The Breach News

Secret CISA Credentials Exposed in Public GitHub Repository: A Shocking Oversight

In a concerning development for U.S. cybersecurity, Brian Krebs has reported that the Cybersecurity and Infrastructure Agency (CISA) has inadvertently left a cache of sensitive information exposed on a public GitHub repository since at least November 2025. This repository, ominously named “Private-CISA,” has revealed plaintext passwords, SSH private keys, tokens,…

Read MoreSecret CISA Credentials Exposed in Public GitHub Repository: A Shocking Oversight

Trellix Confirms Breach of Source Code Following Unauthorized Repository Access

Trellix, a cybersecurity firm, has reported experiencing a breach that granted unauthorized access to a portion of its source code repository. The company has stated that it recently discovered this security compromise and is taking immediate steps to address the issue by collaborating with leading forensic experts. Additionally, Trellix has…

Read MoreTrellix Confirms Breach of Source Code Following Unauthorized Repository Access

iOS 13 Flaw Allows Third-Party Keyboards to Bypass ‘Full Access’ Denial

Following the recent release of iOS 13 and iPadOS, Apple has issued a critical security advisory regarding an unpatched vulnerability affecting third-party keyboard applications. This warning is particularly relevant for users of iPhones and iPads, as it presents a significant risk to personal data security. The issue arises from the…

Read MoreiOS 13 Flaw Allows Third-Party Keyboards to Bypass ‘Full Access’ Denial

Global Crackdown: 276 Arrested, 9 Crypto Scam Centers Shut Down, $701M Seized

In a significant international crackdown, authorities from the United States and China have detained over 276 suspects and dismantled nine call centers implicated in fraudulent cryptocurrency schemes targeting American citizens, leading to extensive financial losses amounting to millions of dollars. This operation was spearheaded by the Dubai Police as part…

Read MoreGlobal Crackdown: 276 Arrested, 9 Crypto Scam Centers Shut Down, $701M Seized

Hacker Unleashes ‘Unpatchable’ Jailbreak for All iOS Devices, from iPhone 4s to iPhone X

In a significant development for the iOS ecosystem, a hacker and cybersecurity researcher has publicly released what is being described as a “permanent unpatchable bootrom exploit.” This advancement, known as Checkm8, is designed to jailbreak a broad spectrum of iOS devices, specifically those ranging from the iPhone 4s, equipped with…

Read MoreHacker Unleashes ‘Unpatchable’ Jailbreak for All iOS Devices, from iPhone 4s to iPhone X

Critical cPanel Vulnerability Exploited to Target Government and MSP Networks

A new threat actor has emerged, actively compromising government and military organizations in Southeast Asia, with additional focus on a select group of managed service providers (MSPs) and hosting services located in the Philippines, Laos, Canada, South Africa, and the United States. The attackers are exploiting a recently identified vulnerability…

Read MoreCritical cPanel Vulnerability Exploited to Target Government and MSP Networks