The Breach News

Unveiling Hidden Dangers in the Software Supply Chain: An In-Depth Exploration

As organizations increasingly integrate open-source components into their application infrastructures, relying solely on traditional Software Composition Analysis (SCA) tools for security against open-source threats proves inadequate. Open-source libraries expedite development by reducing coding and debugging time; however, as these libraries accumulate in codebases, organizations must recognize the comprehensive attack surface…

Read MoreUnveiling Hidden Dangers in the Software Supply Chain: An In-Depth Exploration

TrickBot Linux Variants Remain Active in the Wild Following Recent Takedown

Recent investigations indicate that despite concerted efforts to disrupt the TrickBot malware operations, its creators are adapting and evolving their tactics. A report from cybersecurity firm Netscout reveals that the authors of TrickBot have ported elements of their malicious code to Linux, broadening their potential target base. Initially identified in…

Read MoreTrickBot Linux Variants Remain Active in the Wild Following Recent Takedown

Two Hackers Sentenced for £77 Million Data Breach of TalkTalk in 2015

In a significant development concerning cybersecurity, two hackers have been sentenced for their involvement in the 2015 breach of TalkTalk, one of the United Kingdom’s largest telecommunications companies. The incident resulted in the theft of personal information, banking details, and credit card information from over 156,000 customers. Matthew Hanley, 23,…

Read MoreTwo Hackers Sentenced for £77 Million Data Breach of TalkTalk in 2015

Saviynt Secures $700M at $3B Valuation to Enhance Identity Defense Solutions

Agentic AI, Identity & Access Management, Security Operations KKR-Led Series B Investment Fuels Focus on AI Agent and Non-Human Identity Management Michael Novinson (MichaelNovinson) • December 11, 2025 Paul Zolfaghari, President, Saviynt (Image: Saviynt) Identity security leader Saviynt has successfully raised $700 million, underpinned by a Series B financing round,…

Read MoreSaviynt Secures $700M at $3B Valuation to Enhance Identity Defense Solutions

Client Dilemma

Client Challenge JavaScript is disabled in your browser. Please enable JavaScript to proceed. A critical component of this site failed to load. This issue may stem from browser extensions, network connectivity problems, or specific settings in your browser. We recommend checking your connection, disabling any ad blockers, or attempting to…

Read MoreClient Dilemma

Urgent: Serious Jenkins Vulnerability Poses RCE Risk – Update Now!

The maintainers of Jenkins, an open-source automation server widely used for continuous integration and delivery, have patched nine security vulnerabilities, including one critical issue that poses a serious risk of remote code execution (RCE). This vulnerability, identified as CVE-2024-23897, allows unauthorized users to read arbitrary files from the Jenkins controller’s…

Read MoreUrgent: Serious Jenkins Vulnerability Poses RCE Risk – Update Now!

FBI and DHS Alert: Major Ransomware Threats Targeting Healthcare Systems

On Wednesday, a joint alert was issued by the Federal Bureau of Investigation (FBI), the Departments of Homeland Security, and Health and Human Services (HHS), signaling an urgent escalation in ransomware attacks directed at the healthcare sector. This warning highlights an alarming trend where malicious cyber actors are targeting hospitals…

Read MoreFBI and DHS Alert: Major Ransomware Threats Targeting Healthcare Systems

Doxers Impersonating Law Enforcement Are Deceiving Big Tech into Revealing Users’ Private Information

Incident of Impersonation Data Breach Raises Alarms Over Cybersecurity Risks On September 4, a privacy specialist at Charter Communications responded to an emergency data request from someone impersonating Officer Jason Corse of the Jacksonville Sheriff’s Office. Within minutes, sensitive personal information—including the name, home address, phone numbers, and email address…

Read MoreDoxers Impersonating Law Enforcement Are Deceiving Big Tech into Revealing Users’ Private Information

True Identity of Hacker Behind LinkedIn and Dropbox Database Sales Uncovered

The true identity of the hacker known as Tessa88, linked to numerous high-profile cyber incidents such as the breaches of LinkedIn, Dropbox, and MySpace, has been uncovered as Maksim Vladimirovich Donakov, a resident of Penza, Russian Federation. Tessa88 rose to notoriety in early 2016 by offering stolen data from some…

Read MoreTrue Identity of Hacker Behind LinkedIn and Dropbox Database Sales Uncovered