Recent investigations reveal an escalating malware campaign targeting network-attached storage (NAS) devices operating on Linux systems. The attacks exploit widely reported vulnerabilities, co-opting these devices into an Internet Relay Chat (IRC) botnet for the purposes of launching distributed denial-of-service (DDoS)…
The Everest ransomware group has recently made claims regarding a significant breach involving ASUS, one of the largest global hardware and electronics manufacturers. In a post on their dark web leak site, the group asserts they possess over 1TB of…
MongoDB Unveils Enhanced Security Features at Developer Conference In a recent developer conference held in New York, MongoDB announced the upcoming release of its database management software, MongoDB 4.2, which will introduce several advanced features, most notably Field Level Encryption…
Artificial Intelligence & Machine Learning, Cybercrime, Fraud Management & Cybercrime Chinese Developer Linked to Coupang Data Breach Investigation Mathew J. Schwartz (euroinfosec) • December 2, 2025 Image: Shutterstock South Korea’s leading e-commerce platform, Coupang, has reported a substantial data breach…
AT&T Reaches Settlement in Major Data Breach Case In a significant development for consumers, AT&T has announced the finalization of its settlement related to a series of data breaches that affected its customers. This settlement, which totals up to $177…
In a recent advisory, cybersecurity and intelligence agencies from the United States and allied nations have alerted users of Ubiquiti EdgeRouters to strengthen their security measures. This advisory follows the disruption of a botnet named MooBot, which consisted of compromised…
Cybersecurity analysts have recently identified a new malware strain dubbed “Raindrop” as part of the SolarWinds supply chain attack, a significant breach that was uncovered late last year. This fourth strain adds to the existing suite of malicious tools, including…
The Information Commissioner’s Office (ICO) of the UK has levied a groundbreaking fine of £183 million against British Airways for insufficient data protection in a substantial security breach that compromised the personal information of approximately half a million customers. This…
Endpoint Security, Governance & Risk Management, Internet of Things Security Hackers Could Manipulate Settings of At-Home Life 2000 Ventilation System Marianne Kolbasuk McGee (HealthInfoSec) • December 1, 2025 The FDA has issued a “permanent recall” alert regarding Baxter’s Life 2000…
Recent investigations have uncovered two distinct cyber espionage groups allegedly linked to China: UNC5325 and UNC3886, both exploiting vulnerabilities in Ivanti Connect Secure VPN appliances. UNC5325 is reported to have utilized the critical vulnerability tracked as CVE-2024-21893, distributing various malware…
