A new hacking group reportedly aligned with Iranian national interests has been observed executing a password spraying campaign aimed at defense technology companies in the U.S., European Union, and Israel. This campaign has also extended to regional ports of entry in the Persian Gulf and maritime companies operating in the…
A significant security breach has come to light, involving the exposure of 183 million email accounts along with their corresponding passwords. This data, reportedly stemming from a malware-driven theft, has been added to the renowned breach-notification platform, Have I Been Pwned, run by cybersecurity expert Troy Hunt. Following its discovery…
Cybercrime, Fraud Management & Cybercrime, Identity & Access Management Malware Captures Billions of Credentials Mathew J. Schwartz (euroinfosec) • October 24, 2025 Image: Shutterstock Credential theft via infostealers has escalated to alarming levels, as cybercriminals continuously adapt to enhanced security measures. By infiltrating corporate systems with malware that captures session…
The Medusa ransomware group has publicly disclosed 186.36 GB of compressed data, which they allege was stolen from Comcast Corporation, a prominent global media and technology entity based in the United States. As highlighted in an earlier report by Hackread.com, the group claimed to have infiltrated Comcast in late September…
The Cybersecurity and Infrastructure Security Agency (CISA) in the United States has highlighted the urgent need for government agencies to address known cyber vulnerabilities. In a recent announcement, the agency published a comprehensive catalog containing vulnerabilities identified from major tech companies including Apple, Cisco, Microsoft, and Google. These vulnerabilities are…
Identity & Access Management, Security Operations Microsoft Warns of Hackers Shifting Focus to Identity Compromises Akshaya Asokan (asokan_akshaya) • October 22, 2025 Image: Shutterstock In its annual cybersecurity report, Microsoft has alerted businesses about a significant increase in identity-based attacks, emphasizing that hackers are now more likely to “log in”…
Attack Surface Management, Security Operations Administering Response to NTLM Vulnerability Exploitation Greg Sirico • October 21, 2025 Image: Afansev Ivan/Shutterstock The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding an actively exploited vulnerability in the Server Message Block (SMB) protocol. This flaw, identified as CVE-2025-33073, has…
Microsoft has recently disclosed multiple security vulnerabilities affecting its AI, cloud services, enterprise resource planning systems, and Partner Center solutions. Among the vulnerabilities identified is a critical flaw that has already been exploited in the wild, raising alarms within the cybersecurity community. The most pressing concern is associated with a…
Microsoft recently disclosed the successful seizure of 42 malicious domains linked to a China-based cyber espionage group, targeting organizations in the United States and 28 other nations. This operation followed a legal warrant issued by a federal court in Virginia, affirming the need to counteract these threats. The group, referred…
