The Hacker News reports: A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an “active, large-scale” exploitation campaign. The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49704 (CVSS score: 8.8), a code injection and remote code execution bug in Microsoft SharePoint Server that was […]
The Daily Security Review reports: Episource, a key healthcare services provider under UnitedHealth Group’s Optum division, has disclosed a significant data breach that exposed the sensitive personal and medical data of more than 5.4 million individuals. The company, which offers risk adjustment and medical coding services to healthcare providers and insurers, identified unauthorized access to […]
AMB Crypto reports: Read more at AMB Crypto.
Anthony DiMattia reports: Check your Ring camera settings, as you may have an unwanted guest on your accounts, users claim. Many users on social media are claiming they have noticed unknown devices accessing their security cameras. Meanwhile, the security camera company issued a statement acknowledging an issue with the app. … In response, Ring released […]
The South China Morning Post reports: The privacy watchdog has launched an investigation after Louis Vuitton Hong Kong suffered a data breach that compromised the personal information of about 419,000 customers in the city. The Office of the Privacy Commissioner for Personal Data said on Saturday that Louis Vuitton Hong Kong had notified it of […]
TechCrunch reports: Hackers are targeting a previously reported bug in the Signal clone app TeleMessage in an effort to steal users’ private data, according to security researchers and a U.S. government agency. TeleMessage, which earlier this year was revealed to be used by high-ranking officials in the Trump administration, already experienced at least one data breach in May. […]
The Independent reports: British spies and special forces soldiers were among the tens of thousands of people potentially put at risk by the catastrophic Afghan data leak, The Independent understands. The breach, made by a Ministry of Defence official in February 2022, exposed the details of Afghans seeking an escape to the UK because they claimed links to British forces put them at risk of Taliban […]
The Register reports: Aviation insiders say Serbia’s national airline, Air Serbia, was forced to delay issuing payslips to staff as a result of a cyberattack it is battling. Internal memos, seen by The Register, dated July 10 told staff: “Given the current situation and the ongoing cyberattacks, for security reasons, we will postpone the distribution of […]
Bleeping Computer reports an update to previous revelations about the breach of Co-op: UK retailer Co-op has confirmed that personal data of 6.5 million members was stolen in the massive cyberattack in April that shut down systems and caused food shortages in its grocery stores. Co-op (short for the Co-operative Group) is one of the […]
TechCrunch reports: Former U.S. Army soldier Cameron John Wagenius pleaded guilty to hacking telecommunication companies and attempting to extort them by threatening to release stolen files, the Department of Justice announced on Tuesday. According to the DOJ, Wagenius, who went online with the nickname “kiberphant0m,” conspired to defraud 10 victim companies by stealing their login credentials, using brute […]
