The University of Phoenix has confirmed a major cybersecurity incident that exposed the financial and personal information of nearly 3.5 million current and former students, employees, faculty members, and suppliers. The breach is believed to be linked to the…
Category: EN
Romanian Water Authority Hit by BitLocker Ransomware, 1,000 Systems Disrupted
Romanian Waters, the country’s national water management authority, was targeted by a significant ransomware attack over the weekend, affecting approximately 1,000 computer systems across its headquarters and 10 of its 11 regional offices. The breach disrupted servers running geographic…
New US Proposal Allows Users to Sue AI Companies Over Unauthorised Data Use
US AI developers would be subject to data privacy obligations applicable in federal court under a wide legislative proposal disclosed recently by the US senate Marsha Blackburn, R-Tenn. About the proposal Beside this, the proposal will create a federal right…
France Probes AI Undressing Deepfakes
French authorities have launched an investigation into sexually explicit deepfakes created using the Grok AI tool on the social media platform X. This article has been indexed from CyberMaterial Read the original article: France Probes AI Undressing Deepfakes
NYC Wegmans Stores Facial Scan Data
Wegmans has introduced biometric surveillance signs in its Brooklyn and Manhattan locations, notifying customers that facial scans and other identifying data are being collected for security purposes. This article has been indexed from CyberMaterial Read the original article: NYC Wegmans…
Tool Review: Tailsnitch, (Tue, Jan 6th)
In yesterday's podcast, I mentioned “tailsnitch”, a new tool to audit Tailscale configurations. Tailscale is an easy-to-use overlay to Wireguard. It is probably best compared to STUN servers in VoIP in that it allows devices behind NAT to connect directly…
Critical AdonisJS Vulnerability Allows Remote Attackers to Write Files on Server
A critical path traversal vulnerability has been discovered in AdonisJS’s multipart file handling, potentially allowing remote attackers to write arbitrary files to server locations outside the intended upload directory. The vulnerability, tracked as CVE-2026-21440, affects @adonisjs/bodyparser versions through 10.1.1 and…
New n8n Vulnerability Allows Attackers to Execute Arbitrary Commands
A critical vulnerability has been discovered in n8n, an open-source automation and workflow platform, that could allow authenticated users to execute arbitrary commands on vulnerable systems. The flaw, tracked as CVE-2025-68668, affects all n8n versions from 1.0.0 to 1.999.999 and…
Threat Actors Exploit Office Assistant to Deliver Malicious Mltab Browser Plugin
A sophisticated malware campaign has been discovered exploiting Office Assistant, a widely used AI-powered productivity software in China, to distribute a malicious browser plugin that hijacks user traffic and exfiltrates sensitive information. The RedDrip Team from QiAnXin Technology’s Threat Intelligence…
Copilot, Recall, and Other AI Tools Can Be Removed from Windows 11 with New Tool
A new community tool is giving Windows 11 users far more control over Microsoft’s growing stack of AI features. An open‑source project called RemoveWindowsAI now lets administrators and power users disable or strip out components such as Copilot, Recall, and other AI…
CloudEyE MaaS Downloader and Cryptor Infects Over 100,000 Users Globally
ESET Research has uncovered a significant surge in CloudEye malware detections, with a 30-fold increase in the second half of 2025. The security firm detected more than 100,000 infection attempts over the six months, signaling a widespread threat affecting organizations…
Fake Windows BSODs check in at Europe’s hotels to con staff into running malware
Phishers posing as Booking.com use panic-inducing blue screens to bypass security controls Russia-linked hackers are sneaking malware into European hotels and other hospitality outfits by tricking staff into installing it themselves through fake Windows Blue Screen of Death (BSOD) crashes.……
Researchers Trap Scattered Lapsus$ Hunters in Honeypot
Using fake accounts and synthetic data to lure the hackers, the researchers gathered information on their servers. The post Researchers Trap Scattered Lapsus$ Hunters in Honeypot appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Turning AI Risk Awareness Into Robust AI Governance | Kovrr
Articles related to cyber risk quantification, cyber risk management, and cyber resilience. The post Turning AI Risk Awareness Into Robust AI Governance | Kovrr appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read the original…
Cloud File Sharing Sites Targeted For Theft
AI-powered coding tools like Cursor and Trae are vulnerable to supply chain attacks because they recommend extensions that do not exist on the Open VSX registry. This article has been indexed from CyberMaterial Read the original article: Cloud File Sharing…
NordVPN Denies Breach After Data Leak
The incident began when a hacker posted on a cybercrime forum claiming to have compromised a development server containing sensitive internal data. This article has been indexed from CyberMaterial Read the original article: NordVPN Denies Breach After Data Leak
Brightspeed Probes Possible Cyberattack
Brightspeed is currently looking into reports of a data breach following claims from a hacking group known as Crimson Collective regarding the theft of customer records. This article has been indexed from CyberMaterial Read the original article: Brightspeed Probes Possible…
Ledger Customers Hit By Global E Breach
Ledger recently notified customers that their personal information was leaked following a security breach at Global-e, a third-party payment processor used for transactions on Ledger’s website. This article has been indexed from CyberMaterial Read the original article: Ledger Customers Hit…
Bitfinex Hack Perpetrator Freed Early
Ilya Lichtenstein was originally sentenced to five years in prison for orchestrating a massive money laundering conspiracy following the theft of nearly 120,000 bitcoin. This article has been indexed from CyberMaterial Read the original article: Bitfinex Hack Perpetrator Freed Early
Resecurity Went on the Cyber Offensive – When ‘Shiny Objects’ trick ‘Shiny Hunters’
Resecurity released 105 pages with 1,000+ messages tied to hacker John Erin Binns, detailing contacts with an unnamed woman in Turkey and an associate called “S.M.” Resecurity released 105 pages containing over 1,000 messages related to John Erin Binns, a…