Cybersecurity Insiders reports: Cyberattacks have long evolved in waves, with ransomware groups historically choosing their victims based on industry type or company size. Financial institutions, healthcare providers, and large enterprises were often prime targets due to their ability to pay hefty ransoms. However, a new trend is emerging that signals a shift in attacker strategy. […]
Rhode Island Current reports that the state has settled with Deloitte, the contractor responsible for the RIBridges data breach. A $7 million handshake between the Rhode Island Department of Administration and global consultancy Deloitte over the latter’s role in the 2024 RIBridges data breach has brought the state’s total windfall to $12 million for the […]
The Register reports: A previously unknown threat group using tried-and-tested social engineering tactics – Microsoft Teams chat invitations and helpdesk staff impersonation – is also using custom malware in its data-stealing attacks, according to Google’s Threat Intelligence Group. The threat hunters say they spotted a “large email campaign” in late December 2025. The attack started by spamming […]
The Record reports: A British hacker pleaded guilty Friday in U.S. federal court to participating in a sweeping cybercrime campaign that siphoned at least $8 million in cryptocurrency from companies and individuals, federal prosecutors said. Tyler Robert Buchanan, 24, of Dundee, Scotland, admitted to one count of conspiracy to commit wire fraud and one count […]
Cybernews reports: Vercel, a cloud platform and maintainer of Next.js, a major web development framework, has been hacked, and hackers are selling access to credentials that could help pull off “the largest supply chain attack ever if done right.” An OAuth token, granting too many permissions, became a single point of failure. Vercel acknowledged that […]
Will P3 wind up on a vendors not to be trusted list? DataBreaches.net reports: P3 Global Intel advertises itself as a “fully integrated and state-of-the-art tip acquisition and tip management solution that has quickly become the leading choice of Crime Stoppers Programs, Law Enforcement Agencies, Campus Safety Programs, and Federal Agency Initiatives.” 35,000 U.S. schools use P3 Campus, which […]
On April 8, The Record reported: The Los Angeles Police Department on Tuesday announced that hackers gained access to a Los Angeles City Attorney’s Office digital storage system containing sensitive police documents. The LAPD described the documents as materials that had been turned over in discovery from previously resolved or settled LAPD civil litigation cases. […]
The Crypto Citizens Network reports on a somewhat different breach tactic where threat actors made a video of internal systems and threaten to leak the videos if their payment demands are not met. Kraken is standing firm that it won’t pay: In crypto, breaches usually start with code. This one didn’t. Kraken, one of the […]
ABC (Australia) reports: Some Booking.com customers are being warned their personal information may have been accessed by unauthorised third parties, prompting fresh concerns about the security of travellers’ data. The company operates more than 28 million accommodation listings globally, connecting travellers to hotels, apartments and other properties across hundreds of countries, as well as flights, […]
APB Live reports: A ransomware group known as ShinyHunters has added Rockstar Games to its dark web leak site, threatening to publish or sell stolen data if the gaming giant does not pay up. Rockstar Games has confirmed the breach, linking it to a third-party vendor, and says only a limited amount of non-material company […]
