The Breach News

Critical Vulnerability in Ingress NGINX Controller Enables Authentication-Free RCE

Security Vulnerabilities Discovered in Ingress NGINX Controller, Potentially Exposing Over 6,500 Kubernetes Clusters A suite of five significant security vulnerabilities has been identified within the Ingress NGINX Controller for Kubernetes. These weaknesses could lead to unauthorized remote code execution, jeopardizing the security of more than 6,500 clusters that are currently…

Read MoreCritical Vulnerability in Ingress NGINX Controller Enables Authentication-Free RCE

Forecasting Cybercrime and Security Trends for 2023

As cybercriminals continuously evolve with emerging technologies and shifting regulatory landscapes, organizations must proactively strengthen their cybersecurity protocols. This report examines anticipated trends in cybercrime for 2023 and outlines strategies for enhancing security measures. Growing Threat of Digital Supply Chain Attacks The digitization of supply chains introduces significant security vulnerabilities.…

Read MoreForecasting Cybercrime and Security Trends for 2023

Silver Fox APT Deploys Winos 4.0 Malware in Cyber Attacks Targeting Taiwanese Entities

A significant cybersecurity threat has emerged targeting enterprises in Taiwan, characterized by a new strain of malware known as Winos 4.0. This malware is disseminated through phishing emails disguising themselves as communications from the National Taxation Bureau of Taiwan. The malicious campaign was first identified last month by Fortinet’s FortiGuard…

Read MoreSilver Fox APT Deploys Winos 4.0 Malware in Cyber Attacks Targeting Taiwanese Entities

New High-Risk Security Vulnerabilities Discovered in VMware Tools and CrushFTP — Proof of Concept Available

Broadcom has recently issued critical security updates to mitigate a serious vulnerability in VMware Tools for Windows. Recognized as CVE-2025-22230, this flaw poses a significant risk as it allows for potential authentication bypass, earning it a CVSS score of 7.8. The vulnerability arises from inadequate access control measures within the…

Read MoreNew High-Risk Security Vulnerabilities Discovered in VMware Tools and CrushFTP — Proof of Concept Available

Users of Ukraine’s DELTA Military System Targeted by Data-Stealing Malware

Ukrainian Defense System Targeted by Phishing Attacks Linked to Russian Hackers The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that users of the Delta situational awareness program fell victim to phishing emails originating from a compromised email account belonging to the country’s Ministry of Defense. This incident highlights…

Read MoreUsers of Ukraine’s DELTA Military System Targeted by Data-Stealing Malware

600 GB of Suspected Great Firewall of China Data Released in Largest Leak to Date

A massive leak of approximately 600 GB of data associated with China’s Great Firewall has emerged, revealing internal documents, code, and operational details. Comprehensive information is accessible on the GFW Report. On Thursday, September 11, 2025, the largest data breach tied to the Great Firewall of China surfaced online. The…

Read More600 GB of Suspected Great Firewall of China Data Released in Largest Leak to Date

Inside Jeffrey Epstein’s Yahoo Inbox: Uncovered Details

Recent developments have emerged regarding the handling of sealed documents related to Jeffrey Epstein, sparking discussions around potential pardons. Within this context, Ghislaine Maxwell’s correspondence has positioned her as more than just Epstein’s associate; it highlights her extensive efforts to solidify her connections with influential figures. A freshly unsealed warrant…

Read MoreInside Jeffrey Epstein’s Yahoo Inbox: Uncovered Details