The Breach News

Jersey Organizations Encouraged to Master Fundamental Data Protection Practices

The head of the Jersey Office of the Information Commissioner (JOIC) has called on organizations to focus on foundational data protection practices to prevent personal data breaches. This statement follows a recent virtual audit conducted by the JOIC of a health department that handles sensitive information and has experienced data…

Read MoreJersey Organizations Encouraged to Master Fundamental Data Protection Practices

Active Reconnaissance Campaign Targeting NPM Repository

Third-Party Risk Management, Governance & Risk Management Malicious Packages Embed Scripts for Mapping Enterprise Networks Prajeet Nair (@prajeetspeaks) • May 24, 2025 Image: Shutterstock Security researchers have uncovered a hacking campaign involving malicious reconnaissance scripts that have been downloaded over 3,000 times from the npm repository, a key component of…

Read MoreActive Reconnaissance Campaign Targeting NPM Repository

New MSU Research Reveals Ransomware as a Major Cause of Health Data Breaches in the U.S.

Recent research conducted by experts from Michigan State University, Yale, and Johns Hopkins has identified ransomware as the primary factor behind health data breaches in the United States. This malicious software compromises victims’ files or systems, demanding payment in exchange for regaining access to compromised data. Notably, four hospitals in…

Read MoreNew MSU Research Reveals Ransomware as a Major Cause of Health Data Breaches in the U.S.

Operation Endgame 2.0: Targeting Initial Access Brokers

Cybercrime, Fraud Management & Cybercrime Law Enforcement Dismantles 300 Servers Globally, Disables 650 Domains Akshaya Asokan (asokan_akshaya) • May 24, 2025 Image: Europol In a prominent European-led initiative against malware often utilized as a precursor to ransomware, law enforcement agencies have successfully dismantled 300 servers across the globe. This operation,…

Read MoreOperation Endgame 2.0: Targeting Initial Access Brokers

Zimbra CVE-2024-27443 XSS Vulnerability Affects 129,000 Servers, Sednit Linked to the Attack

A significant cross-site scripting (XSS) vulnerability, designated CVE-2024-27443, has been identified in the CalendarInvite feature of the Zimbra Collaboration Suite, and it is currently being exploited, possibly by the Sednit hacking group. This flaw poses a risk of user session compromise, emphasizing the urgent need for prompt patching. The latest…

Read MoreZimbra CVE-2024-27443 XSS Vulnerability Affects 129,000 Servers, Sednit Linked to the Attack

Operation End Game 2.0: Targeting Initial Access Brokers

Cybercrime, Fraud Management & Cybercrime Law Enforcement Disrupts Cybercriminal Infrastructure: 300 Servers and 650 Domains Taken Down Akshaya Asokan (asokan_akshaya) • May 24, 2025 Image: Europol In a joint operation spearheaded by European law enforcement, authorities have dismantled a complex cybercriminal network, taking down 300 servers globally. This initiative, which…

Read MoreOperation End Game 2.0: Targeting Initial Access Brokers