Tag: unauthorized
-
Phishing attack on healthcare firm Xsolis impacts 1.4 million people
Healthcare technology company Xsolis confirmed that a phishing attack resulted in unauthorized access to its network. The company develops AI-powered software for hospitals, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/24/xsolis-data-breach-phishing-attack/
-
Hackers Use Microsoft Teams-Themed Lures to Deploy Legitimate Remote Access Software
An active phishing campaign that impersonates Microsoft Teams to trick victims into downloading a legitimately signed remote access tool (RAT) preconfigured for unauthorized access. Attackers deliver Teams-themed lures notifications about meeting transcripts, missed recordings, or “download transcript” prompts linking to convincing landing pages that mimic collaboration and productivity services. The offered downloads are pitched as…
-
LastPass Customer Data Exposed in Klue Supply Chain Attack Using Stolen OAuth Tokens
Tags: access, attack, authentication, breach, cyber, data, data-breach, risk, saas, security-incident, supply-chain, unauthorizedA security incident involving the third-party platform Klue has resulted in unauthorized access to limited customer data in LastPass. The breach occurred after attackers compromised OAuth tokens associated with enterprise integrations. This incident, disclosed by LastPass, underscores the ongoing risks related to SaaS integrations and token-based authentication in today’s enterprise environments. LastPass Customer Data Exposed…
-
Suspected cyberattack triggers false emergency alerts across parts of Brazil
The incident occurred early Saturday when at least a dozen unauthorized alerts were sent through Brazil’s Civil Defense Alert system, a platform designed to warn residents about imminent threats such as floods, landslides and other natural disasters. First seen on therecord.media Jump to article: therecord.media/suspected-cyberattack-triggers-false-emergency-alerts-brazil
-
Suspected cyberattack triggers false emergency alerts across parts of Brazil
The incident occurred early Saturday when at least a dozen unauthorized alerts were sent through Brazil’s Civil Defense Alert system, a platform designed to warn residents about imminent threats such as floods, landslides and other natural disasters. First seen on therecord.media Jump to article: therecord.media/suspected-cyberattack-triggers-false-emergency-alerts-brazil
-
Texas TPWD Vendor Breach Exposes 3 Million Customer Records
Tags: breach, cyber, data, data-breach, identity, infrastructure, network, service, supply-chain, unauthorizedTexas Cyber Command has disclosed a massive third-party data breach affecting the Texas Parks and Wildlife Department (TPWD), exposing the personal records of exactly 3,087,721 individuals. An unauthorized actor breached this vendor’s network infrastructure, resulting in a severe supply chain security incident. The specific identity of the third-party service provider currently remains undisclosed pending further…
-
CISA Issues Alert on Critical Splunk Enterprise Bug Under Active Exploitation
Tags: authentication, cisa, cve, cyber, endpoint, exploit, flaw, kev, service, unauthorized, vulnerabilityCISA has issued an urgent alert regarding a critical vulnerability in Splunk Enterprise, tracked as CVE-2026-20253, which is now listed in the Known Exploited Vulnerabilities (KEV) catalog following evidence of active exploitation. The flaw, categorized under CWE-306 (Missing Authentication for Critical Function), exposes affected systems to unauthorized file manipulation through a PostgreSQL sidecar service endpoint,…
-
Congress tees up No FAKES Act, aiming at AI-generated deepfakes
While preventing third parties from profiting off unauthorized deepfakes of artists and performers is a bipartisan concern, some business and digital rights groups are opposed. First seen on cyberscoop.com Jump to article: cyberscoop.com/congress-tees-up-no-fakes-act-aiming-at-ai-generated-deepfakes/
-
7-Year-Old OpenBSD Security Flaw Exposes Systems to Full PAP Authentication Bypass
A significant authentication flaw has been discovered in the PPP stack of OpenBSD, allowing attackers to bypass the Password Authentication Protocol (PAP) validation and gain unauthorized network access. Although this vulnerability was patched in June 2026, it originated from legacy code dating back to 1999, making it one of the longest-standing authentication bypass issues in…
-
South Korea Fines Coupang $409M Over Massive Data Breach
Investigators Found Months of Unchecked Database Scraping Activity. South Korea’s privacy regulator fined Coupang a record 624.7 billion won after concluding that weak authentication controls, insider access abuse, evidence destruction and unauthorized data collection contributed to the exposure of personal information belonging to 33.7 million people. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/south-korea-fines-coupang-409m-over-massive-data-breach-a-31985
-
Novo Nordisk Confirms Cyberattack Exposing Patient Medical Data and Internal AI Assets
Tags: access, ai, breach, cyber, cyberattack, cybersecurity, data, healthcare, intelligence, unauthorizedNovo Nordisk, the Danish pharmaceutical giant behind blockbuster weight-loss drugs Ozempic and Wegovy, has confirmed a cybersecurity breach involving unauthorized access to sensitive clinical data and internal artificial intelligence (AI) assets. The company disclosed that attackers successfully exfiltrated a limited volume of non-public information, raising concerns over data security within highly regulated healthcare and research…
-
iRhythm Discloses Data Breach After Threat Actor Claims PHI Theft
Tags: access, breach, business, cybersecurity, data, data-breach, monitoring, theft, threat, unauthorizedCardiac monitoring company iRhythm Technologies has disclosed a cybersecurity incident involving unauthorized access to data stored within certain third-party-hosted business applications. The company revealed details of the iRhythm data breach in a recent SEC filing, stating that sensitive information, including protected health information (PHI), may have been accessed and exfiltrated by a threat actor. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/irhythm-data-breach/
-
iRhythm Discloses Data Breach After Threat Actor Claims PHI Theft
Tags: access, breach, business, cybersecurity, data, data-breach, monitoring, theft, threat, unauthorizedCardiac monitoring company iRhythm Technologies has disclosed a cybersecurity incident involving unauthorized access to data stored within certain third-party-hosted business applications. The company revealed details of the iRhythm data breach in a recent SEC filing, stating that sensitive information, including protected health information (PHI), may have been accessed and exfiltrated by a threat actor. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/irhythm-data-breach/
-
Novo Nordisk Confirms Data Theft: What Attackers Took and What They Didn’t
Novo Nordisk suffered a cyberattack where clinical trial data was copied. The breach is confirmed, but no threat actor has claimed responsibility. The Danish pharmaceutical giant Novo Nordisk disclosed a cybersecurity breach that resulted in unauthorized access to internal IT systems and the theft of personal data. The company sells some of the most in-demand…
-
Palo Alto Warns of Exploitation of VPN Bypass Exploits (CVE-2026-0257) in PAN-OS Flaw
Palo Alto Networks warns that attackers are actively exploiting CVE-2026-0257, a PAN-OS flaw that lets unauthorized users bypass authentication and establish VPN connections. Palo Alto Networks has confirmed active exploitation of CVE-2026-0257, a PAN-OS authentication bypass vulnerability affecting GlobalProtect portals and gateways. Palo Alto Networks addressed the vulnerability on May 13. Two weeks later, cybersecurity firm Rapid7…
-
Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw
Tags: access, authentication, cve, exploit, flaw, network, software, threat, unauthorized, vpn, vulnerabilityPalo Alto Networks has revealed that it has observed “active exploitation” of a recently disclosed PAN-OS vulnerability by an unknown threat actor to obtain unauthorized access to GlobalProtect portals.The vulnerability in question is CVE-2026-0257 (CVSS score: 7.8), an authentication bypass flaw affecting the portal and gateway components of PAN-OS software that could be exploited by…
-
Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw
Tags: access, authentication, cve, exploit, flaw, network, software, threat, unauthorized, vpn, vulnerabilityPalo Alto Networks has revealed that it has observed “active exploitation” of a recently disclosed PAN-OS vulnerability by an unknown threat actor to obtain unauthorized access to GlobalProtect portals.The vulnerability in question is CVE-2026-0257 (CVSS score: 7.8), an authentication bypass flaw affecting the portal and gateway components of PAN-OS software that could be exploited by…
-
GitHub Introduces Automatic Controls to Prevent Malicious npm Install Scripts
GitHub has announced a major security-focused overhaul of npm with the upcoming release of npm v12, introducing stricter default controls designed to mitigate software supply chain attacks and prevent unauthorized code execution during package installation. The changes, currently available as opt-in warnings in npm version 11.16.0 and later, are expected to become the default behavior…
-
ServiceNow Flaw Exploited by Threat Actors to Access Customer Instances
A recently disclosed ServiceNow flaw has come under scrutiny after the company confirmed that unknown threat actors exploited the vulnerability to gain unauthorized access to a number of customer instances. The issue, which first gained public attention through discussions on Reddit, prompted an emergency security update after evidence emerged that attackers had successfully queried customer data. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/servicenow-flaw-exploited/
-
Meta AI Bug Exposes Over 20,000 Instagram Accounts
Meta confirms an AI tool vulnerability led to unauthorized access to Instagram accounts after a failure in email verification during password reset First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/over-20000-instagram-accounts/
-
Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It
Over the past several weeks, the cybersecurity community has been reminded how quickly frontier and agentic AI in defense networks can challenge our assumptions. When Anthropic’s Claude Mythos model was made available to a limited set of organizations as a technical preview, it was reported that an unauthorized group claimed that it had gained access…
-
Laravel CRLF Injection Flaw Could Disrupt Outbound Email Handling
A high-severity vulnerability in the Laravel framework could allow attackers to manipulate outbound email processing, potentially leading to unauthorized message delivery, data exposure, or the abuse of mail relays. The issue, tracked as CVE-2026-48019, stems from improper neutralization of CRLF (Carriage Return Line Feed) sequences in Laravel’s default email validation logic. The vulnerability is documented…
-
CISA Warns of Active Exploitation of Palo Alto Networks PAN-OS Vulnerability
Tags: access, authentication, cisa, control, cve, cyber, cybersecurity, exploit, flaw, infrastructure, network, threat, unauthorized, vpn, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert warning that threat actors are actively exploiting a critical vulnerability in Palo Alto Networks PAN-OS, tracked as CVE-2026-0257. The flaw, categorized as an authentication bypass issue, allows attackers to bypass standard security controls and establish unauthorized VPN connections, potentially granting them access…
-
Critical StrongDM Flaw Exposes Users to Authentication Token Theft and Reuse
A critical security vulnerability tracked as CVE-2026-4387 has been disclosed in StrongDM, allowing attackers to steal and reuse authentication tokens to gain unauthorized access to infrastructure. The issue, discovered by SpecterOps researcher Hope Walker, affects StrongDM desktop and CLI environments before the patched versions and poses significant risks to enterprise environments that rely on centralized…
-
Meta AI Vulnerability Allegedly Enables Instagram Password Resets
Instagram is facing scrutiny after a critical vulnerability in its Meta AI-powered support system allegedly allowed attackers to take over user accounts by abusing the password recovery process. The tool, designed to help users regain access to locked accounts, could be tricked into sending password reset codes to unauthorized individuals without proper identity verification. The…
-
Lithuania investigates theft of 600,000 state registry records by foreign actor
The Lithuanian Prosecutor General’s Office said Friday that attackers gained unauthorized access to more than 600,000 records managed by the Centre of Registers, the state agency responsible for handling property and legal entity records. First seen on therecord.media Jump to article: therecord.media/lithuania-investigates-theft-of-state-records
-
Apache CXF Flaw Exposes Systems to LDAP Injection Attacks
Apache CXF users are facing a significant security risk following the disclosure of a new vulnerability that exposes systems to LDAP injection attacks, potentially allowing unauthorized access to sensitive certificate data. The issue, tracked as CVE-2026-44930, has been classified as “important” and affects the LDAP certificate repository within the XKMS (XML Key Management Specification) service…
-
ConnectWise Automate Flaw Allows Hackers to Evade Security Controls
Tags: control, cve, cvss, cyber, flaw, hacker, monitoring, service, tool, unauthorized, update, vulnerabilityConnectWise has released a security update to address a high-severity vulnerability in its ConnectWise Automate remote monitoring and management (RMM) platform, a widely used tool for managed service providers (MSPs). The flaw, tracked as CVE-2026-9089, carries a CVSS score of 8.8 and could allow attackers to bypass integrity verification mechanisms, potentially enabling unauthorized code execution…
-
25th May Threat Intelligence Report
7-Eleven, the global convenience store chain, confirmed a breach after an unauthorized access to systems used for franchisee documents. ShinyHunters claimed responsibility and said it stole more than 600,000 Salesforce records containing personal […] First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2026/25th-may-threat-intelligence-report/
-
Italian Authorities Dismantle CINEMAGOAL App Enabling Unauthorised Access to Streaming Platforms
Italian law enforcement agencies have dismantled a sophisticated piracy operation centered around the CINEMAGOAL application, which enabled unauthorized access to premium streaming platforms including Netflix, Sky, DAZN, Disney+, and Spotify. The operation, codenamed “All Clear,” was led by the Financial Police in Ravenna under the direction of the Bologna Public Prosecutor’s Office. Authorities conducted over…