LATEST POST
CrowdStrike catches — and fires — employee feeding information to hackers
Bleeping Computer reports: American cybersecurity firm CrowdStrike has confirmed that an insider shared screenshots taken on internal systems with hackers after they were leaked on Telegram by the Scattered Lapsus$ Hunters threat actors. However, the company noted that its systems were not breached as a result of this incident and that customers’ data was not […]
Salesforce cuts off access to third-party app after discovering ‘unusual activity’
The Record reports: Cloud giant Salesforce warned customers of a potential data breach on Wednesday evening after discovering “unusual activity” related to a third-party application called Gainsight. Salesforce posted a message on its website saying an investigation revealed that the activity “may have enabled unauthorized access to certain customers’ Salesforce data through the app’s connection.” Gainsight is […]
Ontario and Alberta privacy commissioners release investigation findings into PowerSchool breach affecting school boards and other educational bodies
TORONTO, ON (November 18, 2025) — Ontario and Alberta information and privacy commissioners have released the findings of their investigations into a massive privacy breach involving PowerSchool education technology (edtech) used by schools in their respective provinces. The incident, which affected millions of Canadians across the country, highlights the importance for educational bodies, including school boards, […]
From bad to worse: Doctor Alliance hacked again by same threat actor
DataBreaches.net reports that Doctor Alliance, a business associate to covered entities in the healthcare sector, recently fell prey to a cyberattack that allegedly comprised 353 GB of patient files. Making matters even worse, after assuring clients that the vulnerability had been addressed and everything was secure, it was attacked again by the same threat actor […]
Sue The Hackers – Google Sues Over Phishing as a Service
Mark Rasch writes: When something goes wrong, after exhausting all other possible alternatives, a company may go to its lawyer with the silliest question you can ever ask a lawyer — “Can I sue?” The basic answer is, “if it moves, sue it…” “If it doesn’t move… move it… then sue it…” And when asked, […]
Logitech discloses data breach after Clop claims
The Record reports: Technology manufacturer Logitech filed documents with the Securities and Exchange Commission (SEC) on Friday about a recent cybersecurity incident that involved a zero-day vulnerability. The company told the SEC that an investigation revealed that hackers exploited a bug “in a third-party software platform and copied certain data from the internal IT system.” “The zero-day […]
AI-Powered Hacking: Anthropic Reports First Largely Automated Cyberattack Linked To China
The Dallas Express reports: Anthropic researchers say they have disrupted what they described as the first reported use of artificial intelligence to direct a hacking campaign in a largely automated fashion, marking what they called a troubling development in cybersecurity. According to a threat report released this week, the operation was linked by Anthropic to the Chinese […]
Defying Hackers: Checkout.com’s Bold Stand Against Ransom Demand
WebProNews reports on an unusual, and praiseworthy, response to a cyberattack with a ransom demand. They erroneously describe it as a ransomware attack, but no encryption was involved. ShinyHunters exfiltrated data and then attempted to ransom it: In a striking rebuke to cybercriminals, Checkout.com’s chief technology officer has turned a ransomware attack into an opportunity […]