The Breach News

U.S. Accuses Three North Korean Hackers in $1.3 Billion Cryptocurrency Theft

On Wednesday, the U.S. Department of Justice (DoJ) announced the indictment of three alleged North Korean hackers, accused of orchestrating an extensive scheme to steal and extort over $1.3 billion in cash and cryptocurrencies from various businesses and financial institutions. The indicted individuals—Jon Chang Hyok, 31; Kim Il, 27; and…

Read MoreU.S. Accuses Three North Korean Hackers in $1.3 Billion Cryptocurrency Theft

Abuse of Spyware on Signal and WhatsApp Targeting U.S. Officials

Data Privacy, Data Security, Endpoint Security Cyber Advisory Highlights Exploitation of Linked Devices in Monitoring Sensitive Communications Chris Riotta (@chrisriotta) • November 25, 2025 Image: Shutterstock The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about cyber threat actors targeting current and former high-ranking government officials, military…

Read MoreAbuse of Spyware on Signal and WhatsApp Targeting U.S. Officials

Major Sign1 Campaign Compromises Over 39,000 WordPress Sites with Scam Redirects

Significant Malware Campaign Targets WordPress Sites A recent and extensive malware campaign known as Sign1 has compromised over 39,000 WordPress sites over the past six months. The malware employs malicious JavaScript injections, maneuvering to redirect users to fraudulent websites. Notably, within the last two months, this campaign has infected an…

Read MoreMajor Sign1 Campaign Compromises Over 39,000 WordPress Sites with Scam Redirects

SolarWinds Hackers Exfiltrated Source Code for Microsoft Azure, Exchange, and Intune

Microsoft Concludes Investigation into SolarWinds Hack: Key Findings Revealed On Thursday, Microsoft announced the completion of its investigation into the SolarWinds cyberattack. The company confirmed that while the attackers were indeed able to exfiltrate source code from its repositories, there is no evidence that they leveraged this breach to access…

Read MoreSolarWinds Hackers Exfiltrated Source Code for Microsoft Azure, Exchange, and Intune

ICE Proposes $280 Million Funding for Immigrant-Tracking ‘Bounty Hunter’ Companies

ICE Expands Outsourcing of Immigrant Tracking to Private Firms The U.S. Immigration and Customs Enforcement (ICE) agency has announced a significant expansion in its plans to outsource the tracking of immigrants to private surveillance companies, moving away from a previously proposed $180 million pilot program. This decision has been documented…

Read MoreICE Proposes $280 Million Funding for Immigrant-Tracking ‘Bounty Hunter’ Companies

Former TrendMicro Employee Sold Customer Data to Tech Support Scammers

Cybersecurity firm Trend Micro recently revealed that a significant data breach involved an employee who improperly accessed personal information belonging to thousands of customers, driven by “clear criminal intent.” This insider threat occurred earlier this year, with the company taking immediate actions upon discovery. While businesses have implemented various defensive…

Read MoreFormer TrendMicro Employee Sold Customer Data to Tech Support Scammers

Top US Banks Assess Their Exposure to SitusAMC Breach

Finance & Banking, Industry Specific JP Morgan Chase, Citi, and Morgan Stanley Affected by Cybersecurity Breach Akshaya Asokan (asokan_akshaya) • November 24, 2025 Image: Dogora Sun/Shutterstock Major financial institutions in the U.S., including JP Morgan Chase, Citi, and Morgan Stanley, are currently evaluating their exposure to a recent cybersecurity incident…

Read MoreTop US Banks Assess Their Exposure to SitusAMC Breach