The Breach News

Anthropic Sounds Alarm as Event Horizon for Vibe Hacking Approaches

Agentic AI, Cybercrime, Fraud Management & Cybercrime AI Firm Reveals Automated Cyber Extortion Campaign Targeting Critical Infrastructure Rashmi Ramesh (rashmiramesh_) • September 1, 2025 Image: Shutterstock Artificial intelligence company Anthropic has announced a significant disruption of a cybercrime operation that leveraged its large language models to automate a sophisticated data…

Read MoreAnthropic Sounds Alarm as Event Horizon for Vibe Hacking Approaches

Major Vulnerability in Apache Parquet Enables Remote Attackers to Execute Arbitrary Code

A serious security vulnerability has been identified in the Java Library of Apache Parquet. Successfully exploiting this flaw could enable a remote attacker to execute arbitrary code on vulnerable systems. Apache Parquet is an open-source columnar data storage format optimized for high-performance data processing and retrieval. It supports sophisticated data…

Read MoreMajor Vulnerability in Apache Parquet Enables Remote Attackers to Execute Arbitrary Code

The Continued Consequences of a Breach at AI Chatbot Developer Salesloft – Krebs on Security

Salesloft Authentication Token Breach Exposes Corporate Vulnerabilities Recent developments in cybersecurity have raised alarms among businesses utilizing Salesloft, a platform that streamlines customer interactions into actionable leads for Salesforce. A significant breach involving the theft of authentication tokens from Salesloft has prompted fast action from numerous companies as they scramble…

Read MoreThe Continued Consequences of a Breach at AI Chatbot Developer Salesloft – Krebs on Security

Commvault CVE-2025-34028 Added to CISA KEV Following Confirmation of Active Exploitation

Critical Vulnerability Discovered in Commvault Command Center The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a severe security vulnerability affecting Commvault Command Center to its Known Exploited Vulnerabilities (KEV) catalog. This move comes shortly after the flaw, identified as CVE-2025-34028, was publicly disclosed. The vulnerability has been assigned…

Read MoreCommvault CVE-2025-34028 Added to CISA KEV Following Confirmation of Active Exploitation

CISA Alerts on Ongoing Exploitation of ZK Java Web Framework Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant vulnerability affecting the ZK Framework to its Known Exploited Vulnerabilities (KEV) catalog, citing ongoing indications of active exploitation. This flaw, identified as CVE-2022-36537, carries a CVSS score of 7.5 and impacts several versions of the framework, specifically…

Read MoreCISA Alerts on Ongoing Exploitation of ZK Java Web Framework Vulnerability

Austrian Interior Ministry Reports Breach of 100 Email Accounts

Cyberwarfare / Nation-State Attacks, Email Security & Protection, Fraud Management & Cybercrime No Law Enforcement Information or Personal Data Compromised, Says Austrian Government Akshaya Asokan (asokan_akshaya) • September 1, 2025 The headquarters of Austria’s Ministry of the Interior in Palais Modena, Vienna. (Image: Wikimedia Commons) The Austrian government has confirmed…

Read MoreAustrian Interior Ministry Reports Breach of 100 Email Accounts

China Poised to Unveil Advanced High-Tech Weapons on the Global Stage

China is poised for a significant military showcase, marking the 80th anniversary of its victory over Japan in World War II. The event, scheduled for September 3 in Tiananmen Square, will feature a grand military parade that combines historical commemoration with a strategic assertion aimed at the international community, signaling…

Read MoreChina Poised to Unveil Advanced High-Tech Weapons on the Global Stage

CERT-UA Reports Cyberattacks on Ukrainian State Systems Utilizing WRECKSTEEL Malware

In a concerning revelation, the Computer Emergency Response Team of Ukraine (CERT-UA) has reported three cyberattacks targeting state administration and critical infrastructure. The objective of these attacks appears to be data theft from sensitive governmental entities. According to CERT-UA, the coordinated campaign utilized compromised email accounts to dispatch phishing emails.…

Read MoreCERT-UA Reports Cyberattacks on Ukrainian State Systems Utilizing WRECKSTEEL Malware

Morocco Issues Alert for Gmail Users Following Significant Data Breach

Phishing Attempts Surge Following Major Data Breach Impacting Gmail Users Rabat, Morocco – In a worrying development, Morocco’s Center for Monitoring, Detection, and Response to Computer Attacks (maCERT) has issued a cautionary alert regarding a rise in phishing attempts specifically targeting Gmail users. This escalation follows the recent breach of…

Read MoreMorocco Issues Alert for Gmail Users Following Significant Data Breach