Security
"The data is fake:" Deutsche Telekom denies breach after alleged customer data hits cybercrime forum
Hackers are claiming to have a dataset linked to Deutsche Telekom for sale, raising fears of large-scale identity fraud. The company says the data is fake.
Read more about "The data is fake:" Deutsche Telekom denies breach after alleged customer data hits cybercrime forum
Millions of users caught in “anonymous” video chat leak
Hundreds of thousands of users thought their random video chats vanished the moment they clicked “next.” However, a Cybernews data leak investigation has found that extensive personal data was exposed to anyone on the internet.
Read more about Millions of users caught in “anonymous” video chat leak
Supply chain hit once again: single NPM account pushes 600+ compromised packages, used by millions
Another massive supply chain attack is spreading. Hundreds of compromised NPM packages are being detected, with hackers using stolen secrets to create over 2,200 public GitHub repositories, all because TeamPCP hijacked a single maintainer’s account.
Read more about Supply chain hit once again: single NPM account pushes 600+ compromised packages, used by millions
Hundreds arrested in first large cybercrime operation in MENA region
201 individuals were arrested in Operation Ramz, the first-of-its-kind cybercrime operation in the MENA region, encompassing countries in the Middle East and North Africa.
Read more about Hundreds arrested in first large cybercrime operation in MENA region
Dutch minister questions whether hackers deleted stolen patient data as ChipSoft claims
According to Mirjam Sterk, Minister of Long-Term Care, Youth, and Sport, there’s no certainty that the criminals have destroyed the data they stole from ChipSoft.
Read more about Dutch minister questions whether hackers deleted stolen patient data as ChipSoft claims
7-Eleven confirms April cyberattack after ShinyHunters leak claims
7-Eleven confirms its internal systems were breached in April, exposing the information of an unknown number of individuals just weeks after the ShinyHunters ransomware group listed the global convenience store chain as part of its recent “pay-or-leak” campaign.
Read more about 7-Eleven confirms April cyberattack after ShinyHunters leak claims
Grafana pushes back on blackmail after breach: Will monitoring dashboards now be used against defenders?
Popular open-source observability tool maker has disclosed that it was breached and refused to pay a ransom after “an unauthorized party” stole a code database, which they then threatened to publish.
Read more about Grafana pushes back on blackmail after breach: Will monitoring dashboards now be used against defenders?
The impossible choice Canvas faced shows why ransomware payment bans won't work
The ransomware attack against Canvas and its parent company, Instructure, will eventually be remembered as far more than another cybersecurity incident. But what happened during finals week across schools and universities in North America exposed a growing conflict between public policy and operational reality.
Read more about The impossible choice Canvas faced shows why ransomware payment bans won't work
Was Adobe Suite breached? This is what we know
An alleged 832GB dataset belonging to Adobe is now circulating on hacker forums, threatening the company with an increase in phishing attacks and enterprise espionage.
Read more about Was Adobe Suite breached? This is what we know
Vindictive researcher gains complete Windows control using 6-year-old Google bug report
A fully patched Windows system is vulnerable to a 6-year-old exploit, originally identified by Google Project Zero, an anonymous researcher has disclosed. It’s the same researcher who has been dropping zero-days in what appears to be a personal vendetta against Microsoft.
Read more about Vindictive researcher gains complete Windows control using 6-year-old Google bug report
Age verification laws drive surge in bypass discussions and VPN downloads
As countries like the UK and Australia introduce online age verification laws, online discussions about bypassing these systems are rising,...
Read more about Age verification laws drive surge in bypass discussions and VPN downloads
Race to tear down open source: copycats reusing TeamPCP’s code in NPM attacks
Copycat hackers are competing to win $1,000 for the largest supply chain attack using Shai-Hulud, an open-sourced worm that has brought down a few major open-source projects. Malicious NPM packages are already appearing with nearly identical code, and researchers warn that this is only the beginning.
Read more about Race to tear down open source: copycats reusing TeamPCP’s code in NPM attacks
At Pwn2Own Berlin 2026, hackers push enterprises to the limit and earn $1.3 million
A popular hackathon, Pwn2Own Berlin 2026, has just ended, and its participants earned a total of roughly $1.3 million for exploits targeting Windows, Nvidia, Linux, VMware, and AI products.
Read more about At Pwn2Own Berlin 2026, hackers push enterprises to the limit and earn $1.3 million
Don’t sign in with Google if you value your online security and privacy, Proton warns
“DON'T SIGN IN WITH GOOGLE” is the simple and clear advice Proton urges to preserve our online security and privacy. But what should we do instead?
Read more about Don’t sign in with Google if you value your online security and privacy, Proton warns
Privacy regulators outline 3 urgent steps companies must take as data breaches hit 44K
After seeing the number of cyberattacks grow from 38,000 to 44,000 incidents in just a year, the Dutch authorities want companies to take these urgent steps.
Read more about Privacy regulators outline 3 urgent steps companies must take as data breaches hit 44K
Zara data breach exposes 200K customers after alleged ransomware attack
Roughly 200,000 Zara customers were exposed during an April cyberattack later claimed by the notorious ShinyHunters gang, according to a new report by HaveIBeenPawned.
Read more about Zara data breach exposes 200K customers after alleged ransomware attack
Peace sign selfies could leak your fingerprints
Peace sign selfies may be revealing more than just a casual pose. Experts say AI-enhanced images can, in some cases, help reconstruct fingerprint data from photos.
Read more about Peace sign selfies could leak your fingerprints
Proton Pass beats expectations in independent security audit
Password manager Proton Pass has passed a security audit by an external security firm with flying colors.
Read more about Proton Pass beats expectations in independent security audit
Curl creator tests “too dangerous” Mythos AI and calls it “marketing” after it found one bug
Anthropic’s much-hyped AI vulnerability hunter, Mythos, finally went head-to-head with one of open source’s most scrutinized codebases.
Read more about Curl creator tests “too dangerous” Mythos AI and calls it “marketing” after it found one bug
Pharma giant West Pharmaceutical discloses ransomware attack disrupting operations
West Pharmaceutical Services, a global manufacturer of drug delivery systems used by the world’s top pharmaceutical and biotechnology companies, is still scrambling to restore business operations nearly a week after being hit by ransomware.
Read more about Pharma giant West Pharmaceutical discloses ransomware attack disrupting operations
