Daily News - Maio (25/05 - 31/05) - 22 Semana de 2025

Information & Cyber Security, Privacy and Hacking News --- Daily Updates !! Weekly Resume...

31/05

Adidas issues warning to customers after details stolen in cyber attack

Aussie businesses now have to fess up when they pay off ransomware crims

Beware: Weaponized AI Tool Installers Infect Devices with Ransomware

Britain’s Companies Are Being Hacked – OpEd

LexisNexis Risk Solutions Data Breach Exposes 364,000 individuals personal Data

Microsoft Reveals Techniques To Defending Against Advancing AiTM Attacks

Ransomware attacks cost Philippine-based firms $500,000 each

Serviceaide Facing Multiple Class Action Lawsuits Over 483K-Record Data Breach

Threat Actors Leverage Google Apps Script To Host Phishing Websites

Tycoon2FA Infra Used by Dadsec Hacker Group to Steal Office365 Credentials

U.S. DoJ Seizes 4 Domains Supporting Cybercrime Crypting Services in Global Operation

30/05

96% of IT pros say AI agents are a security risk, but they're deploying them anyway

AI agents have access to key data across the enterprise

AI-driven phishing attacks surge against Australian targets in 2024

Apache Tomcat CGI Servlet Vulnerability Allows Security Constraint Bypass

Apache Tomcat security defenses potentially evaded with CGI servlet bug

Better Together: How MFA and Strong Password Practices Can Help Bolster Security

Bradford Health Services discloses data breach

Business Insider lays off 21% of staff amid SEO warnings of publishers’ extinction event

China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil

Chinese Phishing Service Haozi Resurfaces, Fueling Criminal Profits

CISA Releases Five ICS Advisories Targeting Vulnerabilities and Exploits

CISA Urged to Enrich KEV Catalog with More Contextual Data

CommBank restores services following outage

ConnectWise Hacked – Nation State Actors Compromised the Systems to Access Customer Data

ConnectWise Hit by Cyberattack; Nation-State Actor Suspected in Targeted Breach

ConnectWise hit by nation-state cyberattack, some ScreenConnect customer systems affected

ConnectWise suffered a cyberattack carried out by a sophisticated nation state actor

Corrupted headers conceal novel Windows RAT

Credential phishing facilitated by Google Apps Script exploitation

Critical Cisco IOS XE Vulnerability Allows Arbitrary File Upload – PoC Released

Cyberattack on NHS trusts exposes staff data via Ivanti software vulnerability

Cybersecurity teams show business value amid declining investment, report finds

Dark Web Profile: NightSpire Ransomware

Data breach at Missouri Department of Conservation exposed employees’ personal information

DDoS incident disrupts internet for thousands in Moscow

DeepSeek’s upgraded R1 model to compete with OpenAI, Google

Deloitte Allegedly Suffers Major Data Breach – Source Code and GitHub Credentials Reportedly Leaked

Deloitte Data Breach: Alleged Leak of Source Code & GitHub Credentials

Developing Collaborative Threat Intelligence Sharing Frameworks

Ensuring Data Security in Cloud Storage and Collaboration Platforms

Evolving attacks by the UTG-Q-015 hacking operation detailed

Exchange 2016, 2019 support ends soon: What IT should do to stay secure

FBI Flags Philippines Tech Company Behind Crypto Scam Infrastructure

French court to hear case of 25 suspects in attempted crypto kidnapping

From the "Department of No" to a "Culture of Yes": A Healthcare CISO's Journey to Enabling Modern Care

Fullscreen BitM intrusions possible with Safari flaw

Get prepared for continued cyberattacks on retailers

Global phishing campaign powered by Nifty infrastructure

Google Apps Script abused to launch dangerous phishing attacks

Google: Vietnam-linked hackers using fake AI video tools to spread malware

How AI coding agents could infiltrate and destroy open source software

How to Put Humans at the Forefront of Retail Cyber Defense

Indonesian Nuclear Energy Regulator BAPETEN Allegedly Breached

Kaiser Permanente dismisses cyberattack after widespread outage

Latrodectus malware detected on over 44,000 IP addresses

LexisNexis data breach affected over 360,000 people

Major data leak hits Unimed, 14M patient-doctor messages exposed

Major romance baiting scam facilitator subjected to US sanctions

Mandatory Ransomware Payment Disclosure Begins in Australia

Melbourne-based 3P Corporation breached by Space Bears ransomware

Meta Disrupts Influence Ops Targeting Romania, Azerbaijan, and Taiwan with Fake Personas

Microsoft Authenticator begins password autofill phase out this week - so export now, or you could lose them forever

Microsoft warns imminent end of Authenticator's password autofill feature

Multiple payloads deployed via fake AI tool installers

NetBird malware spread in advanced finance exec-targeted spear-phishing

New Apache InLong Vulnerability (CVE-2025-27522) Exposes Systems to Remote Code Execution Risks

New BitM Attack Exploits Safari Vulnerability to Steal Login Credentials

New Research Reveals Multiple Attack Surfaces in WeChat & Other Instant Messaging Apps

New Rust-based InfoStealer via Fake CAPTCHA Delivers EDDIESTEALER

North Korean IT Workers Leverages Legitimate Software & Network Behaviors To Bypass EDR

NY crypto investor charged with kidnapping business partner over bitcoin in 3-week long "wrench attack"

PureHVNC RAT distributed via job lures in new phishing attack

Ransomware attack on Singapore vendor DataPost exposes data of income insurance customers

Report: Spoofing attacks could compromise most leading email domains

Securing Windows 11 and Server 2025: What CISOs should know about the latest updates

SentinelOne Outage: Services Restored After Hours-Long Platform Disruption

The CSO guide to top security conferences

This worrying Apple Safari security bug could leave users wide open to cyberattacks

Threat Actor Claims TikTok Breach, Puts 428 Million Records Up for Sale

UK MoD Launches New Cyber Warfare Command

Unigaz Allegedly Targeted in MedusaLocker Ransomware Attack, Sensitive Data Leaked

Unimed platform misconfiguration exposes 14M patient-doctor communications

US Banks Urge SEC to Repeal Cyber Disclosure Rule

US blacklists Philippine tech firm accused of enabling global crypto scams

US Environmental Protection Agency Allegedly Breached, Over 100GB of Data Offered for Sale

US probes effort to impersonate White House Chief of Staff, WSJ reports

U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud

US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator

Using AI to outsmart AI-driven phishing scams

Victoria’s Secret takes website offline after security incident

Victoria’s Secret US Website Restored After Security Incident

Victoria’s Secret Website Down After Security Incident

Why privacy in blockchain must start with open source

Windows 11 Security Update for Version 22H2 & 23H2 May Lead to Recovery Error

World’s largest healthcare cooperative leaks millions of patient-doctor messages

29/05

5 ways teams can comply with the FTC's GoDaddy ruling

6 rising malware trends every security pro should know

9 Million FWD Vietnam Insurance Records Allegedly Exposed

$12M Vanishes in Crypto Heist Targeting Cork Protocol’s Depeg Market

69% of organisations hit by ransomware in the last 12 months

A key Microsoft OneDrive feature has a worrying security flaw which could expose user data

Adidas Confirms Data Breach, Security Leaders Weigh In

Adidas faces major data breach, exposing customer data

AI-powered ransomware surge despite fewer ransoms paid

Alleged Data Breach Affects Estonian Logistics Tracking Website tymap.app

Alliance Healthcare Italy Allegedly Targeted by Ransomware Attack

Antivirus vs Endpoint Security: Which is best for me?

Apple Safari exposes users to fullscreen browser-in-the-middle attacks

Attackers are mapping your attack surface—are you?

Attacks with new Pumabot botnet hit Linux IoT devices

Azure compromise likely with Microsoft Entra ID design issue

Câmara de Cajueiro, em AL, tem conta bancária invadida por ataque hacker

China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

Chinese hackers use Google Calendar in stealthy new attack

CISOs prioritize AI-driven automation to optimize cybersecurity spending

ConnectWise breached in cyberattack linked to nation-state hackers

ConnectWise Confirms Hack, “Very Small Number” of Customers Affected

ConnectWise ScreenConnect infrastructure hack confirmed

Craft CMS exploit facilitates multiple payload delivery

Crypto heist pilfers over $12M from Cork Protocol

Czech ministry attack blamed on APT31

Czech Republic says China behind cyberattack on ministry, embassy rejects accusations

Cybercriminals exploit AI hype to spread ransomware, malware

Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools

Cybersecurity Teams Generate Average of $36M in Business Growth

Data broker LexisNexis discloses data breach affecting 364,000 people

DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

É cliente da Amazon Espanha? Hacker afirma ter roubado 5,1 milhões de dados

Estonia issues arrest warrant over major pharmacy data breach

Fake ChatGPT and InVideo AI Downloads Deliver Ransomware

Fullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal Credentials in Safari

Global ransomware victimization remains elevated

Google Calendar-exploiting APT41 attack campaign disrupted

Hacker de crachá: como norte-coreanos se infiltraram em empresas dos EUA

Hacker que roubava criptomoedas e milhas é preso em flagrante em Goiás

How CISOs can regain ground in the AI fraud war

How to run an antivirus scan on your computer

How to threat hunt Living Off The Land binaries

Indonesia’s National University Admissions Body (SNPMB) Allegedly Suffers Major Data Breach

Infinox Allegedly Targeted in Ransomware Attack by Arkana Group

Infosec2025: Over 90% of Top Email Domains Vulnerable to Spoofing Attacks

Kaiser Permanente experiencing network outages, electronic health records impacted

Malware Analysis Reveals Sophisticated RAT With Corrupted Headers

Massive document leak reveals extensive modernization of Russia’s nuclear weapons facilities

Microsoft to unify Windows app updates under a centralized system

Microsoft unveils “centralized” software update tool for Windows

Misconfigurations leak over 1.6M e-commerce customers’ data

Multi-industry attacks launched by Earth Lamia APT

New AyySSHush botnet compromised over 9,000 ASUS routers, adding a persistent SSH backdoor

New Browser Exploit Technique Undermines Phishing Detection

New Malware Spotted Corrupts Its Own Headers to Block Analysis

New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

Novel NodeSnake RAT deployed in university-targeted Interlock ransomware intrusions

Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin

Over 200,000 Customers of French Dealership Auto-ici Allegedly Exposed in Data Breach

Over 364K impacted by LexisNexis breach

Precise geolocation data trade prohibited in Oregon

Privacy nightmare: Microsoft OneDrive gives AI chatbot full read access to user content

Red teaming – why cybersecurity's coolest job is basically Top Gun for hackers

Salvation Army purportedly subjected to Chaos ransomware attack

The Expert View: Building Cyber-Resilience - Preparing for the Inevitable

Third-party hack compromises 38K UChicago Medicine medical group patients

This security specialist earns $700k annually. Would you want their job?

Thousands of Asus routers hacked to create a major botnet planting damaging malware

Thousands of ASUS Routers Hijacked in Stealthy Backdoor Campaign

Thousands of Asus routers infected with backdoor that survives firmware updates

Threat actors abuse Google Apps Script in evasive phishing attacks

Tiffany & Co. data breach affects South Korean customers

UChicago Medicine alerts 38,000 patients of data breach linked to third-party vendor

UK Military Unveils £1B ‘Digital Targeting Web’

Understanding Australia’s new ransomware reporting requirements

Unheard of: Chinese hackers use Google Calendar to control malware and steal data

US sanctions firm linked to cyber scams behind $200 million in losses

Victoria’s Secret battles outage after cyber slip leaves it exposed

Victoria’s Secret laid bare after security incident takes down systems

Victoria’s Secret takes down website after security incident

Victoria’s Secret temporarily takes website offline due to security issue

What CISOs can learn from the frontlines of fintech cybersecurity

Your Asus router may be compromised - here's how to tell and what to do

28/05

3 points missing from agentic AI conversations at RSAC

38K UChicago Medicine patients affected by debt collector's data breach, officials say

$223 Million Stolen in Cetus Protocol Hack

251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and Elasticsearch

Adidas confirms customer data stolen in third-party breach, but still no word if US or EU customers impacted

Adidas confirms customer data stolen in worrying cyberattack

Adidas Customer Data Stolen in Third-Party Attack

Alleged Access to Over 70 of Dubai Corporations Offered for Sale

Amazon Spain Faces Alleged 5.1 Million User Data Leak

App Store Security: Apple stops $2B in fraud in 2024 alone, $9B over 5 years

Apple blocked over $9 billion in App Store fraud in five years

Apple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store Threats

Apple Stops 1.9M Risky Apps, Terminates 146K Fraud Accounts in 2024

Attackers hit MSP, use its RMM software to deliver ransomware to clients

Australian Telecom Superloop's Portal Access Allegedly Offered for Sale

Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor

Cetus Users Set for Full Refund as $260M Recovery Plan Passes Sui Community Vote

Cisco warns of FinTech cyber gaps in Saudi Arabia

Coca-Cola employee details spilled by Everest ransomware gang

Crooks use a fake antivirus site to spread Venom RAT and a mix of malware

Crypto platform mulls 100% compensation after $223M hack

Czechia blames China for Ministry of Foreign Affairs cyberattack

Czech Republic Accuses China of Government Hack

Czech Republic accuses China’s APT31 of a cyberattack on its Foreign Ministry

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

Cyber attack targets University Hospital Southampton

Dark Partners cybercrime gang fuels large-scale crypto heists

Data breach affects 38,000 UChicago Medicine patients

Data breach exposes passwords from Google and other tech giants

Data broker giant LexisNexis says breach exposed personal information of over 364,000 people

Delinea report finds 69% of firms hit by ransomware last year

DragonForce Exploits SimpleHelp Flaws in Targeted MSP Ransomware Attack

DragonForce ransomware hacks SimpleHelp RMM tool to attack MSPs

Estonia issues arrest warrant for Moroccan wanted for major pharmacy data breach

Ex-White House adviser warns on cybercrime surge

Fake AI Video Tool Ads on Facebook, LinkedIn Spread Infostealers

Fake Bitdefender Site Spreads Trio of Malware Tools

File Picker grants access to a user’s entire Microsoft OneDrive

Flagship Bank Facing Alleged Ransomware Attack by Akira Group

From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign

Fujipoly Ltd Allegedly Targeted by Spacebears Ransomware

GitHub becomes go-to platform for malware delivery across Europe

Hackers say they’ve snatched data from the Salvation Army

Hottest cybersecurity open-source tools of the month: May 2025

How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds

Interlock ransomware gang deploys new NodeSnake RAT on universities

Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks

Ivanti Vulnerability Exploit Could Expose UK NHS Data

LexisNexis Data Breach Exposes Social Security Numbers and Personal Data of 364,000 Americans

Mac users beware - fake Ledger apps are being used by hackers to steal seed phrases and hack accounts

Major data leak exposes 1.6M Etsy, TikTok Shop customer emails

Malware Hidden in AI Models on PyPI Targets Alibaba AI Labs Users

Marlink flags surge in AI-powered cyberattacks

Massive security blunder: Russian nuclear site blueprints exposed in public procurement database

MathWorks confirms ransomware attack amid ongoing outages

MATLAB With Over 5 Million Customers Suffers Ransomware Attack

Microsoft introduces new Windows backup tool for businesses

Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File

Microsoft OneDrive Flaw Exposes Users to Data Overreach Risks

Microsoft wants Windows to update all software on your PC

Mimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and Proxyware

Misconfigured Docker instances are being hacked to mine cryptocurrency

Most of CISA’s senior leaders are leaving the agency

NATO eyes cybersecurity in new 5% defense spending target

New Phishing Campaign Uses DBatLoader to Drop Remcos RAT: What Analysts Need to Know

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

New Russian State Hacking Group Hits Europe and North America

New Silent Push Chrome tool delivers real-time cyber intel

Nova Scotia Power confirms ransomware attack, no ransom paid

Over 200K fraudulent developers were kicked out of the Apple App Store last year

Over 360K exposed after Christmas hack at data analytics giant

OxBykes reports data breach caused by App misconfiguration

Polícia encontra hacker que invadiu Governo de SP

Qld law firm investigating breach by SafePay ransomware

Ransomware attack disrupts MathWorks services, investigation ongoing

Ransomware gang claims cyberattack on Mediclinic, threatens data leak

Ransomware gangs turn to new aggressive tactics as organisations harden their defences

RE/MAX deals with alleged 150GB data theft: Medusa ransomware demands $200K

Salvation Army suffers alleged ransomware attack

‘Secure email’: A losing battle CISOs must give up

Stay cautious: these fake AI video generators are stealing passwords

Taiwan blamed for cyberattacks against China

The Root of AI Hallucinations: Physics Theory Digs Into the ‘Attention’ Flaw

Trojanized Word files harnessed in new Russian cyberespionage campaign

US banks edge into crypto, holding out for clearer regulatory approval

U.S. cyber veteran urges stronger Korea response

Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites

Vulnerabilities in CISA KEV Are Not Equally Critical: Report

Why data provenance must anchor every CISO’s AI governance strategy

Will AI agent-fueled attacks force CISOs to fast-track passwordless projects?

Woodpecker: Open-source red teaming for AI, Kubernetes, APIs

27/05

4.5% of breaches now extend to fourth parties

5 Largest Ransomware Attacks Ever Recorded

60 malicious nmp packages collect network and host data

94 billion browser cookies are being sold to hackers on Telegram

840k-patient per year hospital empire fights ransomware attack

Adidas Confirms Cyber Attack, Customer Data Stolen

Adidas Data Breach – Customer Data Exposed Via Third-Party Service Provider

Adidas discloses breach of third-party provider, customer data exfiltrated

Adidas warns of data breach after customer service provider hack

After Pahalgam Attack, How Pakistan Unleashed Cyber Terrorism On India

AI Agents and the Non‑Human Identity Crisis: How to Deploy AI More Securely at Scale

Alleged Data Breach at Bangladesh Road Ministry

Another top employment website found exposing recruiter email addresses

Anti-Corruption Platform Ipaidabribe.com Allegedly Suffers Major Data Breach

Cash-strapped uni facing a class action lawsuit over data breach

China, Taiwan trade accusations over cyberattacks

Coca-Cola Europacific Partners targeted in major data breach

Coca-Cola ignores ransom demand, hackers dump employee data

Coinbase faces legal action following data breach impacting more than 69k customers

Cooper Health System data breach affects nearly 60,000 individuals

Crooks stole over $200 million from crypto exchange Cetus Protocol

Cyber House Party: A Journey of Connection, Music and Purpose

Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets

Data Breach at Alera Exposed Data of More Than 10,000 Individuals

Data breach at KBC Securities Services: financial information leaked to thousands of customers

DragonForce Ransomware Leveraged in MSP Attack Using RMM Tool

Elit Avia allegedly targeted by ransomware gang, crew data leaked

Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers

Everest Ransomware Leaks Coca-Cola Employee Data Online

FBI Warns about Silent Ransom Group Targeting Law Firms

FBI warns legal firms of Luna Moth extortion attacks where hackers will call their office

French ISP ‘Free’ 2024 Data Breach Exposed Almost 14 Million User Accounts

Germany raises alarm over Windows Server 2025 flaw rated 9.9/10

GIMP Image Editor Vulnerability Let Remote Attackers Arbitrary Code

Global Cyber Raid: ₹190 Cr Ransomware Network Crushed Were You A Target?

Google Ads Campaign Targets Developers with Malware via Fake Homebrew Site

Governments Urge Organizations to Prioritize SIEM/SOAR Adoption

Grupo hacker russo invadiu e espionou sistemas da polícia da Holanda, de países europeus e da Otan

Guangzhou police attribute cyberattack on tech company to hacker group allegedly linked to Taiwan’s Democratic Progressive Party (DPP)

Hackers Are Calling Your Office: FBI Alerts Law Firms to Luna Moth's Stealth Phishing Campaign

Hackers Mimic OneNote Login to Steal Office365 & Outlook Credentials

Hong Kong Monetary Authority (HKMA) Warns Public About Fraudulent Banking Websites and Phishing Scams

How AI agents reshape industrial automation and risk management

How Does EASM Go Beyond Vulnerability Management?

How to get 2FA codes on your desktop when your phone is MIA

How well do you know your remote IT worker?

Indonesian Telecom Telkomsel's SIM Management Panel Allegedly Offered for Sale

Infosec2025: Rory Stewart and Paul Chichester to Headline at Infosecurity Europe 2025

Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack

Iranian national admits to Greenville City Hall ransomware attack

Kettering Health radiation oncology back to treating patients after cyber attack

'Kisses from Prague': The fall of a Russian ransomware giant

Law Firms Warned of Silent Ransom Group Attacks

Legal Practice Board of Western Australia confirms Dire Wolf ransomware attack

Malicious Machine Learning Model Attack Discovered on PyPI

Marlboro-Chesterfield Pathology breach affected over 235,000 patients

MathWorks, Creator of MATLAB, Confirms Ransomware Attack

MATLAB dev confirms ransomware attack behind service outage

Meta wants to use your content to train its AI, and no GDPR will stop it

Microsoft, Dutch security agencies lift veil on Laundry Bear cyber espionage group

Nationwide Recovery Service Data Breach Victim List Grows

Nearly 70,000 impacted by ransomware attack on Sheboygan, Wisconsin

New Attack Bypasses HTTP/2 Security for Arbitrary Cross-Site Scripting

New Jersey hospital hack exposes patients’ personal details

New NIST Metric Could Help Organizations Zero In on Exploited Vulnerabilities

New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency

New York Department of Motor Vehicles (DMV) warns of latest fraudulent text message scam. What to do if you're targeted

NIS do TJSC prende em Goiás hacker que 'raspava' pontuação de milhagens em contas bancárias

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Operation ENDGAME cracks down on ransomware

Pakistan’s National Cyber Emergency Response Team (CERT) warns after massive global data breach affecting 180 million users

Palo Alto Networks Report Identifies Evolving Ransomware Tactics in Asia Pacific

Planned Parenthood Patients File Lawsuits Over Laboratory Services Cooperative Data Breach

Prefeitura de Santa Catarina sofre ataque hacker e perde R$ 1,6 milhão em golpe virtual

Preparing for the UK's Cyber Security and Resilience Bill

Ransomware attack on MATLAB dev MathWorks – licensing center still locked down

Red Hat and AMD Team Up to Boost AI Processing Power and Performance

Regulator has closed case in fundraising platform after data breach

Russia-Linked Hackers Target Tajikistan Government with Weaponized Word Documents

Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages

Russian Laundry Bear cyberspies linked to Dutch Police hack

SafePay ransomware hits over 235K Marlboro-Chesterfield Pathology patients

Securing Healthcare: Safeguarding Patient Care and Privacy Through Agile Cyber Strategies

South Korea expands data breach investigation to KT and LG Uplus – reports

TeleMessage Breach Exposes Communications of Over 60 U.S. Government Officials

Texas poised to enforce age verification on Apple, Google app stores

United Airlines Faces Alleged Data Breach 272 Million Records Exposed

US Government Launches Audit of NIST's National Vulnerability Database

Vulnerabilities found in NASA’s open source software

Weaponized Google Meet Page Tricks Users into Running PowerShell Malware

Why app modernization can leave you less secure

Why Quiet Expertise No Longer Wins Cybersecurity Clients

26/05

$2.5M Gone in Hours — Victim Hit Twice in Sophisticated Stablecoin Phishing Scam

$4.4 Million Settlement Agreed to Resolve WellNow Urgent Care Data Breach Litigation

52% of SOC Teams Are Overworked, New Report Shows

Adidas confirms customers data breach

Adidas Confirms Data Breach Impacting Customers Who Interacted with Help Desk in Turkiye

AI forces security leaders to rethink hybrid cloud strategies

Alleged 500GB Data Leak Impacts Chinese Industrial Gas Giant Messer Group

Asia-Pacific:Experiences 13% growth in cyber-attacks in the region

BIOS under attack: hackers increasingly focus on boot threats

Cellcom hit by major cyber attack, disrupting voice and text services

Chevrolet retailer in Brazil allegedly hit by cyberattack

Chinese Hackers Exploit Cityworks 0-Day to Hit US Local Governments

Chinese Hackers Exploit Cityworks Flaw to Target US Local Governments

Coinbase faces another data breach lawsuit claiming stock drop damages

Cooper Health System Data Breach Affects Almost 60,000 Individuals

Crypto investor loses $2.6M in stablecoins in double phishing scam

Cyber attack to cost M&S £300 million, operations disrupted through July

Data Breach Fallout: Coinbase Sued Over Hidden UK Regulator Deal

Data breach hits over 180mln users globally, including Pakistan

Electricity supply emerges as prime cyber attack target – German security agency

EsSalud Peruvian Health Insurance Data Allegedly Leaked Online

Europol, as part of Operation Endgame 2.0, destroyed the infrastructure of hacker groups and paralyzed their work

FBI warns law firms they’re being targeted by hackers

Former employees pursue class action over ‘concealed’ data breach at Interior Health

Fraud conviction overturned for DeFi exploiter behind $114M Mango Markets manipulation

Global Law Enforcement Cripples Ransomware Infrastructure

Hackers Breach Indonesia's Perludem Site to Promote Online Gambling

Hackers just hit a $5B hospital empire, demand ransom

Hacktivism Reborn: How a Fading Cyber Threat Has Become a Modern Battleground

Here’s how you can protect yourself from being scammed with deepfakes

How to Avoid Common Crypto Scams and Phishing Attacks in 2025

Hundreds demand compensation following SK Telecom data breach that affected millions

Impersonating Meta, Powered by AppSheet: A Rising Phishing Campaign Exploits Trusted Platforms to Evade Detection

India Meteorological Department (IMD) restricts access to weather data over fear of cyber attack

Kaspersky Identifies Evolving Ransomware and Cybersecurity Trends in META Region

Luxury aviation services firm allegedly breached, staff details leaked

Major AT&T leak exposed 31M records, hackers claim

Major data breach as 184 million Apple, Netflix, Google logins leaked

Marks & Spencer (M&S) hack may have been caused by security issues at Indian IT giant Tata Consultancy Services

Marlboro-Chesterfield Pathology data breach impacted 235,911 individuals

Mumbai Advertising Firm Hit by Ransomware Attack, Hackers Demand Bitcoin

NIST Introduces New Metric to Measure Likelihood of Vulnerability Exploits

NIST proposes new metric to gauge exploited vulnerabilities

Nigeria, South Africa among countries with escalated online threats in Q1 2025 – Report

No Power Outage, Just a Data One: Nova Scotia Hit by Ransomware Surge

Nova Scotia Power Confirms Ransomware Attack – 280k Customers Affected

Nova Scotia Power Confirms Ransomware Attack, 280k Notified of Data Breach

Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto

Phishing attacks exploit AppSheet to mimic Meta & evade defences

Probe into SK Telecom data breach expands to KT, LG Uplus

“Reject all” cookies button must be present and visible, German court says

Researchers Drop Proof-of-Concept (PoC) for Fortinet CVE-2025-32756, Urging Quick Patching

Scammers Use Fake Ledger Letters to Steal Crypto Wallet Info

SilverRAT Source Code Leaked Online: Here’s What You Need to Know

Sophisticated Hacker Group TA-ShadowCricket Attacking Government & Enterprise Networks

Street-Level QR Phishing: Cybercriminals Take Social Engineering to the Real World

TA-ShadowCricket: Sophisticated Hacker Group Targeting Government and Enterprise Networks

Tiffany confirms data breach in South Korea following Dior incident

Trojanized Version of Popular Password Manager KeePass Distributed Via Malicious Search Ads, Fueled Extended Campaign of Ransomware Attacks

U.S. Banking Associations Petition SEC to Rescind Cyber Breach Reporting Mandate

Unsecured database leak exposes 184 million login records from major technology platforms

Zscaler ThreatLabz 2025 Phishing Report: Phishing Evolves With GenAI

What happens when a business is targeted by a cyber attack?

Why layoffs increase cybersecurity risks

25/05

Adidas: Customer Contact Info Stolen in Data Breach

‘Cyber attack’ sparks ticketing chaos for Bangladesh-Singapore match

Cyber security competency development program held in Siliguri for MSME workers

Glitch to end app hosting and user profiles on July 8

Hacker leaks data of 1.2 billion Facebook users, is your data on dark web? Know how to…

Hackers assumem ataque DDoS acima de 1 Tb/s à plataforma X, ex-Twitter

Hackers Use Fake VPN and Browser NSIS Installers to Deliver Winos 4.0 Malware

Industrial cybersecurity leadership is evolving from stopping threats to bridging risk, resilience

M&S CEO reveals ‘shock’ over cyber attack, insists it’s ‘a bump in the road’

M&S cyber attack: What to do when a business is targeted by hackers

Operation ENDGAME disrupted global ransomware infrastructure

Pakistan records second lowest web threat rate in META region

Researchers claim ChatGPT o3 bypassed shutdown in controlled test

Tata Consultancy Services greenlights internal investigation amid fall out from M&S cyber attack

Why the record-breaking number of cyberattacks could be a prelude to the ‘big one’

Last Week

Daily News - Maio (18/05 - 24/05) - 21 Semana de 2025