Eight years after a researcher alerted WhatsApp to vulnerabilities allowing mass extraction of user phone numbers, a new investigation from the University of Vienna has confirmed that this issue persists. The researchers employed a technique exploiting WhatsApp’s discovery function, which allows individuals to check if a phone number is registered…
In a significant security incident affecting millions, Wawa convenience stores have confirmed a breach involving the payment card information of more than 30 million customers. This breach became evident when payment card details were discovered for sale on Joker’s Stash, a prominent dark web marketplace known for trading stolen financial…
Endpoint Security, Hardware / Chip-level Security Experts Highlight Advantages of Bug Bounties and Researcher Engagement Mathew J. Schwartz (@euroinfosec) • November 21, 2025 Image: Shutterstock While hardware once stood as a cornerstone of trustworthy systems, ongoing concerns over compromised supply chains and security vulnerabilities have significantly diminished that trust. As…
CrowdStrike, a leading player in the cybersecurity sector, recently terminated the employment of an insider alleged to have leaked confidential information. The action was taken after a cybercriminal group claimed to have accessed CrowdStrike’s internal systems. This breach occurred amid rising concerns over insider threats within the cybersecurity landscape. On…
Red Hat Issues Urgent Security Alert Following Backdoor Discovery in XZ Utils On Friday, Red Hat issued an urgent security alert, revealing a critical security vulnerability involving two versions of the widely-used data compression library known as XZ Utils, previously LZMA Utils. This vulnerability allows malicious actors to gain unauthorized…
On Sunday, the European Banking Authority (EBA) reported a cyberattack that compromised its Microsoft Exchange Servers. As a precautionary step, the agency took its email systems offline temporarily. This incident raises significant concerns as it may have allowed unauthorized access to personal data stored in emails. The EBA, located in…
Thousands of Asus routers have been compromised, falling under the control of a suspected state-sponsored group from China. This recent wave of hacking has primarily targeted seven specific models of Asus routers, all of which no longer receive security updates from the manufacturer, according to researchers at SecurityScorecard. The operation,…
The United States Department of Justice has officially charged four members of the Chinese military for their alleged role in the significant Equifax data breach, resulting in the exposure of sensitive personal and financial information of nearly 150 million Americans. In a press conference spearheaded by Attorney General William Barr…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Government Three-Year Espionage Campaign Targets Taiwanese Firms Akshaya Asokan (asokan_akshaya) • November 21, 2025 (Image: Shutterstock) Security researchers have uncovered a multi-year espionage operation attributed to a hacking group with suspected ties to the Chinese government. This sustained campaign, lasting three years,…
