 2, 2025, Hackread.com exclusively reported that the Everest ransomware group claimed to have stolen 1TB of…
cyber attack, cyber crime, Cybersecurity, Global Security News
2 US Cybersecurity Experts Guilty of Extortion Scheme for ALPHV Ransomware
Can you trust your cybersecurity team? A recent federal case reveals how two US-based cybersecurity experts turned into affiliates for the BlackCat ransomware group, extorting over $1.2M in Bitcoin. Read the full story on their 2023 crime spree.
Clop, cyber attack, Cybersecurity, Global Security News, Security
30,000 Korean Air Employee Records Stolen as Cl0p Leaks Data Online
Korean Air confirms a major data leak affecting 30,000 staff members after the Cl0p gang targeted a catering partner. Learn what data was stolen and the airline’s response to secure its data.
backdoor, cyber attack, Global Security News, malware, Security
HoneyMyte (aka Mustang Panda) Deploys ToneShell Backdoor in New Attacks
HoneyMyte (Mustang Panda) is back with a new ToneShell backdoor. Read how this stealthy attack blinds Microsoft Defender to target government entities in Asia.
cyber attack, Cybersecurity, Gaming, Global Security News, Security
Ubisoft Shuts Down Rainbow Six Siege After MongoDB Exploit Hits Players
Over 87,000 MongoDB instances are at risk from a critical memory leak called MongoBleed. Following the chaos at Ubisoft, see how this zero-password flaw works and how to protect your data.
cyber attack, cyber attacks, Global Security News, Security
Hacker Leaks 2.3M Wired.com Records, Claims 40M-User Condé Nast Breach
A hacker using the alias “Lovely” has leaked what they claim is the personal data of over 2.3…
cyber attack, cyber attacks, Cybersecurity, Global Security News, Security
Everest Ransomware Group Claims Theft of Over 1TB of Chrysler Data
On December 25, while much of the world was observing Christmas, the Everest ransomware group published a new…
cyber attack, Cybersecurity, Global Security News, Koi Security, privacy, Security
Popular NPM Package lotusbail Exposed as Trojan Stealing WhatsApp Chats
Koi Security uncovers lotusbail, a malicious npm package with 56K downloads that steals WhatsApp messages and installs a persistent backdoor. Learn how to protect your data.
ClickFix, cyber attack, Cybersecurity, Global Security News, malware, Security
New MacSync Stealer Disguised as Trusted Mac App Hunts Saved Passwords
Jamf security experts have found a new version of MacSync Stealer. Disguised as a zk-call app, it uses official notarization to bypass security and steal your saved passwords.
cyber attack, cyber attacks, cyber crime, Cybersecurity, Global Security News, Security
Ransomware Hits Romanian Water Authority, 1000 Systems Knocked Offline
Romania’s national water authority, Romanian Waters, was hit by a major ransomware attack affecting 1,000 systems but dams remain safe. Learn how authorities are fighting back without paying the ransom.
Android, Banking, cyber attack, Global Security News, malware, Security
Frogblight Malware Targets Android Users With Fake Court and Aid Apps
Kaspersky warns of ‘Frogblight,’ a new Android malware draining bank accounts in Turkiye. Learn how this ‘court case’ scam steals your data and how to stay safe.
cyber attack, cyber crime, Cybersecurity, Global Security News, malware, Security
Hackers Abuse Popular Monitoring Tool Nezha as a Stealth Trojan
Cybersecurity firm Ontinue reveals how the open-source tool Nezha is being used as a Remote Access Trojan (RAT) to bypass security and control servers globally.
Crypto, cyber attack, cyber attacks, Global Security News, Security
Lazarus Group Embed New BeaverTail Variant in Developer Tools
North Korea’s Lazarus Group deploys a new BeaverTail variant to steal credentials and crypto using fake job lures, dev tools, and smart contracts.
APT, cyber attack, Cybersecurity, Global Security News, Infy, Security
Iranian APT ‘Prince of Persia’ Resurfaces With New Tools and Targets
SafeBreach reports the resurgence of the Iranian APT group Prince of Persia (Infy). Discover how these state-sponsored hackers are now using Telegram bots and Thunder and Lightning malware to target victims globally across Europe, India, and Canada.
BreachForums, cyber attack, cyber crime, Cybersecurity, data breach, Global Security News
France Arrests 22 Year Old After Hack of Interior Ministry Systems
France confirms a cyberattack on its Interior Ministry as a 22-year-old is arrested. Hacker claims access to police, tax, and criminal record systems.
ClickFix, cyber attack, Cybersecurity, Global Security News, malware, Security
New ClickFix Attack Uses Fake Browser Fix to Install DarkGate Malware
Researchers at Point Wild have discovered a new ClickFix attack campaign that tricks users into manually installing DarkGate malware via fake browser extension alerts. Learn how this attack bypasses security by using the Windows Run box and how you can stay safe.
cyber attack, cyber attacks, cyber crime, Cybersecurity, Global Security News, privacy
Hackers Claim Stealing 94GB of Pornhub Premium User Watch Histories
Cybercriminal group ShinyHunters targets former Pornhub Premium users in a massive 94GB data extortion campaign. Learn about the stolen data details, the involvement of a smishing attack, and the conflicting reports on the breach.
cyber attack, cyber attacks, Cybersecurity, data breach, Global Security News, Security
SoundCloud Hit by Cyberattack, Breach Affects 20% of its Users
SoundCloud confirms a breach affecting an estimated 20% of users, resulting in stolen email addresses. The company is dealing with follow-up DoS attacks by unnamed attackers while media reports allege involvement of ShinyHunters.
cyber attack, cyber attacks, Cybersecurity, Global Security News, Security
700Credit Data Breach Exposing Details of 5.6 Million Consumers
US auto loan service 700Credit confirms a data breach exposed names, addresses, and Social Security numbers of dealership customers. Free credit monitoring is offered.
cyber attack, Global Security News, malware, Security
Hamas Linked Hackers Using AshTag Malware Against Diplomatic Offices
New report by Unit 42 reveals the Hamas-linked Ashen Lepus (WIRTE) group is using the AshTag malware suite to target Middle Eastern diplomatic and government entities with advanced, hidden tactics.
cyber attack, Cybersecurity, data breach, Global Security News, Security
Coupang CEO Steps Down After Data Breach Hits 33.7 Million Users
South Korean e-commerce giant Coupang faces intense scrutiny after CEO Park Dae-jun resigns over a data breach that exposed 33.7 million customer accounts. Read about the police raids, US lawsuit, and regulatory orders from PIPC.
CISA, cyber attack, Global Security News, News, North America, Press Release
Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide
Torrance, United States / California, December 12th, 2025, CyberNewsWire In December 2025, CVE-2025-55182 (React2Shell), a vulnerability in React…
AI, Artificial Intelligence, cyber attack, Global Security News, malware, Security
New PyStoreRAT Malware Targets OSINT Researchers Through GitHub
A new malware called PyStoreRAT is being through fake OSINT tools on GitHub targeting IT and OSINT pros. Read Morphisec’s report detailing how it uses AI and evades security.
cyber attack, Cybersecurity, developers, Global Security News, malware, Security
Malicious Visual Studio Code Extensions Hide Trojan in Fake PNG Files
VS Code developers beware: ReversingLabs found 19 malicious extensions hiding trojans inside a popular dependency, disguising the final malware payload as a standard PNG image file.
cyber attack, Cybersecurity, Global Security News, Phishing Scam, Security
Scammers Sent 40,000 E-Signature Phishing Emails to 6,000 Firms in Just 2 Weeks
Phishing campaign: Scammers sent over 40,000 spoofed SharePoint, DocuSign and e-sign emails to companies, hiding malicious links behind trusted redirect services.
cyber attack, Global Security News, malware, Security
Torrent for DiCaprio’s “One Battle After Another” Movie Drops Agent Tesla
Bitdefender researchers warn that the torrent for Leonardo DiCaprio’s One Battle After Another is a trap deploying Agent Tesla malware. Learn how the fileless LOTL attack targets unsuspecting Windows users.
china, cyber attack, Cybersecurity, Exploits, Global Security News, malware, Security
North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits
Sysdig discovered North Korea-linked EtherRAT, a stealthy new backdoor using Ethereum smart contracts for C2 after exploiting the critical React2Shell vulnerability (CVE-2025-55182).
cyber attack, cyber crime, Cybersecurity, Global Security News
Ukrainian Woman in US Custody for Aiding Russian NoName057 Hacker Group
Ukrainian national Victoria Dubranova is in U.S. custody, accused of supporting Russian hacker group NoName057 in cyberattacks on critical infrastructure. She has pleaded not guilty.
cyber attack, Cybersecurity, Global Security News, JS#SMUGGLER, malware, Security
New JS#SMUGGLER Campaign Drops NetSupport RAT Through Infected Sites
Securonix Threat Research details the complex JS#SMUGGLER campaign, a three-step web attack using obfuscated JavaScript and hidden HTA files to install the NetSupport RAT on user Windows desktops, granting hackers full remote control and persistent access.
cyber attack, cyber attacks, cyber crime, Global Security News, Security
Space Bears Ransomware Claims Comcast Data Theft Through QuasarBreach
Space Bears ransowmare claims it obtained Comcast files through a breach at Quasar Inc, with threats to publish the data and separate leaks promised from Quasar itself.
cyber attack, Cybersecurity, Global Security News, Phishing Scam, Scams and Fraud, Security
Over 70 Domains Used in Months-Long Phishing Spree Against US Universities
Infoblox Threat Intel reports a campaign that used the Evilginx phishing kit to bypass Multi-Factor Authentication (MFA) and steal credentials from 18 US universities between April and November 2025.
cyber attack, cyber attacks, Global Security News, Security
Barts Health NHS Confirms Cl0p Ransomware Behind Data Breach
Barts Health NHS confirms Cl0p ransomware breach via Oracle flaw. Invoice data exposed. Patient records and clinical systems remain unaffected.
cyber attack, cyber attacks, cyber crime, Global Security News, Security
Qilin Ransomware Claims Data Theft from Church of Scientology
Qilin ransomware claims it stole internal data from the Church of Scientology, sharing 22 screenshots as proof. The breach remains unconfirmed by the organization.
cyber attack, cyber attacks, cyber crime, Global Security News, Security
Everest Ransomware Claims ASUS Breach and 1TB Data Theft
Everest ransomware group claims it breached ASUS, stealing over 1TB of data including camera source code. ASUS has been given 21 hours to respond via Qtox.
cyber attack, Global Security News, malware, Security
NK Hackers Push 200 Malicious npm Packages with OtterCookie Malware
North Korean hackers escalated the “Contagious Interview” attack, flooding the npm registry with over 200 malicious packages to install OtterCookie malware. This attack targets blockchain and Web3 developers through fake job interviews and coding tests.
cyber attack, cyber attacks, Cybersecurity, Global Security News, hacking news
Coupang Data Breach Affects All 33.7 Million South Korean Accounts
Coupang confirms a data breach affecting 33.7 million users in South Korea, exposing names, contacts and order details. Investigation is ongoing.
Australia, cyber attack, cyber crime, Cybersecurity, Evil Twin, Global Security News
Evil Twin Wi‑Fi Hacker Jailed for Stealing Data Mid‑Flight
An Australian man who used fake “evil‑twin” Wi‑Fi networks at airports and on flights to steal travellers’ data has been jailed for 7 years and 4 months.
cyber attack, Global Security News, Scams and Fraud, Security
Over 2,000 Fake Shopping Sites Spotted Before Cyber Monday
CloudSEK found over 2,000 fake sites impersonating Amazon and top brands before Cyber Monday and Black Friday. Learn the key fraud signs now to stay safe.
crowdstrike, cyber attack, cyber crime, Cybersecurity, Global Security News
Report Names Teen in Scattered LAPSUS$ Hunters, Group Denies
Scattered LAPSUS$ Hunters admin “Rey,” allegedly a 15-year-old named Saif Khader from Jordan, has been named in a report linking him to the group. He denies the claim.
cyber attack, cyber attacks, cyber crime, Global Security News, Security
Everest ransomware claims breach at Spain’s national airline Iberia with 596 GB data theft
Everest ransomware group has published a claim saying it breached Iberia, Iberia is Spain’s flag-carrier airline and extracted…
cyber attack, Cybersecurity, Developer, Global Security News, malware, Security
Shai Hulud npm Worm Infects 19,000 Packages in Major Supply Chain Attack
The Shai Hulud worm’s “Second Coming” has compromised over 19,000 public repositories. We detail the attacker’s mistake, the target packages, and mandatory security tips.
cyber attack, Cybersecurity, data breach, Global Security News, hacking news, Security
ShinyHunters Breach Gainsight Apps on Salesforce, Claim Data from 1000 Firms
ShinyHunters breached Gainsight apps integrated with Salesforce, claiming access to data from 1000 firms using stolen credentials and compromised tokens.