The Breach News

DomeWatch Data Breach Exposes Personal Information of Capitol Hill Applicants – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto, and More

Recent revelations have exposed the personal details of thousands of Americans who applied for job positions on Capitol Hill due to a significant security failure involving the House Democrats’ Official Online Resume Bank, known as DomeWatch.us. This unprotected online database inadvertently left sensitive applicant information accessible to the public. The…

Read MoreDomeWatch Data Breach Exposes Personal Information of Capitol Hill Applicants – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto, and More

Data Breaches Reported by ModMed, LifeBridge Health, and Right at Home – The HIPAA Journal

Data Breaches Impact ModMed, LifeBridge Health, and Right at Home In recent developments concerning cybersecurity, ModMed, LifeBridge Health, and Right at Home have reported significant data breaches, raising alarms among business owners and healthcare stakeholders. These incidents underline the increasing vulnerability of organizations to cyber threats and the ongoing necessity…

Read MoreData Breaches Reported by ModMed, LifeBridge Health, and Right at Home – The HIPAA Journal

Microsoft Addresses 90 New Vulnerabilities, Including Actively Exploited NTLM and Task Scheduler Issues

On November 12, 2024, Microsoft disclosed that two significant security vulnerabilities affecting Windows NT LAN Manager (NTLM) and Task Scheduler have been actively exploited in the wild. These vulnerabilities were part of the November Patch Tuesday update, which addressed a total of 90 security flaws across Microsoft products. Among the…

Read MoreMicrosoft Addresses 90 New Vulnerabilities, Including Actively Exploited NTLM and Task Scheduler Issues

Researchers Raise Alarm Over FontOnLake Rootkit Malware Aimed at Linux Systems

Recent findings from cybersecurity researchers have unveiled a targeted campaign likely aimed at entities in Southeast Asia utilizing a novel form of Linux malware, identified as “FontOnLake.” This malware is designed to facilitate remote access for its operators, gather credentials, and serve as a proxy server. The cybersecurity firm ESET,…

Read MoreResearchers Raise Alarm Over FontOnLake Rootkit Malware Aimed at Linux Systems

House Democrats’ Website Exposes Hundreds of Individuals With ‘Top Secret’ Clearance

Sensitive Data of High-Level Security Clearance Holders Exposed Online Recent research has uncovered a significant breach involving the sensitive personal information of over 450 individuals holding “top secret” security clearances with the U.S. government. This alarming revelation emerged from a database associated with applicants for roles within the Democratic Party…

Read MoreHouse Democrats’ Website Exposes Hundreds of Individuals With ‘Top Secret’ Clearance

Malware Infection on CircleCI Engineer’s Laptop Triggers Recent Security Breach

On December 16, 2022, the DevOps platform CircleCI fell victim to a sophisticated cyberattack that compromised an employee’s laptop. Unidentified threat actors utilized malware to gain access to the employee’s two-factor authentication credentials and subsequently infiltrated CircleCI’s systems. The malware was notably able to bypass the company’s antivirus defenses, underscoring…

Read MoreMalware Infection on CircleCI Engineer’s Laptop Triggers Recent Security Breach

An Essential Tool for CISOs That Can’t Be Overlooked

Agentic AI AI-Powered Threats Require AI-Driven Defense Sarah Banks • October 17, 2025    Artificial Intelligence has emerged as a significant force in the cybersecurity arena, enhancing the capabilities of defenders while simultaneously equipping attackers with unprecedented tools. Malicious actors are increasingly utilizing agentic AI to execute sophisticated, autonomous attacks…

Read MoreAn Essential Tool for CISOs That Can’t Be Overlooked

Surge in Cyber Attacks in the Philippines Driven by Deepfakes and Data Leaks — Viettel Cyber Security – The Manila Times

Surge in Cyberattacks in the Philippines Driven by Deepfakes and Data Leaks Recent reports indicate a significant rise in cyberattacks within the Philippines, primarily fueled by advanced tactics such as deepfakes and extensive data leaks. This alarming trend has raised substantial concern among business owners and cybersecurity professionals, who must…

Read MoreSurge in Cyber Attacks in the Philippines Driven by Deepfakes and Data Leaks — Viettel Cyber Security – The Manila Times

OvrC Platform Weaknesses Leave IoT Devices Vulnerable to Remote Attacks and Code Execution

Recent security audits of the OvrC cloud platform have revealed a series of vulnerabilities—specifically ten—that could enable attackers to execute code remotely on devices linked to this network. These vulnerabilities, if exploited, could allow unauthorized individuals to commandeer devices including smart power supplies, surveillance cameras, routers, and home automation systems.…

Read MoreOvrC Platform Weaknesses Leave IoT Devices Vulnerable to Remote Attacks and Code Execution