In a troubling development for the retail sector, Forever 21 has announced a payment card data breach affecting its customers. The Los Angeles-based fast-fashion retailer revealed that hackers managed to access payment card information from various store locations, posing a significant cybersecurity risk. The incident was brought to light earlier…
Cryptocurrency Fraud , Finance & Banking , Fraud Management & Cybercrime Also: Trader Loses $50M in USDT Due to Address Poisoning Scam Rashmi Ramesh (@rashmiramesh_) • December 25, 2025 Image: Shutterstock This week, the Information Security Media Group provides a summary of critical cybersecurity incidents impacting the digital asset space.…
Dec 25, 2025Ravie LakshmananData Breach / Financial Crime Recent findings from TRM Labs reveal that encrypted vault backups compromised in the 2022 LastPass data breach have been exploited by cybercriminals to access crypto assets, particularly due to the use of weak master passwords. This criminal activity has reportedly persisted into…
Emergence of the Dark_Nexus IoT Botnet: A New Threat to Cybersecurity Cybersecurity experts have unveiled a sophisticated new IoT botnet known as “dark_nexus,” which is leveraging compromised smart devices to launch distributed denial-of-service (DDoS) attacks. This emerging threat can be triggered on demand through platforms offering DDoS-for-hire services, placing numerous…
Topics: Fraud Management & Cybercrime, Fraud Risk Management, Ransomware Additional Coverage: SudamericaData Leak, RaccoonO365 Arrest, and Nefilim Case Update By Pooja Tikekar (@PoojaTikekar) • December 25, 2025 Image: Shutterstock/ISMG Every week, the Information Security Media Group provides a roundup of global cybersecurity incidents and data breaches. In this edition, a…
LastPass to Pay Up to $24 Million Following Data Breach Settlement LastPass, a well-known password management service, has reached a settlement agreement valued at up to $24 million in response to a lawsuit arising from a significant data breach. The settlement entails a direct payout of $8.2 million to address…
Google has distributed critical security updates addressing seven vulnerabilities in its Chrome browser, one of which is a high-severity zero-day exploit currently being weaponized in the wild. This vulnerability, identified as CVE-2023-6345, is classified as an integer overflow flaw within Skia, an open-source 2D graphics library frequently utilized in web…
As hospitals globally grapple with the ongoing coronavirus pandemic, cybercriminals are intensifying their attacks on vulnerable healthcare institutions. The latest report from Palo Alto Networks reveals that threat actors are exploiting this crisis, targeting organizations at the forefront of pandemic response with ransomware and data-stealing malware. According to the report…
Uber’s Concealed Data Breach Exposed Personal Information of 57 Million Users Uber Technologies Inc. has found itself in the spotlight yet again, this time due to revelations surrounding a significant data breach that took place in October 2016. The company has acknowledged that the breach compromised the personal data of…