In yet another significant cybersecurity incident, Whole Foods Market, the grocery chain recently acquired by Amazon, has reported a credit card data breach that potentially impacts customers who shopped at specific locations. This announcement came after Whole Foods confirmed that unauthorized individuals accessed credit card information belonging to patrons at…
AI-Based Attacks, Artificial Intelligence & Machine Learning, Critical Infrastructure Security Also: AI-Driven Deception, Cyber Deterrence, and Resilience Anna Delaney (annamadeline) • December 26, 2025 Clockwise, from top left: Anna Delaney, Mathew Schwartz, Michael Novinson, and Tom Field The ISMG editorial team recently offered insights into the cybersecurity landscape of 2025,…
Coupang’s Customer Data Breach Sparks Official Response from South Korea’s Ministry of Science and ICT On November 30, 2025, during an inter-agency government meeting held at the government complex in Seoul, South Korea’s Minister of Science and ICT, Bae Kyung-hoon, addressed concerns surrounding a significant customer data breach involving Coupang,…
A significant cybersecurity threat has emerged as the Kinsing group exploits a severe vulnerability in Apache ActiveMQ servers, leading to infections of Linux systems with cryptocurrency miners and rootkits. This critical flaw is identified as CVE-2023-46604, categorized as having a maximum CVSS score of 10.0, which allows remote code execution.…
Image credit: Times of Israel. Aleksei Burkov, a 29-year-old hacker from Russia, recently pleaded guilty to numerous charges linked to the operation of two illicit online platforms, enabling cybercriminal activities that led to over $20 million in credit card fraud. Burkov’s first venture was a site named Cardplanet, an online…
The Equifax data breach has intensified, revealing that an additional 2.5 million U.S. consumers were affected, raising the total number of potential victims from 143 million to 145.5 million. This data breach, initially reported last month, involves the exposure of highly sensitive personal information, including names, Social Security numbers, birth…
Finance & Banking, Fraud Management & Cybercrime, Fraud Risk Management Limited Advances in Mandating Customer Compensation for Financial Scams Suparna Goswami (gsuparna) • December 26, 2025 Ken Palla, Fraud Expert and Former Director at MUFG Bank In 2025, financial scams and synthetic identity fraud persisted with little indication of decline,…
On December 25, coinciding with global Christmas celebrations, the Everest ransomware group released a statement on its dark web leak site alleging a breach of Chrysler systems, a prominent American automobile manufacturer. The group claims to have extracted a staggering 1,088 GB (over 1 TB) of data, which they characterize…
Recent cybersecurity alerts highlight the exploitation of a critical vulnerability in Citrix NetScaler application delivery control (ADC) and Gateway appliances by numerous threat actors, including affiliates of the notorious LockBit ransomware group. This new wave of attacks takes advantage of CVE-2023-4966, a severe flaw that has allowed adversaries to infiltrate…
