Security
More than half of Americans have had their personal data leaked online, study shows
More than half of Americans say they’ve been the victim of a data leak, while another 46% say they’ve never checked to find out, meaning their personal data may be at risk.
Read more about More than half of Americans have had their personal data leaked online, study shows
Attackers abusing OAuth to maintain access long after passwords are reset
Hackers are exploiting a loophole to retain access to hijacked user accounts, even after password resets and multi-factor authentication are enforced. They do this by creating internal malicious web apps and issuing OAuth tokens to maintain persistent access.
Read more about Attackers abusing OAuth to maintain access long after passwords are reset
This million-dollar leak from a Shopify rival went unnoticed for 2 years
Indian Shopify competitor Dukaan leaked sensitive credentials that could have resulted in hundreds of millions dollars drained from merchants’ accounts.
Read more about This million-dollar leak from a Shopify rival went unnoticed for 2 years
Hackers threaten to drop 47GB of top golf brand’s secrets
A Russian-linked ransomware gang claims to have stolen 47GB of data from a major golf apparel company, and the countdown to public release has begun.
Read more about Hackers threaten to drop 47GB of top golf brand’s secrets
Hackers actively exploiting Windows SMB flaw, gaining SYSTEM privileges over networks
Hackers are actively exploiting Windows SMB component vulnerability, which enables them to gain SYSTEM privileges over a network. The flaw affects all unpatched Windows systems. Microsoft released an update in June, 2025.
Read more about Hackers actively exploiting Windows SMB flaw, gaining SYSTEM privileges over networks
Be prepared: AWS outage likely to trigger surge in phishing attacks
Over six million individuals are reported to have been impacted by Monday’s AWS outage, leaving affected users ripe for scam attacks. Here’s what to look out for.
Read more about Be prepared: AWS outage likely to trigger surge in phishing attacks
Hackers doxx hundreds of ICE agents, raising risk of targeted attacks
Hackers have exposed the personal data of hundreds of Homeland Security and Justice Department employees, just as tensions between US agents and the public reach a breaking point.
Read more about Hackers doxx hundreds of ICE agents, raising risk of targeted attacks
Grocery delivery platform data leaked, hackers claim
Getir, a major grocery delivery platform, has allegedly had its data leaked. Attackers claim to have accessed the company’s intranet, but Cybernews researchers are skeptical.
Read more about Grocery delivery platform data leaked, hackers claim
Windows 10 users reluctant to update: main Windows 11 issues
Broken localhost and unresponsive accessories are a few of the issues that the company has already addressed.
Read more about Windows 10 users reluctant to update: main Windows 11 issues
Users beware: Xubuntu website serving malware instead of OS downloads
Users attempting to download Xubuntu, a lightweight Linux distribution derived from Ubuntu, are reporting getting malware instead. The project’s maintainers have temporarily disabled dowloads.
Read more about Users beware: Xubuntu website serving malware instead of OS downloads
Data breach hits security company Verisure, impact considered “limited”
Swedish security company Verisure is currently dealing with a data breach related to Alert Alarm customers in Sweden.
Read more about Data breach hits security company Verisure, impact considered “limited”
Odido fined €1.5M for poorly securing its wiretapping system
The Dutch Authority for Digital Infrastructure (RDI) has investigated the security of Odido’s wiretapping system and concluded that several components didn’t meet legal requirements. Therefore, the RDI has imposed a fine of €1,518,750.
Read more about Odido fined €1.5M for poorly securing its wiretapping system
Credit rating agency Experian fined €2.7M for GDPR violations
The Dutch data protection authority (DPA) has imposed a €2.7 million fine on Experian for violating the General Data Protection Regulation (GDPR).
Read more about Credit rating agency Experian fined €2.7M for GDPR violations
Data brokers are constantly doxing us, and we can’t do anything about it
Data brokers have so much data on us, scraped from all parts of the Internet. But if that data falls in the wrong hands, it can be more dangerous than we might’ve originally thought.
Read more about Data brokers are constantly doxing us, and we can’t do anything about it
The Military-industrial tech complex: GPUs matter more than jets
In the modern-day battlefield, advantage depends less on jets and more on GPUs, less on steel and more on software licenses, less on forward bases and more on cloud regions near undersea cables. Over the past decade, big tech has moved from the periphery of defense to its center. The tools of war now include mobile stacks, satellite links, and model governance checklists.
Read more about The Military-industrial tech complex: GPUs matter more than jets
TikTokers falling for videos spreading fake software activation commands, hiding malware
Cybercriminals on TikTok are collecting thousands of likes for videos that instruct unaware users to download and run malware themselves. TikTokers run malicious PowerShell commands, believing they’re activating Windows or other software for free.
Read more about TikTokers falling for videos spreading fake software activation commands, hiding malware
Collins Aerospace attack claimed by Everest, linking ransomware group to last month's European airport chaos
The Everest ransomware group has claimed responsibility for the September breach of Collins Aerospace and its MUSE check-in software. The attack impacted multiple major airports across Europe and caused travel chaos for days.
Read more about Collins Aerospace attack claimed by Everest, linking ransomware group to last month's European airport chaos
Several PA systems in the U.S. and Canada hacked to praise Hamas and condemn Trump
Hackers wreaked havoc by talking over PA systems, flight information display screens, and public address systems throughout several airports.
Read more about Several PA systems in the U.S. and Canada hacked to praise Hamas and condemn Trump
Hundreds of thousands of F5 systems exposed, potentially vulnerable to “catastrophic” compromise
Internet scanning services warn that hundreds of thousands of F5 systems are exposed online and may potentially be vulnerable to compromise. The company suffered a major breach, exposing severe vulnerabilities, source code, and other data.
Read more about Hundreds of thousands of F5 systems exposed, potentially vulnerable to “catastrophic” compromise
Thousands of companies fall victim to this particular cyberattack. Act now
Ransomware attacks have surged this year, and US-based companies remain the prime target for cybercriminals.
Read more about Thousands of companies fall victim to this particular cyberattack. Act now
