The Breach News

Popular PuTTY SSH Client Exposed to Key Recovery Vulnerability

The developers of the PuTTY Secure Shell (SSH) and Telnet client have issued a warning about a critical vulnerability affecting versions 0.68 through 0.80. This flaw poses a significant risk, allowing attackers to potentially recover NIST P-521 (ecdsa-sha2-nistp521) private keys, compromising the security of authenticated sessions. Identified as CVE-2024-31497, the…

Read MorePopular PuTTY SSH Client Exposed to Key Recovery Vulnerability

22-Year-Old Arrested for Hacking Water System and Putting Lives at Risk

A 22-year-old resident of Ellsworth County, Kansas, faces serious allegations after being indicted for unauthorized access to a public water facility’s computer system. This breach potentially endangered the safety and well-being of the community’s residents. The individual, identified as Wyatt A. Travnichek, has been charged with tampering with the public…

Read More22-Year-Old Arrested for Hacking Water System and Putting Lives at Risk

Microsoft Azure Defends Against 15.72 Tbps Aisuru Botnet DDoS Attack

On October 24, 2025, Microsoft Azure experienced an unprecedented Distributed-Denial-of-Service (DDoS) attack, marking the highest recorded assault on cloud infrastructure to date. This significant cyber event peaked at 15.72 Terabits per second (Tbps) and 3.64 billion packets per second (pps), specifically targeting a single endpoint located in Australia. In a…

Read MoreMicrosoft Azure Defends Against 15.72 Tbps Aisuru Botnet DDoS Attack

Inspector General Highlights Security Vulnerability in NIH Genomics Initiative

Access Management, Data Privacy, Data Security NIH Working on Fixes to Address National Security Risks and Weak Access Controls Marianne Kolbasuk McGee (HealthInfoSec) • November 17, 2025 A federal watchdog agency identified security vulnerabilities that could permit unauthorized access to genomics data collected under the NIH’s All of Us research…

Read MoreInspector General Highlights Security Vulnerability in NIH Genomics Initiative

A Remarkable Turnaround: A Company Apologizes Following a Cyber Attack

In a recent incident, Checkout.com, a payment processing service, faced a data breach attributed to the hacking group known as ShinyHunters, which exploited vulnerabilities in a legacy third-party cloud storage system. This breach reportedly affected less than 25% of the company’s current merchant base, as stated by Mariano Albera, the…

Read MoreA Remarkable Turnaround: A Company Apologizes Following a Cyber Attack

Potential Credential Leaks in Build Logs from AWS, Google, and Azure CLI Tools

Recent cybersecurity research has unveiled a critical vulnerability in command-line interface (CLI) tools from Amazon Web Services (AWS) and Google Cloud, risking the exposure of sensitive credentials within build logs. Titled LeakyCLI by the cloud security firm Orca, this vulnerability draws attention to how certain commands can inadvertently disclose sensitive…

Read MorePotential Credential Leaks in Build Logs from AWS, Google, and Azure CLI Tools

Chinese Hackers Target Vietnamese Military and Government Agencies

Recent cybersecurity investigations have revealed a sophisticated cyberespionage campaign attributed to a Chinese-speaking hacking group targeting various government and military institutions in Vietnam. The threat has been tentatively linked to the advanced persistent threat (APT) group known as Cycldek, also recognized as Goblin Panda or Hellsing, notorious for its spear-phishing…

Read MoreChinese Hackers Target Vietnamese Military and Government Agencies

Hackers Expose 269 GB of U.S. Police and Fusion Center Data Online

A significant data breach has occurred, involving a staggering 269 gigabytes of information allegedly taken from over 200 policing entities, fusion centers, and various law enforcement agencies across the United States. Known as “BlueLeaks,” this extensive cache has been made available by the hacktivist collective DDoSecrets, highlighting concerns regarding data…

Read MoreHackers Expose 269 GB of U.S. Police and Fusion Center Data Online