The Breach News

Ransomware Turmoil Escalates Following Marks & Spencer Breach, Yet HyperBUNKER’s Innovative Diode Vault Challenges Traditional Data Protection Norms

Ransomware Attack on Marks & Spencer Exposes Flaws in Backup Strategies HyperBUNKER Advocates for Offline Storage Amid Criticism Over Costs Data Diodes Establish Secure One-Way Channels to Protect Data Integrity Marks & Spencer (M&S), a prominent UK retailer, recently faced a ransomware attack that significantly disrupted its internal operations, effectively…

Read MoreRansomware Turmoil Escalates Following Marks & Spencer Breach, Yet HyperBUNKER’s Innovative Diode Vault Challenges Traditional Data Protection Norms

Hackers Involved in Twilio Breach Also Targeted Cloudflare Employees

Cloudflare Exposes Phishing Attempt Targeting Employees Amid Twilio Data Breach On Tuesday, Cloudflare, a leading web infrastructure provider, revealed a sophisticated phishing attack that affected at least 76 employees and their family members. The incident involved text messages sent to personal and work phones, resembling a previously reported phishing operation…

Read MoreHackers Involved in Twilio Breach Also Targeted Cloudflare Employees

Iran Seeks to Recruit European Aerospace Engineers Seeking Employment

Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Social Engineering Iranian Hackers Pose as Online Recruiters Prajeet Nair (@prajeetspeaks) • September 23, 2025 Image: Shutterstock Recent reports reveal that Western Europeans employed in aerospace, defense manufacturing, and telecommunications are being targeted by Iranian state-sponsored hackers masquerading as online recruiters. These…

Read MoreIran Seeks to Recruit European Aerospace Engineers Seeking Employment

Iranian Hackers Exploit Fake Job Offers to Target Europe’s Key Industries

A group of Iranian hackers, identified as Nimbus Manticore, is broadening its activities with a new focus on major enterprises across Europe. Recent findings from cybersecurity firm Check Point Research (CPR) indicate that this group is particularly targeting organizations within the defense, telecommunications, and aerospace sectors to obtain sensitive data.…

Read MoreIranian Hackers Exploit Fake Job Offers to Target Europe’s Key Industries

PLAYFULGHOST: Distribution Through Phishing and SEO Poisoning in Compromised VPN Applications

PLAYFULGHOST Malware Discovered Targeting VPN Users with Sophisticated Methods Cybersecurity experts have recently identified a new malware strain named PLAYFULGHOST, which is characterized by its extensive information-gathering capabilities, including keylogging, screen capture, and remote file execution. This malware has been implicated in various cyber attacks, indicating a strategic focus on…

Read MorePLAYFULGHOST: Distribution Through Phishing and SEO Poisoning in Compromised VPN Applications

EV Charging Company Confirms Data Breach Exposing Customer Information

In the ever-evolving landscape of electric vehicle (EV) infrastructure, a recent significant security breach has highlighted vulnerabilities associated with third-party data management. Digital Charging Solutions GmbH (DCS), a major provider of EV charging services, confirmed that unauthorized access by a third-party service provider led to this incident. The compromise involved…

Read MoreEV Charging Company Confirms Data Breach Exposing Customer Information

CISA Alerts on Two Actively Exploited Security Vulnerabilities in Adobe and Oracle Products

Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) catalog by adding two critical security flaws affecting Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM). This action stems from emerging evidence indicating active exploitation of these vulnerabilities. The newly added vulnerabilities are…

Read MoreCISA Alerts on Two Actively Exploited Security Vulnerabilities in Adobe and Oracle Products

Benefits and Risks for Businesses Using DeepSeek V3.1

Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Splx Reports Enhanced Prompts Reduce Hallucinations, Yet Security Flaws Remain Rashmi Ramesh (@rashmiramesh_) • September 23, 2025 Image: Juan Alejandro Bernal/Shutterstock DeepSeek has unveiled its latest model, claiming significant advancements as it enters what it terms the “agent era.” While…

Read MoreBenefits and Risks for Businesses Using DeepSeek V3.1