Cyber Alerts
- Harrods the next UK retailer targeted in a cyberattack May 1, 2025London's iconic department store, Harrods, has confirmed it was targeted in a cyberattack, becoming the
- Hackers ramp up scans for leaked Git tokens and secrets April 29, 2025Threat actors are intensifying internet-wide scanning for Git configuration files that can reveal sensitive secrets and authentication tokens
- Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw April 28, 2025Over 1,200 internet-exposed SAP NetWeaver instances are vulnerable to an actively exploited maximum severity unauthenticated file
- Marks & Spencer breach linked to Scattered Spider ransomware attack April 28, 2025Ongoing outages at British retail giant Marks & Spencer are caused by a ransomware attack believed to be conducted by
- Hitachi Vantara takes servers offline after Akira ransomware attack April 28, 2025Hitachi Vantara, a subsidiary of Japanese multinational conglomerate Hitachi, was forced to take servers offline over
- CVE fallout: The splintering of the standard vulnerability tracking system has begun April 28, 2025MITRE, EUVD, GCVE … WTF? Comment The splintering of the global system for identifying and tracking
- Coinbase fixes 2FA log error making people think they were hacked April 27, 2025Coinbase has fixed a confusing bug in its account activity logs that caused users to think their credentials were compromised
- Cloudflare mitigates record number of DDoS attacks in 2025 April 27, 2025Internet services giant Cloudflare says it mitigated a record number of DDoS attacks in 2024, recording a massive 358
- WooCommerce admins targeted by fake security patches that hijack sites April 25, 2025A large-scale phishing campaign targets WooCommerce users with a fake security alert urging them to download a
- NFC-Powered Android Malware Enables Instant Cash-Outs April 24, 2025Researchers at security vendor Cleafy detailed a malware known as "SuperCard X" that uses the NFC reader on
- Hackers abuse Zoom remote control feature for crypto-theft attacks April 22, 2025A hacking group dubbed 'Elusive Comet' targets cryptocurrency users in social engineering attacks that exploit Zoom's
- ASUS Urges Users to Patch AiCloud Router Vuln Immediately April 21, 2025The vulnerability is only found in the vendor's router series and can be triggered by an attacker using
- Widespread Microsoft Entra lockouts tied to new security feature rollout April 19, 2025Windows administrators from numerous organizations report widespread account lockouts triggered by false positives in the rollout of a new Microsoft
- State-sponsored hackers embrace ClickFix social engineering tactic April 19, 2025ClickFix attacks are being increasingly adopted by threat actors of all levels, with researchers now seeing multiple advanced persistent
- New Android malware steals your credit cards for NFC relay attacks April 18, 2025A new malware-as-a-service (MaaS) platform named 'SuperCard X' has emerged
- FBI: Scammers pose as FBI IC3 employees to 'help' recover lost funds April 18, 2025The FBI warns that scammers posing as FBI IC3 employees are offering to "help" fraud victims recover
- Critical Erlang/OTP SSH RCE bug now has public exploits, patch now April 18, 2025Public exploits are now available for a critical Erlang/OTP SSH vulnerability tracked as CVE-2025-32433
- SonicWall SMA VPN devices targeted in attacks since January April 17, 2025A remote code execution vulnerability affecting SonicWall Secure Mobile Access (SMA) appliances has been under active exploitation since
- Over 16,000 Fortinet devices compromised with symlink backdoor April 16, 2025Over 16,000 internet-exposed Fortinet devices have been detected as compromised with a new symlink backdoor that
- AI-Powered Presentation Tool Leveraged in Phishing Attacks April 15, 2025Researchers at Abnormal Security said threat actors are using a legitimate presentation and graphic design tool named "Gamma"