In a significant revelation that raises alarms for professionals regarding online privacy, cybersecurity researcher Bob Diachenko, in collaboration with nexos.ai, uncovered an unsecured MongoDB database on November 23, 2025. This massive dataset, consisting of approximately 16 terabytes (TB) of information,…
Malicious GitHub Repository Impersonating CVE-2025-55182 Scanner Exposed A GitHub repository masquerading as a vulnerability scanner for CVE-2025-55182, commonly known as “React2Shell,” was recently uncovered as a source of malware. The project, titled React2shell-scanner, was associated with the GitHub user niha0wa…
Cybersecurity professionals have been well aware that cybercriminals would exploit the uncertainty surrounding the COVID-19 pandemic to enhance their cyberattacks. Malicious communications have frequently incorporated COVID-19 themes, leveraging public fear to increase their effectiveness. Though anecdotal evidence has suggested various…
Air Canada has reported a significant data breach affecting roughly 20,000 of its 1.7 million mobile app users. The airline confirmed that it detected unusual login activity on its platform over a two-day span from August 22 to August 24.…
Elastic Expands Security Training with Modular, Accessible Learning Elastic, a company rooted in open-source technology, has recently unveiled enhancements to its training offerings, emphasizing modular learning and practical skill development. This initiative aligns with Elastic’s commitment to transparency and free…
Data Breach Sparks Public Reprimand for Postal Service Instead of Fine In a significant development within the realm of data security, the Information Commissioner’s Office (ICO) has issued a public reprimand to a national postal service, following an extensive investigation…
In a significant development for cybersecurity, Juniper Networks has announced critical updates designed to address a severe remote code execution (RCE) vulnerability affecting its SRX Series firewalls and EX Series switches. Identified as CVE-2024-21591, this flaw has garnered a high…
In a significant cyber assault following the assassination of Iranian Major General Qasem Soleimani, the U.S. Department of Justice has indicted two hackers for defacing multiple websites within the United States. The defendants, Behzad Mohammadzadeh, also known as Mrb3hz4d, aged…
Data Breach at British Airways Exposes Personal and Financial Information of Customers British Airways, known as “The World’s Favorite Airline,” has confirmed a significant data breach affecting up to 380,000 customers. This incident, which lasted for over two weeks, has…
AI-Based Attacks , Artificial Intelligence & Machine Learning , Fraud Management & Cybercrime Adapting to the Rapid Rise of AI-Driven Cyber Attacks: Strategies for Defenders Brandy Harris • December 10, 2025 Image: Shutterstock Recent revelations from Anthropic regarding a cyberespionage…
