Instagram Data Leak Exposes Sensitive Information of Millions
An Instagram data leak affecting roughly 17.5 million accounts highlights how large-scale data aggregation and third-party exposure continue to threaten user privacy.
Tag: breach
Read More
UAT-7290 Hackers Intensify Cyber Attacks on Critical Infrastructure
UAT-7290 threat actors are escalating cyber attacks against critical infrastructure, exploiting weaknesses in operational technology and industrial environments to disrupt essential services.
MongoDB CVE-2025-14847 Affects Database Access Controls
A MongoDB vulnerability tracked as CVE-2025-14847 highlights how weaknesses in access control handling can expose database environments to unauthorized access and data compromise.
TeamViewer DEX Vulnerabilities Expose Enterprise Endpoint Risks
Multiple vulnerabilities in TeamViewer DEX expose risks in enterprise endpoint monitoring platforms, raising concerns about unauthorized access, telemetry abuse, and internal reconnaissance within corporate environments.
Trust Wallet Chrome Extension Hack Exposes Browser Wallet Risk
A security incident involving the Trust Wallet Chrome extension shows how attackers can abuse browser extension architecture to compromise cryptocurrency wallets and silently expose user funds.
Romanian Waters Agency Battles Outage After Ransomware Strike
The Romanian Waters Authority suffered a ransomware attack that disabled key hydrological systems, forced emergency containment actions, and exposed ongoing cybersecurity weaknesses in critical infrastructure.
Fake npm WhatsApp API Library Found Stealing Sensitive Data
A malicious npm package posing as a WhatsApp API library was found harvesting login tokens, messages, and contacts from developers, demonstrating a sophisticated supply chain attack that can persistently link attacker devices to compromised WhatsApp accounts.
UK issues major LastPass data breach fine following 2022 incident
UK regulators have fined LastPass for security failures linked to the 2022 breach that exposed vault metadata for 16 million users. The incident revealed significant operational gaps and raised industry-wide questions about password-management safety.
Inside FvncBot – New Android Malware Hijacking Banking Apps
FvncBot is a new Android banking trojan capable of keylogging, screen streaming, overlays, and remote control — letting attackers steal credentials and hollow out bank accounts. This article breaks down how it works, why it matters, and how to defend against it.
GlobalProtect Login Surge 2025: 2.3M VPN Attempts Exposed
Security teams should treat the recent spike in login traffic against GlobalProtect portals as a serious alarm. Between November 14 and 19, 2025, threat-intelligence sensors logged roughly 2.3 million sessions hitting the /global-protect/login.esp endpoint on PAN-OS and GlobalProtect gateways. That represents a nearly 40× increase in daily scan volume, hitting the highest level seen in…