In a significant data breach, activist Emma Best has publicly released over 11,000 private messages from a Twitter group associated with WikiLeaks and its close supporters, dating from 2015 to 2017. This release has exposed the internal discussions of an organization known for disseminating confidential information. The exposed messages had…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Researchers Sound Alarm Over Misconfigured Customer Network Edge Devices Mathew J. Schwartz (euroinfosec) • December 16, 2025 Image: xfilephotos/Shuttertstock Cybersecurity experts have issued a warning regarding the vulnerabilities posed by misconfigured network edge devices, emphasizing that these…
In a troubling development for the cybersecurity landscape, Visa has alerted the public to a JavaScript web skimmer called Baka. Concurrently, a group of researchers from ETH Zurich has identified a critical authentication vulnerability in Visa’s EMV-enabled payment cards, which could be exploited by cybercriminals to unlawfully extract funds from…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially included a critical vulnerability affecting Microsoft SharePoint Server in its Known Exploited Vulnerabilities (KEV) catalog, highlighting evidence of active exploitation within various environments. This vulnerability, identified as CVE-2023-29357, has garnered a significant CVSS score of 9.8, indicating its severity and…
Malicious GitHub Repository Impersonating CVE-2025-55182 Scanner Exposed A GitHub repository masquerading as a vulnerability scanner for CVE-2025-55182, commonly known as “React2Shell,” was recently uncovered as a source of malware. The project, titled React2shell-scanner, was associated with the GitHub user niha0wa but has been removed from the platform after community alerts…
Cybersecurity professionals have been well aware that cybercriminals would exploit the uncertainty surrounding the COVID-19 pandemic to enhance their cyberattacks. Malicious communications have frequently incorporated COVID-19 themes, leveraging public fear to increase their effectiveness. Though anecdotal evidence has suggested various forms of pandemic-related cyberattacks, concrete data regarding their true impact…
In a significant development for cybersecurity, Juniper Networks has announced critical updates designed to address a severe remote code execution (RCE) vulnerability affecting its SRX Series firewalls and EX Series switches. Identified as CVE-2024-21591, this flaw has garnered a high CVSS rating of 9.8, indicating its potential for exploitation. The…
In a significant cyber assault following the assassination of Iranian Major General Qasem Soleimani, the U.S. Department of Justice has indicted two hackers for defacing multiple websites within the United States. The defendants, Behzad Mohammadzadeh, also known as Mrb3hz4d, aged 19, and Marwan Abusrour, known as Mrwn007, aged 25, face…
Data Breach at British Airways Exposes Personal and Financial Information of Customers British Airways, known as “The World’s Favorite Airline,” has confirmed a significant data breach affecting up to 380,000 customers. This incident, which lasted for over two weeks, has compromised the personal details and credit card information of those…
