Salesforce is facing a serious cybersecurity threat as a criminal syndicate, identifying itself as Scattered LAPSUS$ Hunters, has made allegations of stealing around one billion records from multiple Salesforce customers. The group initiated this extortion campaign back in May, utilizing voice calls to reach organizations that utilize Salesforce for data…
Ukraine’s Computer Emergency Response Team (CERT-UA) has issued a warning regarding cyber attacks orchestrated by Belarusian state-sponsored hackers, aimed at military personnel and associated individuals amid the ongoing conflict in Ukraine. This phishing campaign is significant as it targets accounts affiliated with the Ukrainian military, specifically personal accounts hosted on…
An independent security researcher has unveiled a detailed timeline concerning the breach orchestrated by the LAPSUS$ extortion group, notably affecting Okta, a provider of authentication services. The breach was linked to a third-party service provider, Sitel, in late January 2022. Bill Demirkapi shared a two-page “intrusion timeline” on Twitter, suggesting…
Cybersecurity professionals are on high alert as a group with alleged connections to the notorious Cl0p ransomware gang has been sending a series of emails to businesses, threatening to expose data purportedly stolen from Oracle’s E-Business Suite. This software is widely used for managing critical business operations, including finance and…
Cybercrime, Fraud Management & Cybercrime Ransomware Expert Alerts Executives to Ransom Demands as High as $50 Million Mathew J. Schwartz (euroinfosec) • October 2, 2025 Image: Shutterstock/ISMG Digital extortionists are directly targeting executives at companies utilizing Oracle E-Business Suite, alleging they have compromised sensitive data, according to reports from multiple…
A series of sophisticated phishing campaigns targeting diplomatic and governmental organizations has been linked to a Russian-state sponsored hacking group known as APT29, or Cozy Bear. This threat actor has been active since January 17, 2022, employing a range of techniques that highlight their ongoing interest in gathering sensitive diplomatic…
Canadian law enforcement has apprehended Alexander “Connor” Moucka, a suspect in a series of high-profile cyberattacks linked to the breach of the cloud data warehousing platform Snowflake. The arrest, executed on October 30, 2024, was made under a provisional warrant following a request from U.S. authorities. This incident was initially…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Researchers Uncover Covert Chinese Access to US Service Provider Infrastructure Chris Riotta (@chrisriotta) • September 24, 2025 Image: Visut Chaivithooanukul/Shutterstock In a significant cybersecurity revelation, researchers have elucidated a long-running Chinese-linked cyberespionage campaign that infiltrated U.S. infrastructure and various enterprise service providers…
According to Mandiant, at least three alleged hacktivist groups purportedly aligned with Russian interests are believed to collaborate with state-sponsored cyber operatives. Mandiant, a Google-affiliated cybersecurity firm, has reported with moderate confidence that key figures behind the hacktivist Telegram channels such as ‘XakNet Team,’ ‘Infoccentr,’ and ‘CyberArmyofRussia_Reborn’ are likely coordinating…
