Unsecured database: An unsecured database, reportedly belonging to the billing platform Invoicely, was found to be exposed. PII leaked: The database contained nearly 180,000 files,…
ClayRat Spyware Campaign Targets Android Users via Telegram and Fake WhatsApp, TikTok, YouTube Sites
Primary target: A rapidly evolving Android spyware campaign, named ClayRat, is primarily targeting users in Russia. Distribution method: The spyware is distributed through Telegram channels…
Incident Rate: A third of organizations reported experiencing at least one API security incident within the past 12 months. Persistent visibility gaps: A substantial 80%…
FBI investigation: The FBI's Washington field office is investigating alleged infiltrations of prominent U.S. law firms by Chinese hackers. Williams & Connolly breach: The law…
Widespread incidents: Three-quarters of organizations have experienced at least one data security incident related to AI use. Adoption delays: Data security concerns and inaccurate outputs…
Automation lags: Despite high-velocity deployments, almost half of companies still rely on manual processes for including new code in security testing queues. Excessive noise: Over…
Persistent gap: Lack of cybersecurity awareness and skills remains a top breach cause, highlighting a persistent talent and training deficit. AI's dual role: While half…
Arrests made: Two have been arrested on suspicion of computer misuse and blackmail in connection with the Kido nursery ransomware attack. Ransomware attack: The hackers,…
Industry United: Over 40 European tech firms urge rejection of EU’s Child Sexual Abuse Regulation bill. Encryption Risk: Companies warn mandatory chat scanning could weaken…
Major Upgrade: Surfshark launches 100Gbps VPN servers, a tenfold boost over the existing 10Gbps standard. User Benefits: Enhances streaming, gaming, and video calls with faster,…
Critical flaw: A remote code execution (RCE) vulnerability in Redis, dubbed RediShell (CVE-2025-49844), has been disclosed with a CVSS score of 10.0. Attack vector: The…
Primary distribution hubs: The RIAA's latest report identifies Telegram and Discord as primary mechanisms for distributing unauthorized pre-release music. Organized piracy: The report alleges that…
Fraudulent emails: Fake emails from Western Sydney University claimed to revoke degrees or exclude students from study. System vulnerability: A second batch, apparently sent from…
Cybersecurity incident: The sensitive data of up to 3,000 flood victims in Australia was exposed online. What happened: A former contractor for the NSW government…
Next-Gen Security: Windscribe launches Post-Quantum Encryption to safeguard VPN connections from quantum decryption risks. Technical Upgrade: Uses TLS 1.3 with hybrid X25519MLKEM768 key exchange for…
Frédéric Malagoli — Eight Advisory Eight Advisory has appointed Frédéric Malagoli as a Partner in its Finance Transformation team in Paris, tasking him with establishing…
Unsecured database: A publicly exposed database containing 158 GB of data, allegedly belonging to Rainwalk Technology, was discovered. Sensitive data exposed: Over 85,000 files included…
Production restart: Asahi Breweries has restarted production at its six Japanese plants after a cyberattack caused a week-long operational suspension. Operational impact: Core functions, including…
Breach frequency: A third of organizations with AI workloads have already experienced an AI-related data breach. Top risk identified: Over half of organizations identified insecure…
Threat announcement: Crimson Collective declared October 5, 2025, as a “National Cybercrime Day,” signaling a potential large-scale, coordinated attack. Initial target claim: The announcement was…
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
