Latest cyber attacks news, vulnerabilities, CVEs, and threat intelligence from 50+ trusted cybersecurity sources.
A senior software developer has been found guilty of sabotaging his former employer's systems, potentially facing ten years in prison. Learn about the implications and consequences of this cyber attack.
Mirai-based botnets are exploiting a zero-day flaw in Edimax IP cameras for remote command execution. US CISA warns of the vulnerability, urging organizations to report suspicious activity. Learn more about the impact and mitigation strategies.
CVEs: CVE-2025-1316
Discover how the China-aligned threat group TA415 leverages VS Code Remote Tunnels and spear-phishing campaigns to spy on U.S. government officials, think tanks, and academic institutions. Learn about their tactics, targets, and the broader implications for cybersecurity.
Discover how Microsoft and Cloudflare collaborated to dismantle RaccoonO365, a phishing-as-a-service network responsible for stealing over 5,000 Microsoft 365 credentials across 94 countries. Learn about the operation, its impact, and the future of cybersecurity.
Despite claims of retirement, the notorious Scattered Spider cybercrime group has resurfaced, targeting a US bank in a sophisticated digital intrusion. Learn about their evolving tactics and the implications for financial cybersecurity.
Explore why cybersecurity experts remain skeptical about the supposed retirement of 15 ransomware gangs, including Scattered Spider. Discover the implications for threat intelligence and cybersecurity strategies.
Discover the shocking turn of events as Conor Fitzpatrick, the founder of BreachForums, faces a 3-year prison sentence after initially avoiding jail time. Learn about the rise and fall of BreachForums, its impact on cybersecurity, and the legal consequences of its operations.
Discover how Microsoft and Cloudflare collaborated to take down RaccoonO365, a notorious phishing-as-a-service platform responsible for stealing thousands of Microsoft 365 credentials. Learn about the operation, its impact, and the mastermind behind the scheme.
Conor Brian Fitzpatrick, aka Pompompurin, the founder of BreachForums, has been resentenced to three years in prison for operating a cybercrime forum and possessing child sexual abuse material (CSAM). Learn about the case, its implications, and the DOJ's stance on cybercrime.
Discover how the infamous Scattered Spider cybercrime group has resurfaced with a wave of attacks on the financial sector, despite earlier claims of retirement. Learn about their evolving tactics and the implications for cybersecurity.
Conor Brian Fitzpatrick, the 22-year-old administrator of the infamous BreachForums hacking forum, has been resentenced to three years in prison. Discover the details of the case, its implications for cybersecurity, and the legal journey that led to this decision.
Microsoft's Digital Crimes Unit has taken down 338 domains linked to RaccoonO365, the fastest-growing phishing kit targeting Microsoft 365 credentials. Learn about the operation, the alleged ringleader, and the impact on cybersecurity.
The UK's leading automotive workers' union urges the government to introduce a Covid-style furlough scheme to protect jobs at Jaguar Land Rover following a devastating cyberattack. Learn about the impact, union demands, and potential solutions.
Russia conducts hypersonic missile tests near NATO borders, heightening geopolitical tensions. Explore the strategic implications, recent drone incursions, and the broader impact on European security.
The FBI has issued a FLASH alert about threat actors UNC6040 and UNC6395 compromising Salesforce environments to steal data and extort victims. Learn about the risks, tactics, and how to protect your organization.
Discover how VoidProxy, a new phishing-as-a-service (PhaaS) platform, is targeting Microsoft 365, Google, and SSO-protected accounts. Learn about its mechanisms, risks, and how to protect your organization.
The FBI has issued a critical flash alert warning organizations about cybercriminal groups UNC6040 and UNC6395 targeting Salesforce platforms. Learn about their tactics, affected companies, and recommended security measures to protect your data.
The FBI has issued a warning about cybercriminal groups UNC6040 and UNC6395 targeting Salesforce platforms for data theft and extortion. Learn about their tactics, the risks to organizations, and how to protect your systems.
Explore the strategic role of Russian offensive cyber operations in Vladimir Putin’s foreign policy. Learn about key cyber threats, tactics, and their impact on global cybersecurity.
Discover how a DDoS mitigation provider faced one of the largest packet-rate attacks in history—a 1.5 billion packets per second flood. Learn about the attack's origins, its implications for cybersecurity, and how organizations can protect themselves.
Panama's Ministry of Economy and Finance (MEF) has confirmed a cyberattack on one of its systems, with the INC ransomware group claiming responsibility. Learn about the breach, its implications, and the broader threat landscape.
U.S. Senator Ron Wyden accuses Microsoft of 'gross cybersecurity negligence' after ransomware attacks on healthcare organizations. Learn about the FTC investigation, implications for cybersecurity, and Microsoft's response.
A European DDoS mitigation service provider faced an unprecedented 1.5 billion packets per second (Bpps) attack, marking one of the largest DDoS attacks in history. Discover the implications for cybersecurity, the evolving threat landscape, and how organizations can defend against such attacks.
Discover how the cybercriminal group Scattered Spider exploited social engineering to breach Clorox, causing $380M in damages. Learn why caller verification and audit trails are critical for cybersecurity.
Discover how a historic NPM supply-chain attack compromised 10% of cloud environments, yet yielded minimal profits for hackers. Learn about the attack's impact, methods, and implications for cybersecurity.
Discover how China-linked APT41 hackers are conducting cyber espionage campaigns targeting U.S. trade officials during critical 2025 negotiations. Learn about the implications, tactics, and how organizations can protect themselves.
The Czech Republic's NUKIB agency has issued a warning about Chinese-linked cyber threats targeting critical infrastructure, highlighting risks from APT31 and vulnerable devices. Discover the implications for national security and cybersecurity best practices.
Discover how hackers executed the largest supply chain attack in history by hijacking NPM packages with over 2.6 billion weekly downloads. Learn about the phishing attack, its impact, and how to protect your systems.
Discover how the Noisy Bear threat group, allegedly of Russian origin, is targeting Kazakhstan’s energy sector with Operation BarrelFire. Learn about the phishing campaign, its implications, and the broader cybersecurity risks facing critical infrastructure.