The Breach News

Elastic Offers On-Demand Free Training for Open Source

Elastic Expands Security Training with Modular, Accessible Learning Elastic, a company rooted in open-source technology, has recently unveiled enhancements to its training offerings, emphasizing modular learning and practical skill development. This initiative aligns with Elastic’s commitment to transparency and free access to knowledge, reinforcing its foundational principles as it makes…

Read MoreElastic Offers On-Demand Free Training for Open Source

ICO Issues Public Reprimand to Post Office Instead of Fine for Data Breach – IT Security Guru

Data Breach Sparks Public Reprimand for Postal Service Instead of Fine In a significant development within the realm of data security, the Information Commissioner’s Office (ICO) has issued a public reprimand to a national postal service, following an extensive investigation into a serious data breach. Instead of imposing a fine,…

Read MoreICO Issues Public Reprimand to Post Office Instead of Fine for Data Breach – IT Security Guru

Severe RCE Vulnerability Discovered in Juniper SRX Firewalls and EX Switches

In a significant development for cybersecurity, Juniper Networks has announced critical updates designed to address a severe remote code execution (RCE) vulnerability affecting its SRX Series firewalls and EX Series switches. Identified as CVE-2024-21591, this flaw has garnered a high CVSS rating of 9.8, indicating its potential for exploitation. The…

Read MoreSevere RCE Vulnerability Discovered in Juniper SRX Firewalls and EX Switches

Two Hackers Charged for Defacing Websites Following U.S. Airstrike that Killed Iranian General

In a significant cyber assault following the assassination of Iranian Major General Qasem Soleimani, the U.S. Department of Justice has indicted two hackers for defacing multiple websites within the United States. The defendants, Behzad Mohammadzadeh, also known as Mrb3hz4d, aged 19, and Marwan Abusrour, known as Mrwn007, aged 25, face…

Read MoreTwo Hackers Charged for Defacing Websites Following U.S. Airstrike that Killed Iranian General

British Airways Breached: 380,000 Payment Card Details Exposed

Data Breach at British Airways Exposes Personal and Financial Information of Customers British Airways, known as “The World’s Favorite Airline,” has confirmed a significant data breach affecting up to 380,000 customers. This incident, which lasted for over two weeks, has compromised the personal details and credit card information of those…

Read MoreBritish Airways Breached: 380,000 Payment Card Details Exposed

Experience Matters, But Now You’re Up Against AI Hacks

AI-Based Attacks , Artificial Intelligence & Machine Learning , Fraud Management & Cybercrime Adapting to the Rapid Rise of AI-Driven Cyber Attacks: Strategies for Defenders Brandy Harris • December 10, 2025 Image: Shutterstock Recent revelations from Anthropic regarding a cyberespionage operation heavily relying on artificial intelligence technology have shed light…

Read MoreExperience Matters, But Now You’re Up Against AI Hacks

Coupang Data Breach Affects 33 Million Users, Leads to CEO Departure

Major Data Breach Hits Coupang, Exposing Personal Information of Millions In late 2025, Coupang Inc., a significant player in South Korea’s e-commerce landscape, suffered a substantial cyber breach that compromised the personal data of over 33 million individuals, approximately two-thirds of the country’s population. This incident, often referred to as…

Read MoreCoupang Data Breach Affects 33 Million Users, Leads to CEO Departure

Balada Injector Compromises More Than 7,100 WordPress Sites via Plugin Vulnerability

A significant cybersecurity incident has come to light involving the Popup Builder plugin used in WordPress, which has been compromised by a malware strain known as Balada Injector. This issue endangers thousands of WordPress websites operating on vulnerable versions of the plugin. Initially documented by Doctor Web at the beginning…

Read MoreBalada Injector Compromises More Than 7,100 WordPress Sites via Plugin Vulnerability