Latest Cybersecurity Stories

Read the handpicked cybersecurity stories. Know more about the ransomware incidents, data theft, and other cyber attacks affecting organizations worldwide.

The current page lists all the cybersecurity incidents and happenings for the current week.

.
Cybersecurity Headlines for 11 December 2024
Lynx ransomware behind Electrica energy supplier cyberattack
Three more vulns spotted in Ivanti CSA, all critical, one 10/10
Online ordering at Krispy Kreme disrupted by cyberattack
Dozens of popular DDoS sites raided ahead of potential Christmas attacks
Russia claims to bust global scam network linked to Georgian ex-defense minister
Chinese EagleMsgSpy Spyware Found Exploiting Mobile Devices Since 2017
Breach of booking giant Sabre exposes tens of thousands
Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
BadRAM: $10 security flaw in AMD could allow hackers to access cloud computing secrets
French internet operator fined $53 million for unsolicited ads and tracking users without consent
U.S. Charges Chinese Hacker for Exploiting Zero-Day in 81,000 Sophos Firewalls
Chrome Security Update, Patch for 3 High-severity Vulnerabilities
FTC distributes $72 million in Fortnite refunds from Epic Games
Ivanti warns of maximum severity CSA auth bypass vulnerability
Microsoft Fixes 72 Flaws, Including Patch for Actively Exploited CLFS Vulnerability
Cybersecurity Headlines for 10 December 2024
Maynooth University in Ireland fined €40,000 over GDPR breach
Microsoft 365 outage takes down Office web apps, admin center
Cloudflare: 6.5% of global traffic, 4.3% of emails potentially malicious
Researchers bypass iPhone security controls to access sensitive data
US subsidiaries of Japanese water treatment company, green tea maker hit with ransomware
Russia disrupts internet access in multiple regions to test ‘sovereign internet’
US pushes to remove Chinese telco equipment from its networks
Mauri Ransomware Exploiting Apache ActiveMQ Vulnerability
Cybercrime gang arrested after turning Airbnbs into fraud centers
Radiant links $50 million crypto heist to North Korean hackers
Ransomware attack hits leading heart surgery device maker
Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering
.

Cybersecurity Headlines for 9 December 2024

Russian hacktivists increasingly attacking US water and energy, researchers warn
Suspected Russian hackers target Ukrainian defense enterprises in new espionage campaign
Key electricity distributor in Romania warns of ‘cyber attack in progress’
API Attacks Surge 3000%: Why Cybersecurity Needs to Evolve in 2025
Ultralytics AI Library with 60M Downloads Compromised for Cryptomining
Eight Suspected Phishers Arrested in Belgium, Netherlands
Blue Yonder Probing Data Theft Claims After Ransomware Gang Takes Credit for Attack
Deloitte Data Breach: Company Denies The Breach Says, “Only Single Client System Affected”
Senators say US military is failing to secure its phones from foreign spies
Russia’s FSB used spyware against a Russian programmer
Cyberattacks on Indian Government Jump 138% in Four Years
US alleges China hacked calls of ‘very senior’ political figures, official says
Hoboken opens call center after ransomware attack as security concerns emerge
Ransomware risk rises during holidays, warns Semperis
Pirated corporate software infects Russian businesses with info-stealing malware
Blue Yonder says some customers restored as ransomware gang boasts of attack
.
Cybersecurity Headlines for 6 December 2024
US hospital reveals Christmas breach that exposed hundreds of thousands
Romania annuls presidential election over alleged Russian interference
Russian users report Gazprombank outages amid alleged Ukrainian cyberattack
US org with ‘significant presence in China’ targeted by hackers, Symantec says
Microsoft: Another Chinese cyberspy crew targeting US critical orgs ‘as of yesterday’
Hundred of CISCO switches impacted by bootloader flaw
Major USAID contractor Chemonics says 263,000 affected by 2023 data breach
OpenAI releases new subscription tier for $200 a month
Windows zero-day: attackers can steal NTLM credentials with little user interaction
Nebraska Man pleads guilty to $3.5 million cryptojacking scheme
Romania’s election systems targeted in over 85,000 cyberattacks
Cybersecurity Headlines for 5 December 2024
Russian state hackers hijacked rival servers to spy on targets in India, Afghanistan
Researchers Uncover 4-Month Cyberattack on U.S. Firm Linked to Chinese Hackers
Ransomware hackers target NHS hospitals with new cyberattacks
Single cyberattack impacted three Liverpool hospitals
Blue Yonder moves closer to full recovery after November ransomware attack
Ransomware gang claims Deloitte UK
No one is safe from Pegasus: spyware detected on ordinary people’s phones
CISA Adds Three Critical Vulnerabilities to KEV Catalog: Immediate Action Urged
At least 8 US telcos, dozens of countries impacted by Salt Typhoon breaches, White House says
ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan
UK disrupts Russian money laundering networks used by ransomware
Russian hackers hijack Pakistani hackers’ servers for their own attacks
BT unit took servers offline after Black Basta ransomware breach
.
Cybersecurity Headlines for 4 December 2024
CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks
Alder Hey Children’s Hospital confirms hackers gained access to patient data through digital gateway service
GoodRx Agrees to $25 Million Settlement to Resolve Tracking Technology Lawsuit
Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability
Russian money laundering networks uncovered linking narco traffickers, ransomware gangs and Kremlin spies
Failure to Terminate Access Rights Results in $1.19 Million HIPAA Fine
Failure to Terminate Access Rights Results in $1.19 Million HIPAA Fine
XSS vulnerability in Solar Winds Platform
FBI Tells Telecom Firms to Boost Security Following Wide-Ranging Chinese Hacking Campaign
New EU Regulation Establishes European ‘Cybersecurity Shield’
Google Chrome Type Confusion Vulnerability Let Attackers Execute Remote Code
Storm-1811 Hackers Exploits RMM Tools to Deliver Black Basta Ransomware
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console
Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks
Cloudflare’s developer domains increasingly abused by threat actors
Vodka maker Stoli files for bankruptcy in US after ransomware attack
Cybersecurity Headlines for 3 December 2024
Police seizes largest German online crime marketplace, arrests admin
Police seize Matrix encrypted chat service after spying on criminals
FTC bans data brokers from selling Americans’ sensitive location data
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
Energy industry contractor says ransomware attack has limited access to IT systems
Japanese crypto service shuts down after theft of bitcoin worth $308 million
UK cyber chief warns country is ‘widely underestimating’ risks from cyberattacks
Indian Restaurant Reservation Platform EazyDiner Hit by Cyber Attack
Korea arrests CEO for adding DDoS feature to satellite receivers
Russia sentences Hydra dark web market leader to life in prison
.

Cybersecurity Headlines for 2 December 2024

Clipper DEX Hit by Cyberattack: Exploit Targets Withdrawal Functionality
Microsoft Unveils Windows Resiliency Initiative To Prevent Phishing Attacks
Hackers Drain $1.48 Billion from Crypto in 2024, Led by DeFi Exploits
Costa Rica state energy company calls in US experts to help with ransomware attack
INTERPOL Arrests 5,500 in Global Cybercrime Crackdown, Seizes Over $400 Million
Novel phising campaign uses corrupted Word documents to evade security
SpyLoan Android malware on Google play installed 8 million times
IBM Security Verify Vulnerabilities Let Attackers Execute Arbitrary Commands
Linux Kernel 6.13 Released – Avoiding Holiday Season Clash
AI-Powered Fake News Campaign Targets Western Support for Ukraine and U.S. Elections
Russia arrests cybercriminal Wazawaka for ties with ransomware gangs
Uganda confirms cyberattack on central bank but minimizes extent of breach
Italian football club Bologna FC says company data stolen during ransomware attack
.