The Breach News

Ex-WhatsApp Security Chief Compares Meta’s Culture to a “Cult” in Lawsuit

In a recent development, a former employee of WhatsApp, A. Baig, has raised serious allegations concerning data privacy breaches within the company. The core of the issue appears to be improper access by engineers to user data, a matter underscored in a letter outlining several compliance shortcomings. These include failing…

Read MoreEx-WhatsApp Security Chief Compares Meta’s Culture to a “Cult” in Lawsuit

⚡ THN Weekly Recap: Fresh Assaults, Timeless Tactics, Greater Consequences

In an era where cyber threats are not merely evolving but rapidly mutating, the cybersecurity landscape continues to challenge defenses across various sectors, from global financial frameworks to vital infrastructure. With the advent of sophisticated cybercrime, ranging from state-sponsored espionage to ransomware attacks leveraging artificial intelligence, pressing questions arise about…

Read More⚡ THN Weekly Recap: Fresh Assaults, Timeless Tactics, Greater Consequences

Edelson Lechtzin LLP Investigates Potential Data Breach Claims for Wayne Memorial Hospital Patients

NEWTOWN, Pa., Sept. 8, 2025 /PRNewswire/ — Edelson Lechtzin LLP has initiated an investigation into data privacy issues stemming from a breach at Wayne Memorial Hospital (WMH). The institution reported the incident on or around June 3, 2024. For those interested in discussing potential legal actions regarding this case, click…

Read MoreEdelson Lechtzin LLP Investigates Potential Data Breach Claims for Wayne Memorial Hospital Patients

New Report Uncovers NikoWiper Malware Targeting Ukraine’s Energy Sector

In a significant development in cybersecurity, the Russian-affiliated group known as Sandworm has deployed a new variant of wiper malware called NikoWiper in an attack against a Ukrainian energy sector company in October 2022. This incident underscores the ongoing cyber threats linked to geopolitical tensions in the region. ESET, a…

Read MoreNew Report Uncovers NikoWiper Malware Targeting Ukraine’s Energy Sector

Flattery Can Lead AI Chatbots to Bend the Rules

Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Study Finds Persuasion Techniques Compromise GPT-4o-Mini’s Safety Features Rashmi Ramesh (@rashmiramesh_) • September 8, 2025 Image: Shutterstock Recent research indicates that fundamental persuasion techniques, as outlined in psychological studies, can influence large language models (LLMs) like GPT-4o-Mini to disregard their…

Read MoreFlattery Can Lead AI Chatbots to Bend the Rules

Researchers Uncover New Polymorphic Attack That Mimics Browser Extensions to Harvest Credentials

Malicious Browser Extensions Threaten Online Security Recent research has unveiled a sophisticated technique that enables malicious web browser extensions to impersonate legitimate add-ons. This alarming discovery highlights a growing cybersecurity risk faced by users of popular Chromium-based browsers, including Google Chrome, Microsoft Edge, Brave, and Opera. In a report released…

Read MoreResearchers Uncover New Polymorphic Attack That Mimics Browser Extensions to Harvest Credentials

How AI Can Expose Company Data to Risks

AI in Cybersecurity: Double-Edged Sword Recent developments have highlighted the growing risks attached to the integration of artificial intelligence (AI) in cybersecurity. While AI security tools are designed to enhance defenses against threats such as phishing and deepfakes, the reality is that they can also amplify vulnerabilities for both organizations…

Read MoreHow AI Can Expose Company Data to Risks

Microsoft Addresses 125 Vulnerabilities, Including Exploited Windows CLFS Flaw

In recent developments, Microsoft has unveiled critical security patches addressing a staggering array of 125 vulnerabilities across its software platforms. Among these, one vulnerability has been identified as under active exploitation in the wild, raising significant alarms within the cybersecurity community. Of the reported vulnerabilities, 11 are designated as Critical,…

Read MoreMicrosoft Addresses 125 Vulnerabilities, Including Exploited Windows CLFS Flaw

CISA Updates KEV List with Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM

On March 10, 2025, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the inclusion of five new vulnerabilities affecting Advantive VeraCore and Ivanti Endpoint Manager (EPM) in its Known Exploited Vulnerabilities (KEV) catalog, following confirmed cases of exploitation in the wild. This escalation emphasizes a heightened risk for organizations…

Read MoreCISA Updates KEV List with Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM