The U.S. Equal Employment Opportunity Commission has disclosed that it was affected by a data security incident involving a third-party contractor, after improper access to an internal system raised concerns about the handling of sensitive public information. The agency…
Tag: EN
Database of 323,986 BreachForums Users Leaked as Admin Disputes Scope
Database of 323,986 BreachForums users leaked online as forum admins claim the exposed data is partial and dates back to August 2025. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and More Read the original…
Massive Instagram Data Breach Exposes Personal Details of 17.5 Million Users
A staggering cybersecurity incident has come to light, with 17.5 million Instagram users’ personal information exposed in a data breach advertised on dark web marketplaces. Cybersecurity firm Malwarebytes first alerted the public via X (formerly Twitter), confirming the leak’s severity…
Leveraging OSINT Tools for Enhanced Cybersecurity Threat Intelligence
Open Source Intelligence (OSINT) has become a cornerstone of cybersecurity threat intelligence. In today’s digital landscape, organizations face a constant barrage of cyber threats, ranging from data breaches and phishing attacks to sophisticated nation-state operations. To stay ahead of these…
North Korea–linked APT Kimsuky behind quishing attacks, FBI warns
FBI warns that North Korea–linked APT group Kimsuky is targeting governments, think tanks, and academic institutions with quishing attacks. North Korea–linked APT group Kimsuky is targeting government agencies, academic institutions, and think tanks using spear-phishing emails that contain malicious QR…
France Postal and Banking Services Disrupted by Suspected DDoS Cyberattack
France’s national postal and banking services faced major disruption following a suspected distributed denial-of-service (DDoS) attack that affected key digital systems. La Poste, the country’s postal service, described the incident as a significant network issue that impacted all of…
Salesforce Pulls Back from AI LLMs Citing Reliability Issues
Salesforce, a famous enterprise software company, is withdrawing from its heavy dependence on large language models (LLMs) after facing reliability issues that the executive didn’t like. The company believes that trust in AI LLMs has declined in the past year,…
US Shuts Down Web3AdspAnels Platform Used in Large-Scale Bank Account Cyber Thefts
US authorities have taken down an online platform allegedly used by cybercriminals to gain unauthorized access to Americans’ bank accounts. Visitors attempting to access web3adspanels.org are now met with a law enforcement seizure notice. Investigators say the site played…
Amazon Thwarts 1,800+ North Korean Job Scams with AI and Tiny Clues
Amazon’s chief security officer, Stephen Schmidt, revealed how the company blocked over 1,800 suspected North Korean operatives from securing remote IT jobs since April 2024. These agents aimed to funnel salaries back to Pyongyang’s weapons programs, bypassing sanctions through…
CISA Urges Emergency Patching for Actively Exploited HPE OneView Flaw
CISA adds a critical HPE OneView flaw (CVE-2025-37164) to its KEV catalogue with a Jan 28 deadline. Learn how this 10.0 RCE bug puts server infrastructure at risk. This article has been indexed from Hackread – Cybersecurity News, Data Breaches,…
ICE Can Now Spy on Every Phone in Your Neighborhood
Plus: Iran shuts down its internet amid sweeping protests, an alleged scam boss gets extradited to China, and more. This article has been indexed from Security Latest Read the original article: ICE Can Now Spy on Every Phone in Your…
BreachForums (2025) – 324,449 breached accounts
In October 2025, a reincarnation of the hacking forum BreachForums, which had previously been shut down multiple times, was taken offline by a coalition of law enforcement agencies. In the months leading up to the takedown, the site itself suffered…
Data Breach at Texas Gas Station Operator Exposes Info of 377,000+ Customers
A cybersecurity incident at Gulshan Management Services, Inc., a gas station operator based in Sugar Land, Texas, has compromised the personal information of over 377,000 customers. The breach, discovered on September 27, 2025, exposed sensitive data over 10 days from…
Security News This Week: ICE Can Now Spy on Every Phone in Your Neighborhood
Plus: Iran shuts down its internet amid sweeping protests, an alleged scam boss gets extradited to China, and more. This article has been indexed from Security Latest Read the original article: Security News This Week: ICE Can Now Spy on…
What is Application Security Testing? Detail Explanation
Your organization, the industrial domain you survive on, and almost everything you deal with rely on software applications. Be it banking portals, healthcare systems, or any other, securing those applications is paramount. Application Security Testing is the process of making…
AI Experiment Raises Questions After System Attempts to Alert Federal Authorities
An ongoing internal experiment involving an artificial intelligence system has surfaced growing concerns about how autonomous AI behaves when placed in real-world business scenarios. The test involved an AI model being assigned full responsibility for operating a small vending…
WhatsApp-Based Worm Drives Rapid Expansion of Astaroth Malware in Brazil
After being exposed to a new and more aggressive distribution campaign involving the Astaroth banking trojan, which is a long-standing malware strain known for targeting financial users in the country, the cyber threat landscape in Brazil is once again coming…
New Shai Hulud Malware Variant Turns Developers Into Supply Chain Attack Vectors, Expel Warns
A newly released report from managed detection and response firm Expel Inc. reveals an advanced variant of the Shai Hulud malware, highlighting how software supply chain attacks are moving beyond isolated malicious packages to large-scale, self-spreading campaigns that exploit…
MuddyWater Launches RustyWater RAT via Spear-Phishing Across Middle East Sectors
The Iranian threat actor known as MuddyWater has been attributed to a spear-phishing campaign targeting diplomatic, maritime, financial, and telecom entities in the Middle East with a Rust-based implant codenamed RustyWater. “The campaign uses icon spoofing and malicious Word documents…
UK government exempting itself from flagship cyber law inspires little confidence
Ministers promise equivalent standards just without the legal obligation ANALYSIS From May’s cyberattack on the Legal Aid Agency to the Foreign Office breach months later, cyber incidents have become increasingly common in UK government.… This article has been indexed from…