Archives: News
According to SK Telecom, over 9.32 gigabytes of USIM data have been compromised after a malware attack that remained unnoticed for almost three years.It’s reported that the attack lasted from June 15, 2022, to April 22, 2025, and targeted over 20 South Korean Telecom servers, affecting around 25 million customers. The telecommunications company has addressed the issue by employing cyber-response measures that include removing malware and compartmentalizing online infrastructure.
Read
more
In May 2025, the unified platform for identity, access, and devices, JumpCloud, acquired VaultOne – a company that develops zero-trust privileged access management (PAM) solutions.VaultOne has been providing security services for a wide range of key assets, including SaaS applications, databases, and cloud infrastructure, since 2017.
Read
more
A recent investigation by the cybersecurity platform Rapid7 uncovered a sophisticated cyberattack campaign that uses fake installers to inject Winos 4.0 malware into users’ devices.According to Rapid7’s researchers “Catena uses embedded shellcode and configuration switching logic to stage payloads like Winos 4.0 entirely in memory, evading traditional antivirus tools”. They stated that “...
Read
more
A recent report, published by Kaspersky, found that between Q2 2024 and Q1 2025, hackers carried out over 250,000 cyberattacks by disguising malware files as popular anime titles.The report says bad actors used keywords like “exclusive episodes” and “premium access” to mislead users into downloading infected files. The anime titles used as bait were primarily Attack on Titan, Naruto, and Demon Slayer.
Read
more
In May 2025, cybersecurity expert, Jeremiah Fowler, identified an unprotected database that contained over 184 million login and password credentials for popular platforms like Facebook, Google, and Microsoft.The database was unencrypted and unprotected, comprising 47.42 GB of raw plain-text data, translating into 184,162,718 credentials. According to Fowler, this data was likely extracted via an infostealer malware attack.The database showing entries from Facebook, ...
Read
more
According to the U.S. Department of Health and Human Services Office for Civil Rights portal, Ascension Health – a private healthcare firm based in Missouri – had a hacking incident that exposed the private information of 437,329 people.The breach was detected on December 5, 2024, and an investigation was launched to determine its root cause. It revealed that on January 21, 2025, Ascension shared sensitive information with a former business partner, which resulted in the theft of data. This
Read
more
A recent notice from the HR outsourcing firm, VeriSource Services, reveals that it experienced a data breach, compromising the data of over 4 million individuals.According to VeriSource, the leaked data includes names, gender, addresses, dates of birth, and Social Security numbers. After confirming the breach, the company notified all parties involved and offered identity theft protection services via IDX.
Read
more
According to a recent Microsoft blog post, the company is pushing passkeys as the authentication method for all new users.This push for passwordless logins is an effort to address the evolution of the digital world, which is more dangerous than ever. The blog post reads:
Read
more
The cybercriminal group Rhysida ransomware claims to have hacked into Peruvian government systems and is demanding hundreds of thousands of dollars to release the stolen data.The ransomware gang published multiple allegedly official governmental documents on its official dark web blog. The Peruvian government confirmed issues with its website but denied any evidence of a cyberattack, stating that maintenance caused the downtime.
Read
more
In April 2025, Oligo Security Research, a cybersecurity company, published a research paper that confirmed the existence of vulnerabilities within Apple’s AirPlay Protocol and the AirPlay Software Development Kit (SDK).The vulnerabilities, named Airborne, allow bad actors to exploit multiple attack vectors, including Remote Code Execution (RCE), Man-in-the-middle (MITM) attacks, and Denial of Service (DoS). In the meantime, Apple released an update to address these issues and urged its users to update ...
Read
more