SonicWall has issued a critical alert regarding active exploitation efforts targeting a zero-day vulnerability in its Secure Mobile Access (SMA) 100 series devices. This vulnerability affects both physical and virtual SMA 100 10.x devices, covering models such as the SMA 200, 210, 400, 410, and 500v. This issue came to…
Microsoft Concludes Investigation into SolarWinds Hack: Key Findings Revealed On Thursday, Microsoft announced the completion of its investigation into the SolarWinds cyberattack. The company confirmed that while the attackers were indeed able to exfiltrate source code from its repositories, there is no evidence that they leveraged this breach to access…
On November 13, 2025, DoorDash Inc. revealed it had suffered a significant data breach resulting from a social engineering attack that occurred the previous month. The breach exposed crucial customer data, including names, email addresses, phone numbers, and delivery addresses, raising concerns about the persistent vulnerabilities inherent to even the…
Over the last decade, the English-speaking cybercriminal landscape, known as “The COM,” has grown from a niche group dedicated to trading rare social media usernames into a complex, service-driven underground economy orchestrating a wide array of global cyberattacks. Foundational communities like Dark0de and RaidForums have played a critical role in…
Hyundai AutoEver America, LLC (HAEA), a key IT services provider for the Hyundai Motor Group, has confirmed a data breach that occurred in early 2025, potentially affecting personal information related to approximately 2.7 million vehicles and their owners. In response, the company is offering two years of complimentary credit monitoring…
Recent developments in the realm of artificial intelligence have brought to light a serious vulnerability affecting encrypted communications. Dubbed ‘Whisper Leak,’ this sophisticated side-channel attack, disclosed by Microsoft researchers, has the potential to glean sensitive information from encrypted traffic directed at large language models (LLMs). As outlined in a recent…
Uber Technologies Inc. has recently acknowledged a security breach affecting its internal computer systems, first reported late Thursday. The company stated that there is currently “no evidence” suggesting that sensitive user data, such as trip history, has been accessed during the incident. In a public statement, Uber clarified, “We have…
A significant data leak has come to light, compromising over 183 million email passwords, including tens of millions connected to Gmail accounts. Cybersecurity experts are characterizing this incident as one of the most substantial credential dumps ever discovered. This vast dataset, amounting to 3.5 terabytes of sensitive information, emerged online…
GoTo, Formerly LogMeIn, Reports Data Breach Affecting User Data GoTo, the parent company of LastPass and formerly known as LogMeIn, disclosed on Tuesday a significant data breach involving the theft of encrypted backups of customer information. This incident, which occurred in November 2022, involved unauthorized actors accessing data from a…
