The Breach News

Chess.com Confirms Data Breach Following Exploitation of External System by Hackers

Chess.com, a premier online chess platform, has confirmed a significant data breach that has exposed the personal information of over 4,500 users. The breach occurred due to unauthorized access through an external system connected to the company’s network, underscoring vulnerabilities present in third-party integrations. Based in Orem, Utah, Chess.com revealed…

Read MoreChess.com Confirms Data Breach Following Exploitation of External System by Hackers

Severe Erlang/OTP SSH Vulnerability (CVSS 10.0) Enables Unauthenticated Code Execution

A serious security vulnerability has been identified within the SSH implementation of the Erlang/Open Telecom Platform (OTP), which could allow an attacker to execute arbitrary code without requiring prior authentication under specific circumstances. Designated as CVE-2025-32433, this flaw has been assigned a maximum CVSS score of 10.0. Researchers from Ruhr…

Read MoreSevere Erlang/OTP SSH Vulnerability (CVSS 10.0) Enables Unauthenticated Code Execution

New Variant of ESXiArgs Ransomware Surfaces Following CISA’s Release of Decryptor Tool

Recent developments have unfolded in the realm of cybersecurity following the release of a decryptor by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to assist victims of ESXiArgs ransomware attacks. Cybercriminals have responded with an updated variant that has been observed to encrypt a greater volume of data, complicating…

Read MoreNew Variant of ESXiArgs Ransomware Surfaces Following CISA’s Release of Decryptor Tool

Trump Advocates for AI in Education Amid FTC Investigation into Risks

White House Launches AI Education Initiative Amid FTC Concerns Over Chatbot Risks Chris Riotta (@chrisriotta) • September 5, 2025 Image: VideoFlow/Shutterstock The White House has initiated its Presidential Artificial Intelligence Challenge, aiming to broaden the integration of AI in educational settings as the academic year commences. This move coincides with…

Read MoreTrump Advocates for AI in Education Amid FTC Investigation into Risks

YouTube Game Cheats Distribute Arcane Stealer Malware to Russian-Speaking Users

New Malware Targeting Gamers: Arcane Stealer Discovered Recent reports have surfaced regarding a new strain of malware known as Arcane, disseminated through YouTube videos that advertise game cheats. This unique malware, particularly concerning for its sophisticated data collection methods, appears to primarily target Russian-speaking users, signaling a new wave of…

Read MoreYouTube Game Cheats Distribute Arcane Stealer Malware to Russian-Speaking Users

Managing Data Privacy Risks in Biotech: Insights from 23andMe’s Downfall

In March 2025, 23andMe, a notable player in the biotech sector known for genetic testing, declared Chapter 11 bankruptcy, exposing the vulnerabilities that surround firms handling sensitive genetic data. This drastic step followed a credential-stuffing attack in 2023, which compromised the genetic information of approximately 6.4 million users. As the…

Read MoreManaging Data Privacy Risks in Biotech: Insights from 23andMe’s Downfall

Active Exploit: CVE-2025-24054 Targets NTLM Credentials During File Downloads

On Thursday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of a medium-severity security vulnerability in Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog. This decision follows reports indicating that the flaw is actively being exploited in real-world scenarios. The vulnerability, identified as CVE-2025-24054, received a…

Read MoreActive Exploit: CVE-2025-24054 Targets NTLM Credentials During File Downloads