Recent developments reveal a significant cyber breach affecting ASUS customers, attributed to a sophisticated supply chain attack. Kaspersky, a Russian cybersecurity company, disclosed parts of this incident last week, though it withheld the complete list of hardcoded MAC addresses embedded in the malicious code targeting specific users. In lieu of…
In a significant development within the realm of cybersecurity, it has been reported that LeakedSource, a breach notification service infamous for aggregating and disclosing vast amounts of compromised user data, has gone offline following an alleged law enforcement raid. This site, which came into prominence in late 2015, has been…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Insurer’s Breach Likely to Be the Largest Reported Health Data Breach in 2025 Marianne Kolbasuk McGee (HealthInfoSec) • January 2, 2026 Aflac is notifying 22.65 million individuals that their sensitive data may have been stolen in a June 2025 hacking incident.…
Data Breach Exposes Ledger Customers’ Information Ledger, a prominent provider of cryptocurrency hardware wallets, has confirmed that customer names and contact details were compromised following a data breach involving one of its payment processing partners. This incident marks yet another challenge for Ledger, which has faced multiple breaches in the…
In a concerning escalation of cybersecurity threats, Amazon Web Services (AWS), Cloudflare, and Google reported significant progress in defending against unprecedented distributed denial-of-service (DDoS) attacks that utilize a new exploit known as HTTP/2 Rapid Reset. This emerging vulnerability has raised alarms due to its ability to launch large-scale attacks efficiently.…
A recently disclosed spyware framework, identified as TajMahal, has emerged as a significant threat in the cybersecurity landscape, having reportedly operated undetected for over five years. Cybersecurity researchers from Kaspersky Lab announced the discovery, revealing that this advanced persistent threat (APT) toolkit is characterized by its modular architecture and an…
Massive Data Breach Exposes Accounts of 2.5 Million Gamers on Prominent Forums Recent revelations have surfaced regarding a significant data breach affecting two well-known gaming forums, “XBOX360 ISO” and “PSP ISO.” This incident, which occurred in September 2015, involves the exposure of sensitive information belonging to approximately 2.5 million users…
A recently issued security advisory has raised concerns about vulnerabilities at the HitBTC Exchange. This alert follows a disclosure by blockchain security firm SlowMist, which identified a potentially serious flaw on the trading platform. In a post on X (formerly Twitter), SlowMist detailed its attempts to notify HitBTC through direct…
Microsoft has recently identified a link between the exploitation of a critical vulnerability in Atlassian Confluence Data Center and Server, marked as CVE-2023-22515, and a state-sponsored group known as Storm-0062 (also referred to as DarkShadow or Oro0lxy). This critical flaw is a privilege escalation vulnerability that has been actively exploited…
