The Breach News

Microsoft’s January 2024 Windows Update Addresses 48 New Vulnerabilities

In a significant update released for January 2024, Microsoft has patched a total of 48 security vulnerabilities across its software ecosystem. This month’s Patch Tuesday includes two flaws classified as Critical and 46 as Important. Notably, there are no indications that any of these vulnerabilities are being actively exploited or…

Read MoreMicrosoft’s January 2024 Windows Update Addresses 48 New Vulnerabilities

Evilnum Hackers Target Financial Institutions with New Python-Based RAT

An adversarial group, known for its focus on the fintech sector since 2018, has updated its tactics by introducing a new Python-based remote access Trojan (RAT) designed to extract sensitive information from compromised systems. The group, identified as Evilnum, has refined its infection strategies and is now deploying the PyVil…

Read MoreEvilnum Hackers Target Financial Institutions with New Python-Based RAT

Dixons Carphone Data Breach Impacts 10 Million Customers

Dixons Carphone Faces Major Data Breach Update Dixons Carphone, a prominent electronics and telecommunications retailer in Europe, has revealed significant developments regarding its 2017 data breach. In a recent announcement, the company disclosed that the breach affected approximately 10 million customers, a substantial increase from the initial estimate of 1.2…

Read MoreDixons Carphone Data Breach Impacts 10 Million Customers

Russia’s GRU Linked to Breaches of Critical Infrastructure Cloud Systems

Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Researchers Sound Alarm Over Misconfigured Customer Network Edge Devices Mathew J. Schwartz (euroinfosec) • December 16, 2025 Image: xfilephotos/Shuttertstock Cybersecurity experts have issued a warning regarding the vulnerabilities posed by misconfigured network edge devices, emphasizing that these…

Read MoreRussia’s GRU Linked to Breaches of Critical Infrastructure Cloud Systems

Russia’s GRU Linked to Breaches in Critical Infrastructure Cloud Systems

Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Misconfigured Customer Network Edge Devices Under Attack, Researchers Warn Mathew J. Schwartz (euroinfosec) • December 16, 2025 Image: xfilephotos/Shutterstock Cybersecurity experts are sounding the alarm as Russian hackers exploit misconfigured network-edge devices to facilitate unauthorized access into…

Read MoreRussia’s GRU Linked to Breaches in Critical Infrastructure Cloud Systems

Cisco Addresses Critical Vulnerability Affecting Unity Connection Software

Cisco Addresses Critical Vulnerability in Unity Connection Software Cisco has announced the availability of software updates in response to a significant security vulnerability affecting its Unity Connection platform. This vulnerability, identified as CVE-2024-20272, has been assigned a CVSS score of 7.3, indicating a critical level of risk. The issue stems…

Read MoreCisco Addresses Critical Vulnerability Affecting Unity Connection Software

New PIN Verification Bypass Vulnerability Impacts Visa Contactless Payments

In a troubling development for the cybersecurity landscape, Visa has alerted the public to a JavaScript web skimmer called Baka. Concurrently, a group of researchers from ETH Zurich has identified a critical authentication vulnerability in Visa’s EMV-enabled payment cards, which could be exploited by cybercriminals to unlawfully extract funds from…

Read MoreNew PIN Verification Bypass Vulnerability Impacts Visa Contactless Payments