News
-
Data Breach Exposes Information of 10,000 VirtualMacOSX Customers
VirtualMacOSX has allegedly suffered a data breach exposing the personal information of around 10,000 customers. The sensitive data, including names, email addresses, and financial details, was made available on a cybercrime forum, raising significant security concerns among users.
-
Over 46,000 Grafana Instances Exposed to Serious Security Flaw
A significant security vulnerability affecting over 46,000 Grafana instances remains unpatched, exposing users to the risk of account takeover. The flaw, tracked as CVE-2025-4123, allows attackers to execute malicious plugins, prompting urgent calls for updates.
-
WestJet Investigates Cyberattack Disrupting Operations and Services
WestJet is investigating a cyberattack that has disrupted access to its internal systems and app, affecting service for users. The airline is working with law enforcement and Transport Canada to contain the situation.
-
Massive Malware Campaign Infects Over 269,000 Websites with Malicious JavaScript
A cybersecurity alert has been issued following the compromise of over 269,000 websites by a malware campaign utilizing malicious JavaScript code, showcasing significant vulnerabilities in online security measures.
-
CISA Warns of Ransomware Threats Exploiting SimpleHelp Vulnerabilities
CISA warns that ransomware actors are exploiting unpatched SimpleHelp vulnerabilities to target utility billing software providers, urging organizations to update their systems and implement security measures to prevent attacks.
-
Cloudflare Outage Not Linked to Security Incident, Data Remains Safe
Cloudflare has confirmed that a recent service outage was not caused by a security incident. The outage, which lasted 2.5 hours, stemmed from a failure in the underlying storage infrastructure affecting its crucial Workers KV system. The company assures that all user data remains safe and plans to enhance system resilience moving forward.
-
Apple Advances Passkey Interoperability with New Import/Export Feature
Apple has unveiled a new import and export feature for passkeys, aiming to enhance security and usability in credential management. The new process eliminates insecure file transfers and improves the interoperability of passkeys across applications.
-
Paragon Spyware Confirmed on Journalists’ Devices Amid Italian Surveillance Scandal
Research by Citizen Lab confirms Paragon spyware’s presence on the devices of European journalists, intensifying an ongoing surveillance scandal in Italy. The findings raise serious questions about the targeting of critical journalists as the Italian government navigates scrutiny over its contractual relationship with Paragon.
-
FIN6 Cybercrime Group Targets HR Professionals with Advanced Phishing Operations
The FIN6 cybercrime group has launched a sophisticated phishing campaign targeting HR professionals by exploiting the job application process to deliver malware, according to new research from DomainTools. The group’s use of trusted cloud services complicates detection efforts, highlighting the need for improved security protocols in human resources.
-
GitLab Issues Security Patches Addressing High-Severity Vulnerabilities
GitLab has released vital security updates addressing multiple high-severity vulnerabilities that allow account takeovers and malicious job injections in its DevSecOps platform. The company urges immediate upgrades to mitigate these risks.
