The Breach News

CISA Alerts on Ongoing Exploits Targeting Trimble Cityworks Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding a critical vulnerability in Trimble’s Cityworks software for geographic information systems (GIS). This vulnerability, identified as CVE-2025-0994, is currently under active exploitation, posing significant risk to its users. CVE-2025-0994 carries a CVSS v4 score of 8.6, indicating…

Read MoreCISA Alerts on Ongoing Exploits Targeting Trimble Cityworks Vulnerability

HelloXD Ransomware Deploys Backdoor on Targeted Windows and Linux Systems

A new variant of ransomware known as HelloXD is actively targeting both Windows and Linux systems, alongside deploying a backdoor that allows attackers ongoing remote access to compromised machines. This underscores a concerning trend in ransomware threats, where operators are not only encrypting data but also setting up mechanisms for…

Read MoreHelloXD Ransomware Deploys Backdoor on Targeted Windows and Linux Systems

Researchers Caution Against Privilege Escalation Threats in Google’s Vertex AI ML Platform

Recent cybersecurity findings have revealed two significant vulnerabilities within Google’s Vertex AI machine learning platform. These exploits could be leveraged by malicious entities to escalate user privileges and exfiltrate sensitive models directly from the cloud environment. According to an analysis released by researchers from Palo Alto Networks Unit 42, exploiting…

Read MoreResearchers Caution Against Privilege Escalation Threats in Google’s Vertex AI ML Platform

XE Hacker Group Leverages VeraCore Zero-Day to Install Persistent Web Shells

Cybersecurity Alert: Exploitation of VeraCore Vulnerabilities by XE Group Recent assessments have revealed that cybercriminals are taking advantage of several vulnerabilities within specific software applications, notably Progress Telerik UI for ASP.NET AJAX and Advantive VeraCore. These exploits allow threat actors to deploy reverse shells and web shells, granting them persistent…

Read MoreXE Hacker Group Leverages VeraCore Zero-Day to Install Persistent Web Shells

Unresolved Travis CI API Vulnerability Reveals Thousands of Confidential User Access Tokens

A significant security vulnerability in the Travis CI API has put the user tokens of numerous developers at risk, potentially exposing them to severe cyber threats. This flaw enables malicious actors to compromise cloud infrastructures, perform unauthorized code modifications, and execute supply chain attacks. Recent research from cloud security experts…

Read MoreUnresolved Travis CI API Vulnerability Reveals Thousands of Confidential User Access Tokens

White Hat Hackers in an Era of Automation

Artificial Intelligence & Machine Learning, Governance & Risk Management, Next-Generation Technologies & Secure Development Pentesting Tools Reveal Vulnerabilities, Yet Demand Remains for White Hat Skills Brandy Harris • September 24, 2025 In the past, vulnerability management operated on a predictable schedule—quarterly scans, annual penetration tests, and slow remediation timelines. Ethical…

Read MoreWhite Hat Hackers in an Era of Automation

Medusa Ransomware Alleges Comcast Data Breach, Seeks $1.2 Million Ransom

The Medusa ransomware group has claimed responsibility for a significant ransomware attack targeting Comcast Corporation, a prominent global media and technology enterprise recognized for its broadband, television, and film services. According to evidence posted on the group’s dark web leak site, Medusa has exfiltrated approximately 834.4 gigabytes of data, demanding…

Read MoreMedusa Ransomware Alleges Comcast Data Breach, Seeks $1.2 Million Ransom