This week’s cybersecurity stories cover a wide range of incidents. We saw fresh software flaws with global impact, and data…
News
Novel attack vector: A phishing campaign is using malicious SVG files disguised as mailsv from the Ukraine Police to initiate…
Accelerated GenAI adoption: 95% of retail organizations now use GenAI apps, a significant increase from 73% in the previous year.…
Significant exposure: An unsecured cloud server exposed 273,000 PDF documents containing sensitive bank transfer details of Indian customers. Sensitive information…
Emergency directive: CISA has issued an Emergency Directive, mandating federal agencies to mitigate vulnerabilities in Cisco devices. Critical vulnerabilities: Cisco…
Global VPN Day of Action: Campaign by Fight for the Future raises awareness against worldwide VPN restrictions. Windscribe’s Role: Provider…
Critical vulnerability: ForcedLeak, a critical severity (CVSS 9.4) vulnerability chain in Salesforce Agentforce, was discovered Attack method: The vulnerability enabled…
Bill Scope: Proposal bans porn, depictions of transgender people, and use of circumvention tools like VPNs. Unprecedented Move: Unlike age-verification…
Preschool targeted: The Radiant Group ransomware gang has claimed responsibility for a cyberattack on Kido International Preschool & Daycare. Highly…
Massive recovery: Operation HAECHI VI, spanning across 40 countries, recovered $439 million in illicit funds and assets. Global cooperation: The…
Suspect arrested: The UK's NCA arrested a man in his forties in connection with the ransomware attack on Collins Aerospace.…
New malware discovered: A new malware family named YiBackdoor was first observed in June 2025. Significant code overlap: The malware…
Pervasive vulnerabilities: 75% of organizations have Building Management Systems with known exploited vulnerabilities, including hospitals. Internet exposure: More than half…
Massive network uncovered: A network of over 300 SIM servers and 100,000 SIM cards in the New York tristate area…
Website Access: IPVanish adds support for postal, ticketing, and banking portals to prevent VPN-related blocks. User Frustration: Updates reduce false…
Stealthy persistence: Malware is being disguised as fake plugins to create hidden administrator accounts in WordPress. Layered attack: Attackers are…
Audit Success: Proton VPN passed its fourth consecutive independent no-logs audit by Securitum. No Data Stored: Audit confirmed no user…
Hardware vulnerabilities up: Bugcrowd's 2025 report reveals a significant 88% increase in hardware vulnerability exploits. Network flaws double: The analysis…
Identity under siege: Attackers are increasingly targeting identity systems, with intrusions involving layered persistence methods. Phishing evolves: Over 70% of…
Suspect surrenders: A suspect, allegedly a member of the Scattered Spider cybercrime group, surrendered to the authorities. Serious charges: The…
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
Most Popular
