#cybersecurity
#cybersecurity

7 hours ago

Millions of login credentials leaked via unsecured database

A massive unsecured database contained millions of login credentials, raising cybersecurity concerns.

Hack of Opexus Was at Root of Massive Federal Data Breach

Opexus, a software company for US federal agencies, suffered a major data breach caused by two employees with a hacking past.

Digital life

22 hours ago

Microsoft says Lumma password stealer malware found on 394,000 Windows PCs | TechCrunch

Microsoft and law enforcement have dismantled the Lumma malware operation affecting over 394,000 PCs, primarily targeting users through malicious downloads.

21 minutes ago

Massive data breach exposes 184 million passwords for Google, Microsoft, Facebook, and more

A massive breach exposed over 184 million unencrypted account credentials, compromising sensitive user information across numerous platforms.

EU data protection

'Deep concern' for domestic abuse survivors as cybercriminals expected to publish confidential abuse survivors' addresses

Sensitive information about domestic abuse survivors may be exposed due to a data breach, placing their safety at risk.

Cryptocurrency

Coinbase says its data breach affects at least 69,000 customers | TechCrunch

Coinbase confirmed a significant data breach affecting over 69,000 customers, involving theft of personal and financial information.

EU data protection

7 hours ago

Millions of login credentials leaked via unsecured database

A massive unsecured database contained millions of login credentials, raising cybersecurity concerns.

Hack of Opexus Was at Root of Massive Federal Data Breach

Opexus, a software company for US federal agencies, suffered a major data breach caused by two employees with a hacking past.

Digital life

22 hours ago

Microsoft says Lumma password stealer malware found on 394,000 Windows PCs | TechCrunch

Microsoft and law enforcement have dismantled the Lumma malware operation affecting over 394,000 PCs, primarily targeting users through malicious downloads.

21 minutes ago

Massive data breach exposes 184 million passwords for Google, Microsoft, Facebook, and more

A massive breach exposed over 184 million unencrypted account credentials, compromising sensitive user information across numerous platforms.

more#data-breach

#crowdstrike

fromChannelPro

CrowdStrike announces integration with Nvidia Enterprise AI Factory

CrowdStrike integrates with Nvidia to secure AI infrastructure, minimizing risks associated with AI adoption.

Atlanta Falcons

Delta's lawsuit against CrowdStrike given go-ahead

from24/7 Wall St.

1 hour ago

Startup companies

CrowdStrike (NASDAQ: CRWD) Stock Price Prediction and Forecast 2025-2030 (May 2025)

fromChannelPro

CrowdStrike announces integration with Nvidia Enterprise AI Factory

CrowdStrike integrates with Nvidia to secure AI infrastructure, minimizing risks associated with AI adoption.

Atlanta Falcons

Delta's lawsuit against CrowdStrike given go-ahead

from24/7 Wall St.

1 hour ago

Startup companies

CrowdStrike (NASDAQ: CRWD) Stock Price Prediction and Forecast 2025-2030 (May 2025)

Information security

US healthcare firm postponed procedures after cyber attack knocked systems offline

Online marketing

300 Servers and 3.5M Seized as Europol Strikes Ransomware Networks Worldwide

Software development

VanHelsing ransomware source code leaked on hacker forum

Software development

VanHelsing ransomware builder leaked on hacking forum

Healthcare

fromMedCity News

3 days ago

The Changing Landscape of Ransomware: Why Healthcare Organizations Are Paying Less - MedCity News

Healthcare organizations are increasingly resisting ransom payments due to better cybersecurity measures and backup strategies.

Cryptocurrency

Why DragonForce is growing in prominence - with retailer attacks boosting its reputation

DragonForce is rapidly expanding its impact on cybersecurity with its innovative ransomware as a service model.

1 hour ago

US healthcare firm postponed procedures after cyber attack knocked systems offline

Kettering Health faced a cyberattack leading to the cancellation of patient appointments and potential threats to patient information.

Online marketing

300 Servers and 3.5M Seized as Europol Strikes Ransomware Networks Worldwide

Operation Endgame has successfully dismantled cybercriminal infrastructures targeting ransomware, seizing €3.5 million and issuing arrest warrants against 20 key actors.

Software development

VanHelsing ransomware source code leaked on hacker forum

VanHelsing publicly leaked its source code after a developer attempted to sell it, highlighting vulnerabilities in ransomware operations.

Software development

VanHelsing ransomware builder leaked on hacking forum

VanHelsing publicly released its source code to counteract a former developer's attempt to sell it on the cybercrime forum.

fromMedCity News

3 days ago

Healthcare

The Changing Landscape of Ransomware: Why Healthcare Organizations Are Paying Less - MedCity News

Cryptocurrency

Why DragonForce is growing in prominence - with retailer attacks boosting its reputation

Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims

Counterfeit pages on Facebook are used to trick users into downloading malware disguised as Kling AI.

fromFox News

Marketing tech

Meta faces increasing scrutiny over widespread scam ads

fromEntrepreneur

Marketing tech

Instagram Head Adam Mosseri Experiences Google Phishing Scam | Entrepreneur

2 hours ago

Social media marketing

Oversharing online? 5 ways it makes you an easy target for cybercriminals

Marketing tech

Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims

Counterfeit pages on Facebook are used to trick users into downloading malware disguised as Kling AI.

fromFox News

Marketing tech

Meta faces increasing scrutiny over widespread scam ads

fromEntrepreneur

Marketing tech

Instagram Head Adam Mosseri Experiences Google Phishing Scam | Entrepreneur

2 hours ago

Social media marketing

Oversharing online? 5 ways it makes you an easy target for cybercriminals

Can Germany withstand massive cyberattacks? DW 05/23/2025

DDoS attacks are increasingly common and can disrupt essential services, highlighting the need for enhanced cybersecurity measures.

Roam Research

3 hours ago

ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices

Threat actor ViciousTrap has compromised over 5,300 network devices globally, exploiting a critical Cisco vulnerability to create honeypot networks.

#malware

16 hours ago

Cybercriminals Take Advantage of ChatGPT and Other Generative AI Models

AI technologies are set to increase the frequency and sophistication of cyberattacks.

Remote teams

Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks

Online Community Development

U.S. Dismantles DanaBot Malware Network, Charges 16 in $50M Global Cybercrime Operation

fromDeveloper Tech News

Node JS

60 malicious npm packages caught mapping developer networks

3 hours ago

Social media marketing

TikTok videos are the latest malware attack vector

fromWIRED

20 hours ago

US news

Feds Charge 16 Russians Allegedly Tied to Botnets Used in Ransomware, Cyberattacks, and Spying

16 hours ago

Cybercriminals Take Advantage of ChatGPT and Other Generative AI Models

AI technologies are set to increase the frequency and sophistication of cyberattacks.

Remote teams

Online Community Development

Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks

UAT-6382 exploited a vulnerability in Trimble Cityworks to establish persistent access through advanced malware and web shells.

U.S. Dismantles DanaBot Malware Network, Charges 16 in $50M Global Cybercrime Operation

The DoJ has disrupted DanaBot malware infrastructure and charged 16 individuals linked to a Russian cybercrime organization.

Node JS

fromDeveloper Tech News

60 malicious npm packages caught mapping developer networks

A coordinated malware campaign is targeting npm packages to gather intelligence on developer networks.

Social media marketing

3 hours ago

TikTok videos are the latest malware attack vector

Malware is spreading via TikTok through social engineering, promoting infostealers like Vidar and StealC via user instructions.

TikTok's algorithm enhances the reach of malicious content, presenting challenges for traditional cybersecurity measures.

US news

fromWIRED

20 hours ago

Feds Charge 16 Russians Allegedly Tied to Botnets Used in Ransomware, Cyberattacks, and Spying

The DanaBot operation exemplifies the intersection of cybercrime, state-sponsored activities, and espionage in Russia's hacker ecosystem.

more#malware

#espionage

fromRadioFreeEurope/RadioLiberty

Probe Says Russian Military Hackers Target Romanian Surveillance Cameras To Track Ukraine Aid

Russia's GRU has hacked surveillance cameras in NATO countries to track aid to Ukraine.

Mysterious hacking group Careto was run by the Spanish government, sources say

Researchers identified a sophisticated hacking group, Careto, linked to espionage efforts against the Cuban government, possibly connected to Spanish state actors.

15 hours ago

Same suspected Chinese spies again attacking Ivanti bugs

A suspected Chinese spy group exploited Ivanti vulnerabilities for remote code execution attacks against various sectors globally.

fromRadioFreeEurope/RadioLiberty

Probe Says Russian Military Hackers Target Romanian Surveillance Cameras To Track Ukraine Aid

Russia's GRU has hacked surveillance cameras in NATO countries to track aid to Ukraine.

Mysterious hacking group Careto was run by the Spanish government, sources say

Researchers identified a sophisticated hacking group, Careto, linked to espionage efforts against the Cuban government, possibly connected to Spanish state actors.

15 hours ago

Same suspected Chinese spies again attacking Ivanti bugs

A suspected Chinese spy group exploited Ivanti vulnerabilities for remote code execution attacks against various sectors globally.

Privacy professionals

Mysterious Database of 184 Million Records Exposes Vast Array of Login Credentials

Privacy professionals

Researchers Scrape 2 Billion Discord Messages and Publish Them Online

fromThe Atlantic

Privacy technologies

The Secrets of the World's Greatest Privacy Experts

Data science

Capital One pushes out data tokenisation | Computer Weekly

Capital One has expanded its data tokenisation tool availability to enhance data security for IT departments.

fromInfoQ

DevOps

HashiCorp's HCP Vault Radar Achieves General Availability with Vault Import Feature

HCP Vault Radar streamlines the identification and management of leaked secrets by integrating with HashiCorp Vault for improved security.

Mysterious Database of 184 Million Records Exposes Vast Array of Login Credentials

The exposure of a vast database containing sensitive records highlights ongoing data privacy risks.

Researchers Scrape 2 Billion Discord Messages and Publish Them Online

A massive database of over 2 billion Discord messages has raised privacy concerns among users and moderators.

Privacy technologies

fromThe Atlantic

The Secrets of the World's Greatest Privacy Experts

Extreme-privacy consultants help individuals make their personal information difficult to find through sophisticated tools and strategies.

Data science

Capital One pushes out data tokenisation | Computer Weekly

fromInfoQ

DevOps

HashiCorp's HCP Vault Radar Achieves General Availability with Vault Import Feature

Growth hacking

The TechBeat: Police Officers Are Turning Into Reddit Mods Thanks to Amazon's Neighborhood Watch (5/23/2025) | HackerNoon

2 weeks ago

Roam Research

Turn Your Android into a Cybersecurity Toolkit with Metasploit and Termux | HackerNoon

1 year ago

Growth hacking

The TechBeat: Police Officers Are Turning Into Reddit Mods Thanks to Amazon's Neighborhood Watch (5/23/2025) | HackerNoon

2 weeks ago

Roam Research

Turn Your Android into a Cybersecurity Toolkit with Metasploit and Termux | HackerNoon

more#ethical-hacking

fromthehackernews.com

SafeLine WAF: Open Source Web Application Firewall with Zero-Day Detection and Bot Protection

SafeLine effectively blocks a wide range of common and advanced web attacks, achieving a detection rate of 99.45% and a false positive rate of 0.07%.

Web frameworks

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Ivanti Endpoint Manager Mobile vulnerabilities exploited by a China-based group pose significant risks across multiple sectors worldwide.

UK news

Western intelligence agencies unite to expose Russian hacking campaign against logistics and tech firms

Russian hacking group APT28 was blamed for a widespread digital campaign posing serious risks across various sectors globally.

Coronavirus

6 hours ago

Mysterious hacking group Careto was run by the Spanish government, sources say | TechCrunch

Careto is a sophisticated hacking group suspected to operate on behalf of the Spanish government, discovered by Kaspersky researchers.

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Ivanti Endpoint Manager Mobile vulnerabilities exploited by a China-based group pose significant risks across multiple sectors worldwide.

UK news

Western intelligence agencies unite to expose Russian hacking campaign against logistics and tech firms

Russian hacking group APT28 was blamed for a widespread digital campaign posing serious risks across various sectors globally.

Coronavirus

fromwww.independent.co.uk

6 hours ago

Mysterious hacking group Careto was run by the Spanish government, sources say | TechCrunch

Careto is a sophisticated hacking group suspected to operate on behalf of the Spanish government, discovered by Kaspersky researchers.

Russo-Ukrainian War

Report: Russian army hackers target Western aid supply to Ukraine

Russian military intelligence hackers targeted Western firms aiding Ukraine

Operations include breaching logistics and transport sectors for intelligence

Cyber attacks involved accessing thousands of internet-connected cameras

UK news

UK and allies expose Russian cyber attacks on logistics firms aiding Ukraine

The Independent highlights critical issues in journalism and the importance of funding investigative reporting against the backdrop of Russian cyber activities targeting Ukraine.

fromwww.independent.co.uk

fromeuronews

7 hours ago

Report: Russian army hackers target Western aid supply to Ukraine

Russian military intelligence hackers targeted Western firms aiding Ukraine

Operations include breaching logistics and transport sectors for intelligence

Cyber attacks involved accessing thousands of internet-connected cameras

UK news

UK and allies expose Russian cyber attacks on logistics firms aiding Ukraine

more#ukraine

#ai

10 hours ago

GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts

GitLab's AI assistant Duo has a serious security vulnerability that could expose sensitive information and enable code theft.

Information security

Growing AI workloads are causing hybrid cloud headaches

Artificial intelligence

Vulnerability in GitLab assistant enabled code theft

10 hours ago

GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts

GitLab's AI assistant Duo has a serious security vulnerability that could expose sensitive information and enable code theft.

Information security

Growing AI workloads are causing hybrid cloud headaches

Artificial intelligence

Vulnerability in GitLab assistant enabled code theft

CISA Warns of Suspected Broader SaaS Attacks Exploiting App Secrets and Cloud Misconfigs

Commvault is facing cyber threats impacting its Azure-hosted applications, compromising M365 backup services.

Women in technology

fromwww.bbc.com

16 hours ago

Why so many military veterans move into cybersecurity

Military veterans possess valuable instincts for cybersecurity roles, crucial during increasing cyberattacks.

#training

Information security

INE Security Partners With Abadnet Institute For Cybersecurity Training Programs In Saudi Arabia | HackerNoon

fromDevOps.com

Information security

INE Security Partners with Abadnet Institute for Cybersecurity Training Programs in Saudi Arabia - DevOps.com

Information security

INE Security Partners With Abadnet Institute For Cybersecurity Training Programs In Saudi Arabia | HackerNoon

fromDevOps.com

Information security

INE Security Partners with Abadnet Institute for Cybersecurity Training Programs in Saudi Arabia - DevOps.com

Information security

How to safeguard your small business in the hybrid work era: 5 top cybersecurity solutions

Information security

Halo Security Achieves SOC 2 Type 1 Compliance, Validating Security Controls For Its Attack Surface | HackerNoon

fromBusiness Matters

European startups

5 Top Veeam Alternatives in 2025

Information security

How to safeguard your small business in the hybrid work era: 5 top cybersecurity solutions

Information security

Halo Security Achieves SOC 2 Type 1 Compliance, Validating Security Controls For Its Attack Surface | HackerNoon

fromBusiness Matters

European startups

5 Top Veeam Alternatives in 2025

ThreatBook Named a Notable Vendor In Global Network Analysis And Visibility (NAV) Independent Report | HackerNoon

ThreatBook's Threat Detection Platform has gained recognition in Forrester's NAV solutions report, highlighting its innovation and market presence.

fromNextgov.com

22 hours ago

An 18th-century war power resurfaces in cyber policy talks

The idea of privateering contracts - historically used for piracy - is being discussed to provide legal authority for private sector cyberattacks against adversaries like China.

Growth hacking

Deepfake Scam or Inside Job? Rethinking the BEC Threat

The growing sophistication of BEC attacks, using deepfake technology, presents new challenges for businesses in verifying incidents and handling potential insider threats.

Privacy technologies

Signal signals discontent with Microsoft Recall

Signal is using DRM to prevent Microsoft Recall from capturing private conversations.

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise

dMSA allows users to create them as a standalone account, or to replace an existing standard service account. When a dMSA supersedes an existing account, authentication...

Growth hacking

#vulnerabilities

Pay Attention to the Intersection of API Security and AI Proliferation

AI integration is increasing reliance on APIs, impacting organizational security.

fromMail Online

Experts warn of vulnerabilities as Chinese 'kill switches' revealed

Chinese devices may have 'kill switches' that allow remote access to Western energy infrastructure, posing significant security risks.

Information security

Active exploitation of vulnerabilities in Ivanti EPMM

DevOps

Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host

Pay Attention to the Intersection of API Security and AI Proliferation

AI integration is increasing reliance on APIs, impacting organizational security.

fromMail Online

Experts warn of vulnerabilities as Chinese 'kill switches' revealed

Chinese devices may have 'kill switches' that allow remote access to Western energy infrastructure, posing significant security risks.

Information security

Active exploitation of vulnerabilities in Ivanti EPMM

DevOps

Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host

more#vulnerabilities

Webinar: Learn How to Build a Reasonable and Legally Defensible Cybersecurity Program

A clear definition of 'reasonable' cybersecurity and why it matters to courts, regulators, and insurers.

Information security

Identity Security Has an Automation Problem-And It's Bigger Than You Think

Identity security is compromised by human error, with less than 4% of organizations fully automating identity workflows.

Automation gaps in identity security lead to vulnerabilities, as human reliance increases the risk of breaches.

#russia

fromwww.theguardian.com

Russia accused of trying to disrupt aid to Ukraine by hacking border crossings

Russia is reportedly using cyber tactics to disrupt Western aid delivery to Ukraine.

Europe news

Europe sanctions Putin's pals over 'hybrid' threats

The EU sanctions Russia-linked entities for GPS jamming and cyber threats to bolster security against hybrid attacks.

NCSC: Russia's Fancy Bear targeting logistics, tech orgs | Computer Weekly

Russia's Fancy Bear cyber campaign targets Western logistics and technology organizations amid ongoing assaults on Ukraine.

France news

fromThe Local France

Can you spot the 'fake news' about France?

France faces significant challenges from Russian-distributed fake news, which risks credibility in foreign media.

Russia's Fancy Bear sticks its paws in transportation emails

Russian cyberspies have targeted Western logistics providers and government organizations involved in aid to Ukraine since 2022.

Russo-Ukrainian War

Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics

fromwww.theguardian.com

Russia accused of trying to disrupt aid to Ukraine by hacking border crossings

Russia is reportedly using cyber tactics to disrupt Western aid delivery to Ukraine.

Europe news

Europe sanctions Putin's pals over 'hybrid' threats

The EU sanctions Russia-linked entities for GPS jamming and cyber threats to bolster security against hybrid attacks.

NCSC: Russia's Fancy Bear targeting logistics, tech orgs | Computer Weekly

Russia's Fancy Bear cyber campaign targets Western logistics and technology organizations amid ongoing assaults on Ukraine.

France news

fromThe Local France

Can you spot the 'fake news' about France?

France faces significant challenges from Russian-distributed fake news, which risks credibility in foreign media.

Russia's Fancy Bear sticks its paws in transportation emails

Russian cyberspies have targeted Western logistics providers and government organizations involved in aid to Ukraine since 2022.

Russo-Ukrainian War

Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics

more#russia

fromNew York Post

We found the secret to blocking ads on streaming services, and it's life-changing

AdGuard is a powerful mobile and desktop ad blocker available for an unbeatable price of $15.97, offering lifetime access to an ad-free experience.

NYC startup

EUVD security database is Europe's next step towards autonomy

The EUVD serves as a necessary alternative to the threatened CVE database, emphasizing the EU's commitment to cybersecurity.

EU data protection

Attaxion Becomes The First EASM Platform To Integrate ENISA's EU Vulnerability Database (EUVD) | HackerNoon

Europe politics

EUVD security database is Europe's next step towards autonomy

The EUVD serves as a necessary alternative to the threatened CVE database, emphasizing the EU's commitment to cybersecurity.

EU data protection

Attaxion Becomes The First EASM Platform To Integrate ENISA's EU Vulnerability Database (EUVD) | HackerNoon

Dutch citizens advised to keep cash on hand in case of emergency

The Netherlands' Central Bank advises keeping cash on hand for emergencies due to increasing geopolitical and cyber threats.

Microsoft ramps up zero trust capabilities amid agentic AI push

AI agents must be treated as employees regarding security, requiring secure identification and not being trusted by default.

Sage wants to supercharge SMB accounting with new AI features

Sage has added AI-driven insights, automation, and improved connectivity to its Sage 50 accountancy and payroll product in a bid to drive SMB efficiency.

Business intelligence

#ms

fromLondon Business News | Londonlovesbusiness.com

London startup

M&S warns of 300M dent in profits from cyberattack

Information security

M&S cyber-attack expected to wipe put 300 million from profits - London Business News | Londonlovesbusiness.com

fromLondon Business News | Londonlovesbusiness.com

London startup

M&S warns of 300M dent in profits from cyberattack

Information security

M&S cyber-attack expected to wipe put 300 million from profits - London Business News | Londonlovesbusiness.com

Google issues warning to all 1.8b Gmail users over dangerous attack

Gmail users should be cautious of phishing emails that impersonate Google, especially those urging immediate actions regarding legal cases.

Growth hacking

How to Detect Phishing Attacks Faster: Tycoon2FA Example

Privacy technologies

fromMail Online

Google issues warning to all 1.8b Gmail users over dangerous attack

Gmail users should be cautious of phishing emails that impersonate Google, especially those urging immediate actions regarding legal cases.

Growth hacking

How to Detect Phishing Attacks Faster: Tycoon2FA Example

more#phishing

1 year ago

The TechBeat: There's No TensorFlow Without Tensors (5/21/2025) | HackerNoon

SnoopGame scales QA trust across indie to AAA studios by aligning early, staying lean, and delivering under pressure-when it matters most.

Growth hacking

10 months ago

Cybersecurity Giant Supercharges Apache SeaTunnel to Tame Complex Data | HackerNoon

A leading cybersecurity enterprise has enhanced Apache SeaTunnel to effectively address the challenges posed by diverse data sources and complex integration needs.

Scala

The UK's science funding agency is being bombarded with cyber attacks

These extensive incidents underline the severity of the threat facing public and private sector organisations on a daily basis.

Information security

fromBusiness Matters

House of Lords AI Summit warns of 'relentless' cyber threats as UK races to close digital skills gap

Urgent action is needed to tackle the digital skills divide and cybersecurity threats posed by AI in the UK economy.