Many small teams still rely on spreadsheets to share login credentials, perceiving it as a straightforward method. However, this approach poses significant risks. A single copied link, an overlooked file, or a reused password can expose sensitive information to potential attackers. In fact, compromised credentials remain one of the leading…
Security researchers have identified a massive breach involving an unsecured database that has exposed the usernames and passwords of approximately 149 million individuals, representing a substantial risk to online security. This database, which surfaced on the internet without any protective measures, contains login credentials for prominent platforms such as Gmail…
Recent findings from security researchers indicate that some hacking groups have discovered a method to circumvent a critical security feature within Microsoft Office 365, aimed at safeguarding users from phishing and malware threats. Known as Safe Links, this feature is bundled with Microsoft’s Advanced Threat Protection (ATP) and operates by…
TalkTalk Faces Major Cyber Breach Affecting Millions of Customers TalkTalk, a prominent telecommunications provider in the United Kingdom, has announced a significant data breach impacting its customer base of over four million. The company reported the incident late Thursday, revealing that it experienced a persistent cyber attack that may have…
Cybercrime, Fraud Management & Cybercrime Recent Developments: CIRO Phishing Breach, Ingram Micro Ransomware, and CVE Increase Pooja Tikekar (@PoojaTikekar) • January 22, 2026 Image: Shutterstock/ISMG ISMG compiles weekly summaries of cybersecurity breaches globally. Recent incidents include sensitive data shared by the U.S. Social Security Administration on an unauthorized Cloudflare server,…
New Cyber Threat Targets Palestinian Authority With Advanced Malware Attack In a recent development in the realm of cybersecurity, Check Point Threat Intelligence Team has identified a resurgence of an advanced persistent threat (APT) group launching targeted attacks against institutions in the Middle East, particularly the Palestinian Authority. This latest…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently revealed critical details regarding a sophisticated backdoor malicious software identified as SUBMARINE. This malware has reportedly been employed by threat actors in connection with an exploit targeting Barracuda Email Security Gateway (ESG) appliances, which has raised alarms within the cybersecurity landscape.…
A sophisticated phishing campaign targeting Facebook users has been detected, exploiting a critical zero-day vulnerability within Salesforce’s email services. This exploit enables malicious actors to craft highly tailored phishing messages utilizing Salesforce’s domain and infrastructure, significantly increasing the chances of success. Researchers at Guardio Labs, Oleg Zaytsev and Nati Tal,…
Brightspeed Investigates Data Breach Claims Affecting Over One Million Customers Brightspeed, one of the leading fiber broadband providers in the United States, is currently looking into allegations that hackers have compromised sensitive information related to more than one million of its customers. The claims emerged from a group known as…
