The Breach News

Western Digital Confirms Customer Data Was Compromised in March Cyberattack

Western Digital Suffers Data Breach, Exposing Customer Information Western Digital, a major player in digital storage, has confirmed that its systems were breached by an unauthorized third party. During this incident, personal data belonging to customers of the company’s online store was compromised, raising significant concerns about data security and…

Read MoreWestern Digital Confirms Customer Data Was Compromised in March Cyberattack

Russia’s Coldriver Updates Malware to Bypass Detection

Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Russian Intelligence Hackers Adapt Strategies to Avoid Detection Chris Riotta (@chrisriotta) • October 21, 2025 A Russian Federal Security Service officer in assault gear. (Image: SGr/Shutterstock) A state-sponsored cyberespionage group from Russia, known for its targeting of policymakers, has swiftly enhanced its…

Read MoreRussia’s Coldriver Updates Malware to Bypass Detection

The Benefits of Replacing Passwords with Passphrases

Oct 22, 2025The Hacker NewsData Breach / Enterprise Security Decades of cybersecurity advice advocating for complex passwords—including uppercase letters, numbers, and symbols—have recently evolved. Current recommendations emphasize the importance of password length over intricate patterns. This shift focuses on the security boost provided by longer passwords and encourages the use…

Read MoreThe Benefits of Replacing Passwords with Passphrases

Serverless Security in 2025: Evolving from Log Management to Runtime Protection

In recent years, serverless computing has gained traction as businesses seek scalable and efficient solutions like AWS Lambda. While these environments provide significant advantages, they also introduce complex security challenges. Current security measures primarily focus on log monitoring and static code analysis; however, these methods have substantial limitations. For one,…

Read MoreServerless Security in 2025: Evolving from Log Management to Runtime Protection

U.S., U.K., and Australia Caution Against Iranian Hackers Targeting Microsoft and Fortinet Vulnerabilities

On Wednesday, cybersecurity agencies from Australia, the U.K., and the U.S. issued a joint advisory detailing the active exploitation of vulnerabilities in Fortinet and Microsoft Exchange ProxyShell by Iranian state-sponsored threat actors. This exploitation is part of a broader effort to gain initial access into susceptible systems, subsequently enabling activities…

Read MoreU.S., U.K., and Australia Caution Against Iranian Hackers Targeting Microsoft and Fortinet Vulnerabilities

CISA Warns of Critical Exploitable Vulnerability in Windows SMB

Attack Surface Management, Security Operations Administering Response to NTLM Vulnerability Exploitation Greg Sirico • October 21, 2025 Image: Afansev Ivan/Shutterstock The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding an actively exploited vulnerability in the Server Message Block (SMB) protocol. This flaw, identified as CVE-2025-33073, has…

Read MoreCISA Warns of Critical Exploitable Vulnerability in Windows SMB

Protecting Your Finances: Trends in Data Breaches

Revamped Cybersecurity Alert: AI-Enhanced Scams Utilize Stolen Data TOLEDO, Ohio (WTVG) – In an alarming trend, cybercriminals are leveraging artificial intelligence to breathe new life into previously stolen data, effectively repackaging past breaches for their malicious purposes. This development signals a concerning evolution in the tactics of cyber attackers, raising…

Read MoreProtecting Your Finances: Trends in Data Breaches

More Than 24 Vulnerabilities Found in Advantech Industrial Wi-Fi Access Points – Urgent Patch Recommended

Recent disclosures have unveiled nearly two dozen vulnerabilities in Advantech’s industrial-grade wireless access points, a suite of devices that are integral to operational technology networks. Among these vulnerabilities, several are critical, enabling potential attackers to bypass authentication protocols and execute code at elevated privileges, thereby posing substantial risks to the…

Read MoreMore Than 24 Vulnerabilities Found in Advantech Industrial Wi-Fi Access Points – Urgent Patch Recommended

U.S. Charges Two Iranian Hackers for Targeting Voters in the 2020 Presidential Election

On Thursday, the U.S. government unsealed an indictment charging two Iranian nationals with participating in a cyber-enabled disinformation and threat campaign aimed at undermining the integrity of the 2020 presidential elections. The indictment alleges that they gained unauthorized access to confidential voter information from at least one state election website,…

Read MoreU.S. Charges Two Iranian Hackers for Targeting Voters in the 2020 Presidential Election