The Breach News

Seven-Year ShadyPanda Attack Targeted 4.3 Million Chrome and Edge Users

Cybersecurity researchers from Koi Security have uncovered a significant espionage scheme orchestrated by a group dubbed ShadyPanda, which has compromised over 4.3 million users of Chrome and Microsoft Edge over the course of roughly seven years. The attackers employed a methodical and deceptive approach by uploading seemingly innocuous browser extensions…

Read MoreSeven-Year ShadyPanda Attack Targeted 4.3 Million Chrome and Edge Users

Iranian Hackers Draw Motivation from Snake Video Game

MuddyWater Utilizes Game Delay Tactic for Malware Deployment David Perera (@daveperera) • December 2, 2025 Image: Larisa Potekhina/Shutterstock Recent analyses by cybersecurity researchers reveal that Iranian state-sponsored hackers have adopted a unique method to hide malware, drawing parallels with the classic mobile game Snake. These findings indicate that hackers have…

Read MoreIranian Hackers Draw Motivation from Snake Video Game

Coupang Suffers 33.7 Million Data Breach – 조선일보

Coupang Experiences Significant Data Breach Affecting 33.7 Million Users In a recent security incident, Coupang, a prominent e-commerce platform based in South Korea, has reported a data breach that has compromised the personal information of approximately 33.7 million accounts. The breach raises significant concerns about user security, particularly given the…

Read MoreCoupang Suffers 33.7 Million Data Breach – 조선일보

WordPress Plugin Warning: Severe SQLi Vulnerability Poses Risk to Over 200,000 Websites

A significant security vulnerability has been identified in the widely used WordPress plugin, Ultimate Member, which boasts over 200,000 active installations. The flaw, labeled CVE-2024-1071, has a critical CVSS score of 9.8, indicating its severity and potential for exploitation. Security researcher Christiaan Swiers is credited with discovering and reporting this…

Read MoreWordPress Plugin Warning: Severe SQLi Vulnerability Poses Risk to Over 200,000 Websites

Experts Reveal Malware Attacks Targeting Colombian Government and Businesses

In a recent development, cybersecurity researchers uncovered an ongoing surveillance initiative targeting Colombian government institutions and private enterprises within the energy and metallurgical sectors. This attack campaign, referred to as “Operation Spalax,” was detailed in a report released Tuesday by ESET, a Slovak cybersecurity firm. The operation first began in…

Read MoreExperts Reveal Malware Attacks Targeting Colombian Government and Businesses

US Telecoms Dismiss Regulation as a Solution to Chinese Hacking Threats

Critical Infrastructure Security, Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Industry Advocates for Voluntary Measures Amid Security Concerns Chris Riotta (@chrisriotta) • December 2, 2025 Image: Shutterstock During a recent Senate hearing, experts highlighted that U.S. telecommunications networks remain susceptible to foreign threats, primarily from nation-states like China. Concerns…

Read MoreUS Telecoms Dismiss Regulation as a Solution to Chinese Hacking Threats