The company is one of the many victims of the 2025 Oracle E-Business Suite (EBS) hacking campaign. The post Madison Square Garden Data Breach Confirmed Months After Hacker Attack appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Tag: EN
⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More
This week is not about one big event. It shows where things are moving. Network systems, cloud setups, AI tools, and common apps are all being pushed in different ways. Small gaps in access control, exposed keys, and normal features…
Europol Nets 30 in “The Com” Crackdown
Europol’s Project Compass recently dismantled a portion of the cybercrime network known as The Com, resulting in 30 arrests and the identification of 62 victims. This article has been indexed from CyberMaterial Read the original article: Europol Nets 30 in…
Hackers Target Iranian Apps, Sites After Strikes
Cybersecurity experts reported a series of digital strikes targeting Iran on Saturday that coincided with military actions by the United States and Israel. This article has been indexed from CyberMaterial Read the original article: Hackers Target Iranian Apps, Sites After…
“OnlyFake” Creator Pleads Guilty
The United States Attorney for the Southern District of New York and the FBI have announced the guilty plea of Ukrainian national Yurii Nazarenko for operating OnlyFake, a website specializing in the creation of digital fake identification documents. This article…
TPMS Flaw in Toyota, Mercedes, and Other Major Brands Enables Covert Vehicle Tracking
Tire pressure monitoring systems (TPMS) in popular brands like Toyota, Mercedes, and many others quietly broadcast radio signals that can be turned into a powerful vehicle‑tracking tool. New research shows that these routine safety messages can be harvested at scale,…
MSHTML Zero-Day in Windows Exploited by APT28 Prior to Feb 2026 Security Update
Microsoft released its Patch Tuesday updates, addressing 59 vulnerabilities, including a critical zero-day flaw in the Windows MSHTML framework. Tracked as CVE-2026-21513, this actively exploited vulnerability allows attackers to bypass security features and execute arbitrary code. APT28 is a well-documented…
APT37 combines cloud storage and USB implants to infiltrate air-gapped systems
North Korea-linked APT 37 used Zoho WorkDrive and USB malware to breach air-gapped networks in the Ruby Jumper campaign. North Korean group ScarCruft (aka APT37, Reaper, and Group123) deployed new tools in a campaign dubbed Ruby Jumper, using a backdoor that…
OCRFix Botnet Trojan Leveraging ClickFix Phishing and EtherHiding to Conceal Blockchain-Based Command Infrastructure
A newly identified botnet trojan campaign, dubbed OCRFix, has been discovered combining social engineering tricks with blockchain-based command infrastructure to quietly build a network of compromised machines. The campaign blends the well-known ClickFix phishing technique with EtherHiding — a method…
Hackers Attacking SonicWall Firewalls from 4,000+ unique IP Addresses to Exploit Vulnerabilities
A large-scale reconnaissance campaign is actively targeting SonicWall firewalls across the internet, with attackers using more than 4,000 unique IP addresses to map vulnerable devices before launching exploitation attempts. Between February 22 and February 25, 2026, threat actors generated 84,142…
Enterprise Passwordless Authentication for Retail Brands
Retailers face unique authentication challenges impacting revenue, fraud, and customer experience. Learn how passwordless authentication can improve security, reduce friction, and scale for omnichannel. The post Enterprise Passwordless Authentication for Retail Brands appeared first on Security Boulevard. This article has…
PCI-Compliant Authentication for Retail Enterprises
Retailers, fortify your defenses! Learn how PCI-compliant authentication protects customer data, prevents fraud, and avoids costly penalties. Click for expert strategies! The post PCI-Compliant Authentication for Retail Enterprises appeared first on Security Boulevard. This article has been indexed from Security…
NetQuest launches NetworkLens for hyperscale AI threat detection
NetQuest has announced NetQuest NetworkLens, a new portfolio of hyperscale real-time network intelligence datasets engineered to power AI-driven cyber threat detection and advanced security analytics. As cyber defense increasingly relies on machine learning, behavioral detection, and data pipelines, the network…
Microsoft Warns RAT via Fake Gaming Utilities
Hackers are tricking gamers into downloading infected utilities through chat apps and browsers to secretly install a remote access trojan on their systems. This article has been indexed from CyberMaterial Read the original article: Microsoft Warns RAT via Fake Gaming…
ClawJacked Flaw Exposes OpenClaw Users
A security flaw known as ClawJacked allowed malicious websites to hijack local OpenClaw AI agents to facilitate silent data extraction. This article has been indexed from CyberMaterial Read the original article: ClawJacked Flaw Exposes OpenClaw Users
Canadian Tire Breach Hits 38M Accounts
Canadian Tire recently experienced a significant security incident involving an unauthorized intrusion into its e-commerce database during October 2025. This article has been indexed from CyberMaterial Read the original article: Canadian Tire Breach Hits 38M Accounts
UH Cyber Hack Exposes 1.15M SSNs
The University of Hawaiʻi Cancer Center recently disclosed that a ransomware attack exposed the Social Security numbers of approximately 1.15 million individuals. This article has been indexed from CyberMaterial Read the original article: UH Cyber Hack Exposes 1.15M SSNs
Hackers Steal 15M French Medical Records
Following a major breach of bank account details, a massive medical data hack in France has exposed the sensitive information of millions of citizens, including high-profile politicians. This article has been indexed from CyberMaterial Read the original article: Hackers Steal…
How Microsoft, partners are tackling ‘huge, huge task’ of making security software safer
The technology giant and third-party security vendors are plotting an ambitious overhaul of how their products interoperate. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: How Microsoft, partners are tackling ‘huge, huge task’…
UXSS Vulnerability in DuckDuckGo Browser’s AutoConsent JS Bridge Allows Cross-Origin Attacks
A critical vulnerability was recently discovered in the DuckDuckGo browser for Android, exposing users to Universal Cross-Site Scripting (UXSS) attacks. This flaw, found in the browser’s AutoConsent JS bridge, allows malicious code from an untrusted source to run on a…