The Breach News

Hacker Compromises Multiple Websites, Puts 127 Million New Records on Sale

A Pakistani hacker known by the alias “gnosticplayers” has recently placed a significant quantity of compromised data on the dark web for sale, drawing attention to the ongoing issue of data breaches. This individual has listed approximately 127 million records linked to eight different online platforms, following an earlier batch…

Read MoreHacker Compromises Multiple Websites, Puts 127 Million New Records on Sale

Transitioning from Cloud-Based Applications to an Autonomous AI Cloud

Agentic AI, Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development CEO Matt Garman Outlines Vision for Developing Billions of Autonomous Agents Rahul Neel Mani (@rneelmani) • December 2, 2025 AWS CEO Matt Garman discusses agentic AI at the re:Invent 2025 conference. For the past twenty years, Amazon Web…

Read MoreTransitioning from Cloud-Based Applications to an Autonomous AI Cloud

Caution: Newly Discovered Ivanti Authentication Bypass Vulnerability Impacts Connect Secure and ZTA Gateways

In a concerning development, Ivanti has notified its customers of a critical security vulnerability affecting its Connect Secure, Policy Secure, and ZTA gateway devices. This flaw presents an opportunity for attackers to bypass authentication protocols, posing significant risks to network integrity and data security. The vulnerability, designated as CVE-2024-22024, has…

Read MoreCaution: Newly Discovered Ivanti Authentication Bypass Vulnerability Impacts Connect Secure and ZTA Gateways

Attackers Exploit Citrix NetScaler Devices for Amplified DDoS Attacks

Citrix has issued an urgent warning to its clientele regarding a pressing security breach affecting its NetScaler application delivery controller (ADC) devices. The vulnerability is being exploited by malicious actors to orchestrate amplified distributed denial-of-service (DDoS) assaults against various targets across the globe. The company stated that attackers, potentially including…

Read MoreAttackers Exploit Citrix NetScaler Devices for Amplified DDoS Attacks

Over 92 Million New Accounts Available for Purchase Due to Additional Unreported Breaches

Recent reports reveal alarming statistics regarding data breaches and their implications for cybersecurity. In 2018 alone, over 5 billion records were exposed due to approximately 6,500 data breaches, as indicated by a report from Risk Based Security. Additionally, DLA Piper documented that more than 59,000 data breaches have been reported…

Read MoreOver 92 Million New Accounts Available for Purchase Due to Additional Unreported Breaches

When ERP Systems Turn into an Attack Surface

Recruitment & Reskilling Strategy, Training & Security Leadership Required Skills: Enterprise Architecture, Configuration, and Vulnerability Management Brandy Harris • December 3, 2025 (Image: Shutterstock) Enterprise resource planning (ERP) platforms, including SAP and Oracle, underlie critical business functions such as finance, human resources, supply chain, and administration. These systems are often…

Read MoreWhen ERP Systems Turn into an Attack Surface

LockBit 5’s “New Secure Blog Domain” Infrastructure Has Already Been Leaked – DataBreaches.Net

In a bold announcement reminiscent of previous disclosures, the LockBit 5.0 cybercriminal group recently introduced a new secure blogging domain, claiming it offers a multilayered protective system against law enforcement activities. This declaration, steeped in confidence, comes at a time when scrutiny over their operations has intensified. Just days prior,…

Read MoreLockBit 5’s “New Secure Blog Domain” Infrastructure Has Already Been Leaked – DataBreaches.Net

Fortinet Alerts Users to Critical FortiOS SSL VPN Vulnerability Possibly Being Actively Exploited

Fortinet has recently uncovered a significant security vulnerability in its FortiOS SSL VPN, identified as CVE-2024-21762, which is currently believed to be actively exploited in the wild. This flaw, with a CVSS score of 9.6, poses a serious risk by enabling the execution of arbitrary code and commands by outside…

Read MoreFortinet Alerts Users to Critical FortiOS SSL VPN Vulnerability Possibly Being Actively Exploited