A China-linked threat actor tracked as Storm-1175 is running high-velocity ransomware campaigns against internet-facing systems across healthcare, education, professional services, and finance organizations in Australia,...
Check Point Research has disclosed Operation TrueChaos, a targeted espionage campaign that exploited a zero-day vulnerability in the TrueConf video conferencing platform to push malicious...
On April 1, 2026, attackers drained approximately $285 million in user assets from Drift Protocol, the largest decentralized perpetual futures exchange on the Solana blockchain....
A SQL database backup belonging to 321transit.com, the official website for Space Coast Area Transit (SCAT), Brevard County's public transportation system, was allegedly left exposed...
Nasir Security, an Iran-aligned hacktivist group operating under the name "Sons of Al-Naseer" in its latest post, has claimed to have breached Kuwait's Ministry of...
A large-scale automated credential harvesting campaign has been actively exploiting CVE-2025-55182, the critical React Server Components vulnerability known as React2Shell, compromising at least 766 hosts...
Also Known As: PCPcat, ShellForce, DeadCatx3, PersyPCP, CanisterWorm First Observed: September 2025 Primary Operations: Supply chain compromise, credential theft, ransomware staging, cryptomining, destructive wiping Motivation:...
CERT-EU has attributed the European Commission cloud breach to TeamPCP, the same threat group behind the Trivy and LiteLLM supply chain attacks, and confirmed the...
Mercor, a $10 billion AI recruiting and training data startup whose clients include OpenAI, Anthropic, and Meta, confirmed on March 31 that it was compromised...
Hims & Hers, the San Francisco-based telehealth company with nearly $1 billion in annual revenue, has confirmed a data breach affecting its third-party customer service...
Check your email against 12 billion+ leaked records — then set up alerts so you're the first to know if you appear in a new breach.
Powered by BreachNews
