LATEST POST
US Army soldier pleads guilty to hacking telcos and extortion
TechCrunch reports: Former U.S. Army soldier Cameron John Wagenius pleaded guilty to hacking telecommunication companies and attempting to extort them by threatening to release stolen files, the Department of Justice announced on Tuesday. According to the DOJ, Wagenius, who went online with the nickname “kiberphant0m,” conspired to defraud 10 victim companies by stealing their login credentials, using brute […]
Sesame Workshop addresses ‘disgusting’ antisemitic posts on hacked Elmo X account
The now-removed posts, which were shared on the character’s official X account on Sunday, called for violence against Jews. NBC reports: Sesame Workshop said the X account for its beloved fuzzy, red monster Elmo was compromised by an “unknown hacker” who made antisemitic and racist posts to its official account on Sunday. The posts, which […]
Catastrophic MoD data breach that put up to 100,000 lives at risk finally revealed as superinjunction lifted
A huge Ministry of Defence leak in 2022 is first being revealed in detail after a superinjunction was lifted. The Independent reports: A huge Ministry of Defence data breach put the lives of up to 100,000 at risk and prompted thousands of Afghans to be evacuated to Britain under a covert £7bn scheme – then was kept secret […]
For the Record: Cyber Coverage “For” a Security Breach is Ambiguous under New Mexico Law
Wiley Rein explains: The New Mexico Court of Appeals has held that cyber policy language affording coverage “for” a security breach was ambiguous and must be construed broadly to provide coverage for a breach of contract claim “because of,” “resulting from,” or “on account of” a security breach. Kane ex rel. N.M. Health Connections, Inc. v. Syndicate […]
Ransomware Group Claims Attack on Belk
Major retailers remain vulnerable to attacks by ransomware gangs. The same gang thought to be involved in the Marks & Spencer attack has now claimed another victim. Security Week reports: The DragonForce ransomware gang has claimed responsibility for a disruptive cyberattack on US department store chain Belk. The incident was identified on May 8 and […]
CISA orders agencies to immediately patch Citrix Bleed 2, saying bug poses ‘unacceptable risk’
Recorded Future reports: The federal cybersecurity watchdog ordered all civilian agencies to immediately patch a vulnerability impacting several NetScaler products used by organizations to manage network traffic. The Cybersecurity and Infrastructure Security Agency (CISA) added the bug — tracked as CVE-2025-5777 — to its catalog of known exploited vulnerabilities on Thursday afternoon but took the extraordinary step […]
McDonald’s AI Chatbot Breach Exposes 64 Million Job Applicant Chat Records
Cyber Magazine reports: McDonald’s job applicants had their personal information exposed when security researchers accessed 64 million records through basic password attacks on the McHire platform. The breach occurred through vulnerabilities in systems operated by AI software firm Paradox.ai, which provides chatbot technology to screen candidates for the fast-food chain. Security researchers Ian Carroll and Sam […]
Arkana Ransomware Gang Claims Theft of 2.2 Million Customer Records
There has been a veritable explosion of new ransomware and extortion gangs this year. You may never have heard of Arkana, but there seems to be some link to the Qilin gang. gbhackers reports: The Arkana ransomware group burst onto the cybercrime scene with a high-profile attack on WideOpenWest (WOW!), a prominent U.S. internet service […]