The Department of Justice announced yesterday the seizure of the LeakBase database, one of the world’s largest online forums for cybercriminals to buy and sell stolen data and cybercrime tools. According to an affidavit unsealed on March 3, the LeakBase forum had over 142,000 members and more than 215,000 messages between members. Available on the […]
TechCrunch reports: A group of hacktivists calling themselves “Department of Peace” claimed to have hacked the Department of Homeland Security (DHS), leaking allegedly stolen documents online. On Sunday, the nonprofit transparency collective DDoSecrets published data relating to contracts between DHS, Immigration and Customs Enforcement (ICE), and more than 6,000 companies, including defense contractors Anduril, L3Harris, Raytheon, and […]
The Wall Street Journal reports: Israel hacked a popular Iranian prayer app to send notifications to potentially millions of phones Saturday morning urging the country’s military personnel to defect from the regime and join a fight to liberate the country, according to people familiar with the matter. The app, BadeSaba Calendar, is intended to help […]
India Today reports: A serious cybersecurity incident involving AI has put Mexico’s government networks under the spotlight, after hackers allegedly used an AI chatbot to pull off a large-scale data theft. According to a Bloomberg investigation, the attacker relied on Anthropic’s Claude AI to break into official systems, stealing close to 150GB of sensitive data […]
Insurance Business Magazine reports: Digital medicines platform MediMap is seeking urgent court orders in New Zealand after an individual claiming to be behind a cyber incident circulated what appears to be patient information to news organisations – an incident that is drawing attention to cyber risk, privacy exposure, and the role of cyber insurance across […]
Dark Reading reports: In 2025, cybercriminals needed less time to move from break-in to lateral movement across a network than it takes to watch a typical sitcom. An analysis by CrowdStrike of threat activity last year found attackers took just 29 minutes on average to pivot to other systems after gaining an initial foothold in […]
Bleeping Computer reports: The ShinyHunters extortion gang has claimed responsibility for breaching Dutch telecommunications provider Odido and stealing millions of user records from its compromised systems. Odido is one of the largest telecommunications companies in the Netherlands and offers mobile, broadband, and television services to millions of customers nationwide. The company disclosed the breach on February 12, […]
An article by Josh Taylor of Fortra begins: Ransomware groups are increasingly inserting AI bots into the negotiation loop to triage victims, collect leverage and scale their operations. At Fortra, I have observed a growing trend of attackers deploying chatbots for first contact, with humans stepping in only after certain thresholds are met. This approach […]
The Record reports: A Chinese state-backed hacking group is targeting Dell customers with a zero-day vulnerability impacting a popular line of operational and disaster recovery tools. Dell and Google released notices on Tuesday about CVE-2026-22769, warning that a sophisticated Chinese actor has been targeting the bug since at least mid-2024. Dell’s advisory said the vulnerability carries a […]
A press release from the Texas State Attorney General: Attorney General Ken Paxton issued Civil Investigative Demands (“CIDs”) to Blue Cross Blue Shield of Texas (“BCBS”) and Conduent Business Services LLC (“Conduent”), demanding documents and information pertinent to the investigation of the Conduent data breach that exposed the sensitive personal data of approximately four million […]
