Auction House Sotheby’s Data Breach Reveals Sensitive Personal Information In a significant cybersecurity incident, renowned auction house Sotheby’s has reported a data breach that has compromised sensitive personal information of its clients. This breach has raised substantial concerns over the security practices in place at one of the world’s most…
A new DDoS campaign linked to a threat actor identified as Matrix has been detected, capitalizing on security weaknesses in Internet of Things (IoT) devices. This campaign is notable for its widespread approach, leveraging these vulnerabilities to build a disruptive botnet. According to Assaf Morag, director of threat intelligence at…
Recent investigations conducted by Qihoo 360’s Netlab security team have unveiled an emergent botnet named “Abcbot.” This entity demonstrates worm-like propagation methods, targeting Linux systems to execute distributed denial-of-service (DDoS) attacks on various victims. The botnet’s inception can be traced back to July 2021, yet its latest variants, identified as…
Jaguar Land Rover Cyber Attack Estimated to Cost UK £1.9 Billion In a significant cybersecurity incident, Jaguar Land Rover (JLR) has reportedly experienced a cyber attack that may result in losses of at least £1.9 billion for the UK. This event has been characterized as potentially the most economically damaging…
Western Digital Suffers Data Breach, Exposing Customer Information Western Digital, a major player in digital storage, has confirmed that its systems were breached by an unauthorized third party. During this incident, personal data belonging to customers of the company’s online store was compromised, raising significant concerns about data security and…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Russian Intelligence Hackers Adapt Strategies to Avoid Detection Chris Riotta (@chrisriotta) • October 21, 2025 A Russian Federal Security Service officer in assault gear. (Image: SGr/Shutterstock) A state-sponsored cyberespionage group from Russia, known for its targeting of policymakers, has swiftly enhanced its…
Oct 22, 2025The Hacker NewsData Breach / Enterprise Security Decades of cybersecurity advice advocating for complex passwords—including uppercase letters, numbers, and symbols—have recently evolved. Current recommendations emphasize the importance of password length over intricate patterns. This shift focuses on the security boost provided by longer passwords and encourages the use…
In recent years, serverless computing has gained traction as businesses seek scalable and efficient solutions like AWS Lambda. While these environments provide significant advantages, they also introduce complex security challenges. Current security measures primarily focus on log monitoring and static code analysis; however, these methods have substantial limitations. For one,…
On Wednesday, cybersecurity agencies from Australia, the U.K., and the U.S. issued a joint advisory detailing the active exploitation of vulnerabilities in Fortinet and Microsoft Exchange ProxyShell by Iranian state-sponsored threat actors. This exploitation is part of a broader effort to gain initial access into susceptible systems, subsequently enabling activities…
