Krispy Kreme Data Breach Puts Employees at Risk of Financial Fraud
Doughnut maker Krispy Kreme has revealed that sensitive financial and personal data of over 160,000 individuals has been impacted following a November 2024 cyber incident
Information Security Magazine
UBS Employee Data Reportedly Exposed in Third Party Attack
5 months 2 weeks ago
Banking giant UBS revealed it had suffered a data breach following a cyber-attack on procurement service provider Chain IQ
Researchers Warn of 'Living off AI' Attacks After PoC Exploits Atlassian's AI Agent Protocol
5 months 2 weeks ago
Cato Networks researchers demonstrated an attack leveraging Atlassian’s AI agent-enabling server
Alleged Ryuk Initial Access Broker Extradited to the US
5 months 2 weeks ago
An alleged former member of the infamous Ryuk ransomware group has been extradited to the US
Israeli Hacktivists Steal and Burn $90m+ from Iranian Crypo Biz
5 months 2 weeks ago
Pro-Israel Predatory Sparrow Group steals $90m in crypto from Iranian exchange Nobitex
Critical Linux Flaws Discovered Allowing Root Access Exploits
5 months 2 weeks ago
Two critical Linux flaws allow unprivileged users to gain root access, affecting major distributions
AI Now Generates Majority of Spam and Malicious Emails
5 months 2 weeks ago
Barracuda observed a big spike in spam emails generated using AI tools, making up the majority detected in April 2025
GodFather Malware Upgraded to Hijack Legitimate Mobile Apps
5 months 2 weeks ago
Upgraded GodFather banking malware now uses on-device virtualization to hijack apps, enabling real-time fraud
ClickFix Helps Infostealers Use MHSTA for Defense Evasion
5 months 2 weeks ago
ClickFix techniques are enabling threat actors to bypass defenses using tools like MSHTA, says ReliaQuest
UK Government Publishes Plan to Boost Cyber Sector Growth
5 months 2 weeks ago
The new Cyber Growth Action Plan aims to support the UK’s cyber industry, including the development of innovative new technologies and startups
Ransomware Group Qilin Offers Legal Counsel to Affiliates
5 months 2 weeks ago
The group positions itself “not just as a ransomware group, but as a full-service cybercrime platform”, according to Cybereason
Paddle Pays $5m to Settle Tech Support Scam Allegations
5 months 2 weeks ago
Payment processor Paddle has agreed to settle with the FTC over allegations related to tech support scams
Hacklink Marketplace Fuels Surge in Covert SEO Poisoning Attacks
5 months 2 weeks ago
New SEO poisoning attacks identified, using Hacklink to hijack search rankings and inject malicious links into sites
UK ICO Fines 23andMe £2.3m for Data Protection Failings
5 months 2 weeks ago
23andMe has been fined over £2m by the UK ICO for failing to adequately protect genetic data
Taiwan Hit by Sophisticated Phishing Campaign
5 months 2 weeks ago
Phishing campaign targeting Taiwan has been identified, using tax-themed emails and malware like Winos and HoldingHands
Chained Flaws in Enterprise CMS Provider Sitecore Could Allow Remote Code Execution
5 months 2 weeks ago
WatchTowr has found three vulnerabilities in the Sitecore Experience Platform, used by HSBC and L’Oréal
Microsoft Promises to Keep European Cloud Data in Europe
5 months 2 weeks ago
Microsoft’s Sovereign Cloud solutions are designed to ensure European cloud data is stored and processed in Europe
Brits Lose £106m to Romance Fraud in a Year
5 months 2 weeks ago
New City of London Police data reveals British men and women lost over £100m to romance fraudsters in 2024
Threat Actors Target Victims with HijackLoader and DeerStealer
5 months 2 weeks ago
Cyber-attacks using HijackLoader and DeerStealer have been identified exploiting phishing tactics via ClickFix
Archetyp Market Shut Down in Europe-wide Law Enforcement Operation
5 months 2 weeks ago
Operation DEEP Sentinel has shut down Archetyp Market, the longest-running dark web drug marketplace
Checked
54 minutes 21 seconds ago