Home > Cyber Attacks

Cyber Attacks

Check Point Headquarters in Redwood City, CA.

Check Point VPN Zero-Day Added to KEV After Qilin-Linked Activity

June 13, 2026

Check Point says attackers have exploited CVE-2026-50751 since May, with one intrusion linked to a Qilin ransomware affiliate.

ShinyHunters Linked to Active Exploitation of Oracle PeopleSoft Zero-Day Affecting Universities

by m00s3c

June 13, 2026

Researchers have linked ShinyHunters to active exploitation of a critical Oracle PeopleSoft vulnerability affecting universities and other organizations.

Handala blog post claiming cyberattack against California water infrastructure

Handala Claims Cyberattack on California Water Infrastructure

by m00s3c

June 11, 2026

Handala claims it breached California water infrastructure and released alleged proof-of-access material, customer data samples, and utility system screenshots.

Screenshot of a forum post titled "Wickr Enterprise Admin API Access - Internal Infrastructure Proof." The post claims access to Wickr Enterprise administrative infrastructure and includes an alleged internal API response showing AWS related service references and administrative endpoint information. Sensitive credentials and infrastructure details have been redacted.

Threat Actor Claims Alleged Wickr Enterprise Admin API Access

by m00s3c

June 10, 2026

A cybercrime forum account claims alleged access to a Wickr Enterprise Admin API, though the available evidence remains limited and...

Redacted screenshot from a cybercrime forum post in which a threat actor claims access to a Fortinet SSL VPN environment allegedly associated with the Argentine Army. The image includes the Argentine Army emblem, screenshots of a VPN portal, and the actor’s description of purported internal network access capabilities. BreachNews has not independently verified the claim.

Threat Actor Claims Access to Argentine Army Fortinet SSL VPN Infrastructure

by m00s3c

June 7, 2026

A threat actor linked to Ecuador's electoral breach claims access to the Argentine Army's Fortinet SSL VPN, potentially enabling internal...

Screenshot of a forum post claiming unauthorized access to Ecuador's National Electoral Council (CNE) systems. The post alleges full SSH access to internal infrastructure, compromise of the electoral registry database, exfiltration of 13.5 million voter records, and the ability to alter voter data. Several supporting screenshots and a network architecture diagram are included alongside a ransom demand.

Threat Actor Claims Access to Ecuador Electoral Registry Systems

by m00s3c

June 5, 2026

A threat actor claims to have accessed Ecuador's National Electoral Council systems, allegedly exfiltrating over 13.5 million voter records and...

Miasma Supply Chain Attack Hits 57 npm Packages and AI Developer Tools

by m00s3c

June 4, 2026

A rapid Miasma supply chain attack compromised 57 npm packages and Microsoft GitHub repositories, targeting AI developer tools and stealing...

Illustration depicting an Instagram account takeover through Meta AI support, showing account recovery screens, a Meta AI chat interface, a hacker silhouette, and password reset emails being redirected to an attacker-controlled address.

Hackers Reportedly Exploited Meta AI Support Bot to Hijack Instagram Accounts

by m00s3c

June 2, 2026

Hackers exploited Meta's AI support bot to hijack Instagram accounts by manipulating the password recovery process, affecting high-profile users before...

Dark-themed illustration showing overlapping GitHub, npm, and Visual Studio Code interfaces with source code windows and dependency-style connections representing modern software supply chain attacks targeting developer ecosystems.

The TeamPCP Worm May Have Created a Much Bigger Supply Chain Problem

by m00s3c

May 24, 2026

The TeamPCP-linked GitHub breach, originating from a malicious Visual Studio Code extension, reveals an evolving software supply chain threat leveraging...

Tux Linux penguin on dark cyber-themed background with glowing blue network lines and subtle red accents

Linux Root Exploits Keep Piling Up as Third Major Privilege Escalation Flaw Emerges in Weeks

by m00s3c

May 17, 2026

Three major Linux kernel privilege escalation vulnerabilities called Copy Fail, Dirty Frag, and Fragnesia have emerged, affecting major distributions and...