Tag: breach
-
Critrical cPanel flaw mass-exploited in “Sorry” ransomware attacks
A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in “Sorry” ransomware attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critrical-cpanel-flaw-mass-exploited-in-sorry-ransomware-attacks/
-
76% of All Crypto Stolen in 2026 Is Now in North Korea
North Korean threat actors are pulling off historic cryptocurrency heists on a yearly, sometimes weekly basis now. AI might be helping them. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-analytics/crypto-stolen-2026-north-korea
-
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
A newly discovered Vietnamese-linked operation has been observed using a Google AppSheet as a “phishing relay” to distribute phishing emails with an aim to compromise Facebook accounts.The activity has been codenamed AccountDumpling by Guardio, with the scheme selling the stolen accounts back through an illicit storefront run by the threat actors. In all, roughly 30,000…
-
15-year-old detained over French govt agency data breach
French authorities have detained a 15-year-old suspected of selling data stolen in a cyberattack on France Titres (ANTS), the country’s agency for issuing and managing administrative documents. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/15-year-old-detained-over-french-govt-agency-data-breach/
-
Story retracted
BleepingComputer initially published a story about a new data breach at Instructure. Shortly after publication, we determined that the information was incorrect and primarily based on outdated details from a prior incident. The article has been retracted, and we regret the error. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/story-retracted/
-
Supply Chain Attacks, AI Security, and Major Breaches Define This Week in Cybersecurity in May 2026
Weekly summary of Cybersecurity Insider newsletters First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/weekly-roundup/supply-chain-attacks-ai-security-and-major-breaches-define-this-week-in-cybersecurity-in-may-2026/
-
Carding service Jerry’s Store leak exposes 345,000 stolen payment cards
Jerry’s Store, a card-checking service used by cybercriminals, exposed 345,000 stolen payment cards after leaving its server open, revealing sensitive data. A cybercriminal operation known as Jerry’s Store has reportedly exposed a large cache of stolen payment card data after leaving its own infrastructure accessible online. The service appears to have been used to test…
-
U.S. Consumers Lost $2.1 Billion in Social Media Scams in 2025, FTC Says
An FTC report says that Americans last year lost $2.1 billion in social media scams, such as shopping and investment schemes. Social media site have become the place where most of these scams start, and more than half of that money was stolen in scams began on Facebook, WhatsApp, and Instagram. First seen on securityboulevard.com…
-
Breach of Confidence 1 May 2026
Tags: breachI’ve been thinking about coal mines. How you dig a hole in the earth, extract everything valuable, leave a scar, and walk away. Then someone comes along decades later and says, what if we filled it with water and made it beautiful? Feels like a metaphor for something, but I can’t quite land it. Germany……
-
The Overlap of Cybersecurity and Financial Risk: Protecting Sensitive Data in Commodity Markets
Cybersecurity financial risk is rising in commodity markets as breaches, data loss and espionage threaten operations and investor trust. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/05/the-overlap-of-cybersecurity-and-financial-risk-protecting-sensitive-data-in-commodity-markets/
-
The Cyber Express Weekly Roundup: Data Breaches, AI Risks, and Phishing Campaigns Dominate Cybersecurity Landscape
In this week’s First seen on thecyberexpress.com Jump to article: thecyberexpress.com/tce-weekly-roundup-cybersecurity/
-
Breach Roundup: US Cyber Command Flags Election Threats
Also, HexDex Arrest, Black Axe Crackdown, LeRobot RCE Flaw. This week, election threats resurfaced. A prolific hacker arrested. Black Axe network disrupted. China-linked disinformation targets Tibet. Exploited ScreenConnect and Windows flaws raise alarms. Minecraft gamers hit with stealer malware. A critical AI framework bug enables remote code execution. First seen on govinfosecurity.com Jump to article:…
-
Misconfigured Server Run by Hackers Leaks 345,000 Stolen Credit Cards
A misconfigured server linked to the carding marketplace Jerry’s Store exposed 345,000 stolen credit cards after an AI coding error caused a major security flaw. First seen on hackread.com Jump to article: hackread.com/misconfigured-server-hackers-leak-stolen-credit-cards/
-
France investigates 15-year-old over alleged hack of national ID agency
The minor was taken into police custody on April 25 on suspicion of involvement in a data breach affecting the National Agency for Secure Documents (ANTS), which processes applications for passports, national identity cards, residence permits and driver’s licenses. First seen on therecord.media Jump to article: therecord.media/france-investigates-teen-over-national-id-agency-hack
-
French prosecutors link 15-year-old to mega-breach at state’s secure document agency
Two computer crime allegations follow up to 18M lines of data surfacing online First seen on theregister.com Jump to article: www.theregister.com/2026/04/30/french_gov_mega_breach_suspect/
-
Three Arrested for Hacking Over 610,000 Roblox Accounts
Suspects accused of distributing malware and selling access to stolen Roblox accounts on Russian marketplaces First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/three-arrested-over-roblox-hacking/
-
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks against other network operators in Brazil, KrebsOnSecurity has learned. The firm’s chief executive says the malicious activity resulted from a security breach and was likely the work…
-
Education Sector Faces Surge in Cyber Breaches Despite Stable National Threat Levels
The British public education sector has faced the nation’s most dramatic increase in cyber breach prevalence over the past year First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/uk-education-sector-faces-surge-in/
-
Meta accused of violating DSA by failing to safeguard minors
Tags: breachThe European Commission accuses Meta of failing to protect children, allowing users under 13 on Instagram and Facebook, in breach of the DSA rules. The European Commission has accused Meta of violating child safety rules. Instagram and Facebook allegedly failed to prevent children under 13 from accessing their platforms. According to the Commission, Meta did…
-
AI is widening the asymmetry between attackers and defenders
As threat actors leverage AI to launch attacks at machine speed, cyber defenders must adopt an assumed breach mindset and prioritise breach containment First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366642503/AI-is-widening-the-asymmetry-between-attackers-and-defenders
-
Dutch Health Tech Firm ChipSoft Confirms Destruction of Stolen Patient Data
The Cyber Express previously reported the ChipSoft cyberattack, in which ransomware actors stole patient data. Now, reports have surfaced from the Dutch medical software provider, noting that the compromised data has been destroyed, though key details about the incident remain undisclosed. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/chipsoft-cyberattack-stolen-data-destroyed/
-
The Real Cost of a Data Breach for Small Businesses How to Prevent
Tags: attack, breach, business, cyberattack, cybersecurity, data, data-breach, finance, risk, threatData breaches pose a serious threat to small businesses, often resulting in significant financial losses, operational downtime, and long-term trust erosion. This blog examines the real costs of cyberattacks on SMBs, including direct expenses, hidden operational impacts, and reputational damage that can exceed recovery costs. It outlines the most common attack types targeting small organizations…
-
Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions
A developer at an AI startup wanted to cheat at Roblox. They downloaded a dodgy script on their work laptop. That one decision triggered a cascade of failures that ended with a $2 million data breach affecting hundreds of thousands of organisations. All for some free in-game currency. First seen on grahamcluley.com Jump to article:…
-
Survey Sees Rising Demand for Senior Cybersecurity Pros in Age of AI
A global survey of 2,750 cybersecurity and IT professionals published this week finds that for the third consecutive year a lack of cybersecurity skills is cited as the top cause of security breaches (56%), with 51% reporting they specifically need individuals with senior-level skills. Conducted by Sapio Research on behalf of Fortinet, the survey, however,..…
-
Survey Sees Rising Demand for Senior Cybersecurity Pros in Age of AI
A global survey of 2,750 cybersecurity and IT professionals published this week finds that for the third consecutive year a lack of cybersecurity skills is cited as the top cause of security breaches (56%), with 51% reporting they specifically need individuals with senior-level skills. Conducted by Sapio Research on behalf of Fortinet, the survey, however,..…
-
A Mini Shai-Hulud Targeting the SAP Ecosystem
7 stolen GitHub tokens. 971 repositories. A self-replicating supply chain attack targeting SAP’s Node.js packages, and it’s still active. Here’s what GitGuardian found. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/a-mini-shai-hulud-targeting-the-sap-ecosystem/