Tag: leak
-
Data Leak Outs Students of Iran’s MOIS Training Academy
A school for the Iranian state hackers of tomorrow has itself, ironically, been hacked. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/data-leak-students-iran-mois-training-academy
-
Former L3Harris Trenchant boss pleads guilty to selling zero-day exploits to Russian broker
Prosecutors confirmed Peter Williams, the former Trenchant boss, sold eight exploits to a Russian buyer. TechCrunch exclusively reported that the Trenchant division was investigating a leak of its hacking tools, after another employee was accused of involvement. First seen on techcrunch.com Jump to article: techcrunch.com/2025/10/29/former-l3harris-trenchant-boss-pleads-guilty-to-selling-zero-day-exploits-to-russian-broker/
-
Former L3Harris Trenchant boss pleads guilty to selling zero-day exploits to Russian broker
Prosecutors confirmed Peter Williams, the former Trenchant boss, sold eight exploits to a Russian buyer. TechCrunch exclusively reported that the Trenchant division was investigating a leak of its hacking tools, after another employee was accused of involvement. First seen on techcrunch.com Jump to article: techcrunch.com/2025/10/29/former-l3harris-trenchant-boss-pleads-guilty-to-selling-zero-day-exploits-to-russian-broker/
-
Hackers Allegedly Leak HSBC USA Customer and Financial Information
A threat actor has claimed responsibility for breaching HSBC USA, the American division of the global investment bank and financial services holding company. The cybercriminal posted an extensive database for sale on underground forums, alleging it contains fresh and comprehensive customer data stolen from the financial institution. Massive Collection of Sensitive Customer Data According to…
-
When 183 Million Passwords Leak: How One Breach Fuels a Global Threat Chain
When 183 million email addresses and passwords are made public online, it is more than a leak. It is an open invitation for attackers to exploit weak links across the digital ecosystem. The recent discovery of a massive database containing stolen credentials, many tied to Gmail and other major services, highlights how easily an endpoint…
-
Massive Tata Motors Data Leak Exposes 70+ TB of Sensitive Information
Tata Motors, India’s largest automaker and a major player in the global automotive industry, suffered a catastrophic data exposure that revealed over 70 terabytes of sensitive information through multiple security failures. The breaches, discovered in 2023, involved exposed AWS credentials on public-facing websites, encrypted keys that were easily decrypted, a Tableau backdoor with zero authentication…
-
AI agents can leak company data through simple web searches
When a company deploys an AI agent that can search the web and access internal documents, most teams assume the agent is simply working as intended. New research shows how … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/29/agentic-ai-security-indirect-prompt-injection/
-
AI agents can leak company data through simple web searches
When a company deploys an AI agent that can search the web and access internal documents, most teams assume the agent is simply working as intended. New research shows how … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/29/agentic-ai-security-indirect-prompt-injection/
-
Everest Leaks ATT Records, Demands $1M for Dublin Airport Passenger Data
Everest ransomware group leaks alleged ATT Carrier data, demands $1 million for Dublin Airport files and $2 million for Air Arabia employee records. First seen on hackread.com Jump to article: hackread.com/everest-att-leak-dublin-airport-data/
-
Researchers warn of Qilin ransomware gang after group hit hundreds of orgs this year
In October alone, the suspected Russia-based group added more than 185 victims to its leak site, claiming to be behind recent cybersecurity incidents at Japanese beverage giant Asahi, the Texas city of Sugar Land, a county government in North Carolina and multiple power companies in Texas. First seen on therecord.media Jump to article: therecord.media/qilin-ransomware-gang-hits-hundreds-of-orgs-2025
-
Copilot diagrams could leak corporate emails via indirect prompt injection
The bigger threat of indirect prompt injection: The incident underscores that the risk goes beyond simple “prompt injection,” where a user types malicious instructions directly into an AI. Here, the attacker hides instructions inside document content that gets passed into the assistant without the user’s awareness. Logue described how the hidden instructions use progressive task…
-
Copilot diagrams could leak corporate emails via indirect prompt injection
The bigger threat of indirect prompt injection: The incident underscores that the risk goes beyond simple “prompt injection,” where a user types malicious instructions directly into an AI. Here, the attacker hides instructions inside document content that gets passed into the assistant without the user’s awareness. Logue described how the hidden instructions use progressive task…
-
Beatings, killings, and lasting fear: The human toll of MoD’s Afghan data breach
Research submitted to Parliament details deaths, raids, and mental trauma linked to 2022 relocation leak First seen on theregister.com Jump to article: www.theregister.com/2025/10/28/impact_afghan_data_breach/
-
Beatings, killings, and lasting fear: The human toll of MoD’s Afghan data breach
Research submitted to Parliament details deaths, raids, and mental trauma linked to 2022 relocation leak First seen on theregister.com Jump to article: www.theregister.com/2025/10/28/impact_afghan_data_breach/
-
Sweden’s power grid operator confirms data breach claimed by ransomware gang
The utility responsible for operating Sweden’s power grid is investigating a data breach after a ransomware group threatened to leak hundreds of gigabytes of purportedly stolen internal data. First seen on therecord.media Jump to article: therecord.media/sweden-power-grid-operator-data
-
Breach at Iran’s cyberspy factory results in leak of student data
Ravin Academy confirms the intrusion on Telegram, says investigation continues First seen on theregister.com Jump to article: www.theregister.com/2025/10/27/breach_iran_ravin_academy/
-
Qilin Ransomware Group Publishes Over 40 Cases Monthly
Qilin ransomware activity has surged in late 2025, threatening data leaks via double extortion tactics First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/qilin-ransomware-40-cases-monthly/
-
DomeWatch Leak Exposed Personal Data of Capitol Hill Applicants
Unsecured House Democrats’ resume bank (DomeWatch) exposed 7,000 records, including PII and “top secret” clearance status, raising identity theft fears. First seen on hackread.com Jump to article: hackread.com/domewatch-leak-capitol-hill-applicants-data/
-
Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack
The ransomware group known as Qilin (aka Agenda, Gold Feather, and Water Galura) has claimed more than 40 victims every month since the start of 2025, barring January, with the number of postings on its data leak site touching a high of 100 cases in June.The development comes as the ransomware-as-a-service (RaaS) operation has emerged…
-
Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack
The ransomware group known as Qilin (aka Agenda, Gold Feather, and Water Galura) has claimed more than 40 victims every month since the start of 2025, barring January, with the number of postings on its data leak site touching a high of 100 cases in June.The development comes as the ransomware-as-a-service (RaaS) operation has emerged…
-
Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack
The ransomware group known as Qilin (aka Agenda, Gold Feather, and Water Galura) has claimed more than 40 victims every month since the start of 2025, barring January, with the number of postings on its data leak site touching a high of 100 cases in June.The development comes as the ransomware-as-a-service (RaaS) operation has emerged…
-
Qilin Ransomware Exploits MSPaint and Notepad to Locate Sensitive Files
In the latter half of 2025, the Qilin ransomware group has solidified its standing as a formidable threat, continuing to post details of more than 40 victims per month on its public leak site. This rapid, relentless campaign”, primarily impacting manufacturing, professional and scientific services, and wholesale trade”, has propelled Qilin among the world’s most…
-
Qilin Ransomware Exploits MSPaint and Notepad to Locate Sensitive Files
In the latter half of 2025, the Qilin ransomware group has solidified its standing as a formidable threat, continuing to post details of more than 40 victims per month on its public leak site. This rapid, relentless campaign”, primarily impacting manufacturing, professional and scientific services, and wholesale trade”, has propelled Qilin among the world’s most…
-
Safepay ransomware group claims the hack of professional video surveillance provider Xortec
Safepay group claims the hack of professional video surveillance provider Xortec and added the company to its data leak site. The Safepay group claimed responsibility for hacking German video surveillance provider Xortec and listed the company on its data leak site. The ransomware payment deadline is October 27, 2025. Xortec GmbH, based in Frankfurt with…
-
Ransomware recovery perils: 40% of paying victims still lose their data
Tags: access, attack, authentication, backup, breach, business, ceo, crypto, cyber, cybersecurity, data, data-breach, encryption, extortion, finance, GDPR, group, incident response, insurance, leak, mfa, privacy, ransom, ransomware, resilience, risk, risk-management, service, threat, updateAdditional recovery pressures: Modern ransomware attacks now routinely involve double or triple extortion whereby attackers threaten to leak stolen data or launch distributed denial of service (DDoS) attacks even after payment.This fundamentally changes the calculus on what victims can expect in cases where they decide to make a ransomware payment, which more often than not…
-
Ransomware recovery perils: 40% of paying victims still lose their data
Tags: access, attack, authentication, backup, breach, business, ceo, crypto, cyber, cybersecurity, data, data-breach, encryption, extortion, finance, GDPR, group, incident response, insurance, leak, mfa, privacy, ransom, ransomware, resilience, risk, risk-management, service, threat, updateAdditional recovery pressures: Modern ransomware attacks now routinely involve double or triple extortion whereby attackers threaten to leak stolen data or launch distributed denial of service (DDoS) attacks even after payment.This fundamentally changes the calculus on what victims can expect in cases where they decide to make a ransomware payment, which more often than not…
-
Medusa Ransomware Leaks 834 GB of Comcast Data After $1.2M Demand
Medusa ransomware leaks 186 GB of Comcast data, claiming 834 GB stolen after a $1.2M ransom demand apparently went unpaid. First seen on hackread.com Jump to article: hackread.com/medusa-ransomware-comcast-data-leak/
-
Medusa Ransomware Leaks 834 GB of Comcast Data After $1.2M Demand
Medusa ransomware leaks 186 GB of Comcast data, claiming 834 GB stolen after a $1.2M ransom demand apparently went unpaid. First seen on hackread.com Jump to article: hackread.com/medusa-ransomware-comcast-data-leak/
-
Vault Viper Leak: Der ‘Universe Browser”, der alles mitliest
Tags: leakDer angeblich ‘sichere” Universe Browser ist Teil des Untergrundnetzwerks Vault Viper, einer globalen Cybermafia. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/szene/dark-commerce/vault-viper-leak-der-universe-browser-der-alles-mitliest-322069.html
-
183 Million Synthient Stealer Credentials Added to Have I Been Pwned
Massive Synthient Stealer Log leak adds 183 million stolen usernames and passwords to Have I Been Pwned, exposing new victims worldwide. First seen on hackread.com Jump to article: hackread.com/synthient-stealer-credentials-have-i-been-pwned/