Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Also: Texas AG Sues Smart TV Manufacturers, Fortinet SSO Flaws Pooja Tikekar (@PoojaTikekar) • December 18, 2025 Image: Shutterstock/ISMG This week, Information Security Media Group presents a roundup of significant cybersecurity breaches globally. Major developments include a leadership transition at Coupang,…
University of Sydney Hacked: Compromised Data of Students and Staff Uncovered In a significant cybersecurity breach, the University of Sydney has reported unauthorized access to the personal data of its students and staff. This incident raises urgent concerns regarding the protection of sensitive information within educational institutions, as cyber threats…
New Phishing Campaign Deploys Nim-Based Malware via Microsoft Word Documents A recently uncovered phishing campaign is exploiting Microsoft Word documents as bait to deliver backdoor malware written in the Nim programming language. This development poses significant challenges for cybersecurity experts, as malware created in less common languages can hinder research…
ICE Expands Cybersecurity Monitoring Amid Heightened Internal Leak Investigations As the Biden administration intensifies efforts to address internal leaks, Immigration and Customs Enforcement (ICE) is quietly renewing a crucial cybersecurity contract focused on monitoring and preserving employee activity within its systems. The operation, termed Cyber Defense and Intelligence Support Services,…
Ticketmaster Suffers Data Breach, Exposing Customer Information Ticketmaster, a leading global entertainment ticketing platform, has confirmed a significant security breach that has compromised personal and payment information of its customers. In a recent statement, the company divulged that unauthorized access to sensitive data may have been achieved via a third-party…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Cisco Talos Links Ongoing Attacks to UAT-9686 Akshaya Asokan (asokan_akshaya) • December 18, 2025 Image: Anucha Cheechang/Shutterstock Recent reports indicate that likely state-sponsored hackers from China are taking advantage of an unpatched vulnerability in Cisco email appliances,…
On December 18, 2025, Australia’s University of Sydney reported a significant cybersecurity breach, revealing that hackers compromised an online coding repository, extracting personal information belonging to thousands of staff, students, alumni, and donors. The university characterized the breached data as ‘historic,’ which has placed one of Australia’s leading academic institutions…
Barracuda Networks disclosed a serious cybersecurity incident involving a zero-day vulnerability within its Email Security Gateway (ESG) appliances, allegedly exploited by Chinese threat actors. This vulnerability has been designated as CVE-2023-7102 and has led to the deployment of backdoors on a select number of affected devices. The vulnerability involves an…
Recent disclosures from US intelligence agencies reveal an alarming resurgence of a 12-year-old strain of malware, known as “Taidoor.” This variant is believed to be employed by state-sponsored actors from China, targeting a wide array of institutions, including government bodies, corporations, and think tanks. The malware, which has been active…
