The Breach News

Critical Vulnerability in LiteSpeed Cache Plugin Threatens WordPress Websites

Serious Security Vulnerability Discovered in LiteSpeed Cache Plugin for WordPress A critical security vulnerability has been identified in the LiteSpeed Cache plugin for WordPress, posing significant risk to websites using the application. The flaw allows unauthenticated attackers to escalate their privileges, potentially granting them administrative access and enabling harmful interventions…

Read MoreCritical Vulnerability in LiteSpeed Cache Plugin Threatens WordPress Websites

Microsoft Alert: Extensive Phishing Campaigns Exploit Open Redirects

Microsoft has issued a stark warning concerning an extensive credential phishing campaign that exploits open redirector links in email communications. This tactic aims to deceive users into visiting malicious sites while circumventing traditional security measures. According to a report from the Microsoft 365 Defender Threat Intelligence Team, attackers combine these…

Read MoreMicrosoft Alert: Extensive Phishing Campaigns Exploit Open Redirects

ICE Aims to Establish a Covert Deportation Network in Texas

US Immigration Agency Proposes Privately-Managed Statewide Transportation System for Detained Immigrants in Texas The US Immigration and Customs Enforcement (ICE) is considering the establishment of a privately-operated statewide transportation network in Texas designed to facilitate the movement of immigrants detained across its 254 counties into various ICE facilities. This plan…

Read MoreICE Aims to Establish a Covert Deportation Network in Texas

CISA Alerts: Daixin Team Hackers Targeting Healthcare Organizations with Ransomware

Cybersecurity Alert: Daixin Team Targets U.S. Healthcare Sector with Ransomware Attacks Recent warnings from U.S. cybersecurity and intelligence agencies have highlighted alarming activities linked to a cybercriminal group known as the Daixin Team. This group, specializing in ransomware and data extortion, has zeroed in on the healthcare sector since at…

Read MoreCISA Alerts: Daixin Team Hackers Targeting Healthcare Organizations with Ransomware

Cryptohack Update: Melania Memecoins Under Allegation Scrutiny

Blockchain & Cryptocurrency, Cryptocurrency Fraud, Fraud Management & Cybercrime Also: LastPass Issues Phishing Warning, Trump Appoints New CFTC Head Rashmi Ramesh ( rashmiramesh_) • October 30, 2025 Image: Shutterstock Every week, Information Security Media Group compiles recent incidents in the realm of cybersecurity concerning digital assets. This week, the CEO…

Read MoreCryptohack Update: Melania Memecoins Under Allegation Scrutiny

More Than 120 Million Reputation.com Records Potentially Exposed Online – What You Need to Know

Reputation.com has left a staggering 320GB of logs exposed online, encompassing approximately 120 million records. This significant breach includes sensitive information such as cookies, timestamps, and unique identifiers, which pose a severe risk to account security for numerous high-profile brands. Despite being alerted to this vulnerability by cybersecurity outlet Cybernews,…

Read MoreMore Than 120 Million Reputation.com Records Potentially Exposed Online – What You Need to Know

Microsoft Alerts on Chinese Botnet Exploiting Router Vulnerabilities for Credential Theft

Microsoft Uncovers Chinese Botnet Targeting Organizations with Evasive Password Spray Attacks Microsoft has reported the activity of a Chinese threat actor known as Storm-0940, which is employing a sophisticated botnet identified as Quad7. This botnet has been linked to a series of highly evasive password spray attacks aimed at stealing…

Read MoreMicrosoft Alerts on Chinese Botnet Exploiting Router Vulnerabilities for Credential Theft

FIN7 Hackers Deploy Windows 11-Themed Documents to Install JavaScript Backdoors

In a concerning development for cybersecurity, a series of spear-phishing attacks have emerged, utilizing weaponized Microsoft Word documents themed around Windows 11 Alpha. Researchers from the cybersecurity firm Anomali reported the campaigns involved Visual Basic macros designed to deploy malicious payloads, including a JavaScript implant, against a point-of-sale (PoS) service…

Read MoreFIN7 Hackers Deploy Windows 11-Themed Documents to Install JavaScript Backdoors

Year-Long Cyberattack on US Telecom Provider Ribbon Communications

Ribbon Communications, a prominent American telecommunications company responsible for facilitating major phone and data networks globally, has disclosed a significant security breach. The firm has confirmed that nation-state hackers, believed to have affiliations with an unnamed foreign government, infiltrated its systems and remained undetected for nearly a year. Headquartered in…

Read MoreYear-Long Cyberattack on US Telecom Provider Ribbon Communications