The Breach News

Over 1,000 WordPress Sites Compromised by JavaScript Backdoors Allowing Ongoing Attacker Access

Recent reports indicate that over 1,000 WordPress-based websites have fallen victim to an attack involving the injection of malicious third-party JavaScript code, which establishes four distinct backdoors for attackers. This technique allows cybercriminals to regain access to compromised systems even if one entry point is discovered and removed, as noted…

Read MoreOver 1,000 WordPress Sites Compromised by JavaScript Backdoors Allowing Ongoing Attacker Access

Chinese Hackers Leverage Golang Malware in DragonSpark Attacks to Bypass Detection

In a recent wave of cyberattacks, organizations in East Asia are increasingly falling victim to an advanced threat actor known as DragonSpark. This group is believed to be operating under the direction of a Chinese-speaking operator and employs sophisticated techniques to bypass traditional security measures. According to an analysis by…

Read MoreChinese Hackers Leverage Golang Malware in DragonSpark Attacks to Bypass Detection

Mitsubishi Electric Acquires Nozomi in $883 Million Operational Technology Security Agreement

Critical Infrastructure Security, Endpoint Security, Governance & Risk Management Mitsubishi Electric’s $883M Acquisition of Nozomi Enhances Cyber Defense for Critical Infrastructure Michael Novinson (MichaelNovinson) • September 9, 2025 Mitsubishi Electric has announced plans to acquire Nozomi Networks for $883 million, aiming to leverage artificial intelligence and contextual data to bolster…

Read MoreMitsubishi Electric Acquires Nozomi in $883 Million Operational Technology Security Agreement

A New Platform Provides Privacy Tools for Millions of Public Employees

A pioneering marketplace launched this week, offering complimentary and discounted privacy and security services tailored for 23 million current and former public servants in the United States. Established by the Public Service Alliance (PSA), the initiative aims to address a significant uptick in threats against government employees nationwide. This platform…

Read MoreA New Platform Provides Privacy Tools for Millions of Public Employees

Medusa Ransomware Strikes Over 40 Victims in 2025, Demanding Ransoms Ranging from $100K to $15M

Medusa Ransomware Campaign Targets Diverse Sectors, Rising Threats Persist The Medusa ransomware group has intensified its activities since its emergence in January 2023, reportedly claiming close to 400 victims across various sectors. Recent statistics reveal a significant 42% surge in financially motivated attacks between 2023 and 2024. In the first…

Read MoreMedusa Ransomware Strikes Over 40 Victims in 2025, Demanding Ransoms Ranging from $100K to $15M

Virgin Money and TD Bank Affected by Salesforce Breach – Cybernews

Virgin Money and TD Bank Targeted in Salesforce Breach In a significant development in the world of cybersecurity, both Virgin Money and TD Bank have reportedly suffered a data breach linked to vulnerabilities within Salesforce, a widely-used customer relationship management platform. This incident highlights the ongoing risks that financial institutions…

Read MoreVirgin Money and TD Bank Affected by Salesforce Breach – Cybernews

Google Launches Android Update to Address Two Actively Exploited Vulnerabilities

Google Addresses Vulnerabilities in Android with Latest Update In a recent security update, Google has addressed a total of 62 vulnerabilities in its Android operating system, revealing that two of these flaws have been exploited in real-world scenarios. The vulnerabilities, categorized as high-severity, stem from the USB sub-component of the…

Read MoreGoogle Launches Android Update to Address Two Actively Exploited Vulnerabilities