Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Envoy Air Reports Data Compromise Linked to Clop Ransomware Campaign Anviksha More (AnvikshaMore) • October 23, 2025 Image: Shutterstock/ISMG Each week, Information Security Media Group compiles a summary of significant cybersecurity incidents globally. Recent reports reveal that the Qilin group did…
Google recently announced that its AI-driven fuzzing tool, OSS-Fuzz, has successfully uncovered 26 vulnerabilities in multiple open-source code repositories. Among these is a medium-severity flaw identified in the widely used OpenSSL cryptographic library. The open-source security team from Google highlighted in a blog post, shared with The Hacker News, that…
The Cybersecurity and Infrastructure Security Agency (CISA) in the United States has highlighted the urgent need for government agencies to address known cyber vulnerabilities. In a recent announcement, the agency published a comprehensive catalog containing vulnerabilities identified from major tech companies including Apple, Cisco, Microsoft, and Google. These vulnerabilities are…
The Universe Browser is garnering attention for promoting itself as the “fastest browser,” with claims that it safeguards users from privacy breaches and helps them avoid danger. However, recent investigations reveal a more complex and troubling reality. According to insights from Infoblox, a network security company, the browser is connected…
OpenAI announced on Friday that a vulnerability in the Redis open source library led to the unintended exposure of personal information and chat titles belonging to users of its ChatGPT service earlier in the week. This incident, first identified on March 20, 2023, permitted certain users to access snippets of…
A substantial dataset comprising over 183 million stolen usernames and passwords has been integrated into the online resource Have I Been Pwned (HIBP). Dubbed the “Synthient Stealer Log Threat Data,” this significant compilation is not merely a leak from a single entity; rather, it constitutes a vast array of information…
Greater Cincinnati Behavioral Health Services Settles Data Breach Lawsuit for $850,000 In a significant move following a data breach incident, Greater Cincinnati Behavioral Health Services (GCBHS) has agreed to pay $850,000 to settle litigation linked to the unauthorized exposure of sensitive patient information. This settlement underscores the ongoing challenges that…
On Monday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) included a recently patched critical vulnerability affecting Array Networks AG and vxAG secure access gateways in its Known Exploited Vulnerabilities (KEV) catalog. This addition follows credible reports indicating active exploitation of the flaw in real-world scenarios. The vulnerability, designated as…
Ukraine’s leading law enforcement and counterintelligence agency has revealed the identities of five individuals allegedly involved in a series of digital intrusions tied to a cyber-espionage group known as Gamaredon, with connections to Russia’s Federal Security Service (FSB). This disclosure highlights the agency’s ongoing efforts to combat cyber threats directed…
