The Breach News

Urgent: Ivanti Issues Patch for Serious Vulnerability in Endpoint Manager Solution

Ivanti has disclosed critical security vulnerabilities within its Endpoint Manager (EPM) solution that pose severe risks to affected systems. This vulnerability, identified as CVE-2023-39336, has received a high-risk CVSS score of 9.6 out of 10, indicating its potential for abuse. The flaw affects both the EPM 2021 and EPM 2022…

Read MoreUrgent: Ivanti Issues Patch for Serious Vulnerability in Endpoint Manager Solution

Russian National Arrested for Allegedly Offering $1 Million to U.S. Employee to Deploy Malware

In a striking incident highlighting ongoing cybersecurity threats, the FBI has apprehended a Russian national accused of attempting to infiltrate a U.S. company’s computer network through dubious means. The individual, identified as Egor Igorevich Kriuchkov, 27, was arrested in Los Angeles after reportedly offering $1 million to an employee of…

Read MoreRussian National Arrested for Allegedly Offering $1 Million to U.S. Employee to Deploy Malware

Browser Extensions with 8 Million Users Gather In-Depth AI Conversations

A recent investigation has revealed disturbing data collection practices involving various browser extensions that compromise user privacy by harvesting conversations from popular AI platforms such as ChatGPT, Claude, and Gemini. Koi, a security firm, has published a detailed report outlining the extent of this data gathering, which includes not only…

Read MoreBrowser Extensions with 8 Million Users Gather In-Depth AI Conversations

Hack Targets Singapore’s Largest Healthcare Group, Compromising 1.5 Million Patient Records

In a significant cybersecurity incident, SingHealth, Singapore’s largest healthcare group, has experienced a severe data breach that compromised sensitive personal information of approximately 1.5 million patients. This breach involved data from individuals who visited SingHealth clinics over a three-year period from May 2015 to July 2018. SingHealth oversees a vast…

Read MoreHack Targets Singapore’s Largest Healthcare Group, Compromising 1.5 Million Patient Records

Medical Group Settles Data Theft Lawsuit for $1.2 Million

Fraud Management & Cybercrime, Litigation, Ransomware Cybercrime Group Rhysida Continues to Feature Victims on Its Leak Site Marianne Kolbasuk McGee (HealthInfoSec) • December 16, 2025 Sunflower Medical Group has agreed to pay $1.2 million to resolve class action litigation following a ransomware attack attributed to the Rhysida group. (Image: Sunflower…

Read MoreMedical Group Settles Data Theft Lawsuit for $1.2 Million

Hackers Allegedly Exposed 94GB of Pornhub Premium User Watch Histories – Hackread – Cybersecurity News, Data Breaches, AI, and More

A significant data breach has come to light, involving the personal viewing histories of numerous individuals who previously held accounts with Pornhub Premium. The cybercriminal group ShinyHunters claims responsibility, alleging they have pilfered a 94GB database comprising over 200 million records (specifically 201,211,943) detailing user searches, downloads, and video activities.…

Read MoreHackers Allegedly Exposed 94GB of Pornhub Premium User Watch Histories – Hackread – Cybersecurity News, Data Breaches, AI, and More

SpectralBlur: New macOS Backdoor Discovered in North Korean Cyber Attacks

Recent findings from cybersecurity researchers have unveiled a sophisticated macOS backdoor known as SpectralBlur, believed to be linked to a malware family associated with North Korean threat actors. This malware serves as a significant indicator of evolving tactics employed against macOS systems, particularly as these operate in sectors deemed high-value…

Read MoreSpectralBlur: New macOS Backdoor Discovered in North Korean Cyber Attacks

QakBot Banking Trojan Makes a Comeback with Deceptive New Tactics to Steal Your Funds

A well-known banking trojan, Qbot, has resurfaced with enhanced capabilities targeting sectors vital to national security, including government, military, and manufacturing entities across the United States and Europe. Recent research from Check Point Research reveals that this revitalized malware not only seeks to pilfer bank account credentials but also leverages…

Read MoreQakBot Banking Trojan Makes a Comeback with Deceptive New Tactics to Steal Your Funds

Microsoft to Retire an Encryption Cipher That Fueled a Decade of Windows Vulnerabilities

Microsoft Phases Out Vulnerable RC4 Encryption Standard Amid Rising Security Concerns In a significant move towards bolstering cybersecurity, Microsoft has announced the discontinuation of the outdated and insecure RC4 encryption cipher, which has been a default feature in Windows for over 26 years. This decision comes in the wake of…

Read MoreMicrosoft to Retire an Encryption Cipher That Fueled a Decade of Windows Vulnerabilities