China’s Salt Typhoon cyberspies hoovered up information belonging to millions of people in the United States over the course of the years-long intrusion into telecommunications networks, according to what a top FBI cyber official told The Register: “There’s a good chance this espionage campaign has stolen information from nearly every American,” Michael Machtinger, deputy assistant […]
The company behind the Claude chatbot said it caught a hacker using its chatbot to identify, hack and extort at least 17 companies. NBC News reports: A hacker has exploited a leading artificial intelligence chatbot to conduct the most comprehensive and lucrative AI cybercriminal operation known to date, using it to do everything from find […]
Customers are targeted through compromised OAuth access tokens from Salesloft Drift integrations. IT Pro reports: Google’s Threat Intelligence Group (GTIG) has revealed that hackers harvested user credentials from Salesforce customers in a widespread campaign during the first half of this month. The attacker, tracked as UNC6395, targeted Salesforce customer instances through compromised OAuth tokens associated […]
TransUnion has mailed out notification letters to more than 4.4 million U.S. persons affected by a breach at a third-party application. In its notification to state attorneys general in Maine and California, TransUnion reported that the incident occurred on July 28, 2025, and they learned of it on July 30, 2025. The attack did not […]
HuffPost reports: Acolytes of former White House adviser Elon Musk ignored privacy warnings and mishandled sensitive Social Security information, according to a whistleblower complaint filed Tuesday. Officials from the so-called Department of Government Efficiency potentially put hundreds of millions of Americans’ sensitive information at risk by copying a critical Social Security database and uploading it to an […]
Cybernews reports: The Farmers Insurance Group is notifying 1,111,386 people that their personal information was exposed in a recent cyberattack earlier this year. The American insurance giant said it began sending breach notification letters about the May 29th “security incident” out of an “abundance of caution” on August 22nd. The breach may have involved the […]
Reuters reports: Aug 20 – Hackers associated with some of Russia’s most prolific cyber espionage units have over the last year been leveraging a vulnerability in older Cisco software to target thousands of networking devices associated with critical infrastructure IT systems, the FBI and Cisco said on Wednesday. Hackers working within the Russian Federal Security […]
The Record reports: A recently disclosed vulnerability affecting Apple products has prompted an order for government organizations to patch the bug. The Cybersecurity and Infrastructure Security Agency (CISA) gave civilian federal agencies until September 11 to implement a fix for CVE-2025-43300 — a vulnerability affecting popular brands of Apple phones, iPads and Macbooks. Apple said on Wednesday that […]
In what is currently the third largest health data breach of 2025, kidney dialysis provider DaVita has reported a ransomware attack to HHS. Bleeping Computer reports: Kidney dialysis firm DaVita has confirmed that a ransomware gang that breached its network stole the personal and health information of nearly 2.7 million individuals. DaVita serves over 265,400 […]
The following statement was issued by Orange Belgium S.A. earlier today. It relates to the breach previously acknowledged last month: At the end of July, Orange Belgium detected a cyberattack on one of its IT systems, resulting in unauthorised access to certain data from 850,000 customer accounts. No critical data was compromised: no passwords, email […]
