JLR: Payroll data stolen in cybercrime that shook UK economy
Automaker admits raid that crippled its factories in August led to the theft of sensitive info
Cyber-crime15 Dec 2025 | 28
Cyber-crime
Apple, Google forced to issue emergency 0-day patches
Both admit attackers were already exploiting the bugs, with scant detail and hints of spyware-grade abuse
Patches15 Dec 2025 | 31
Honeypots can help defenders, or damn them if implemented badly
Infosec In Brief PLUS: Crims could burn your AI budgets thanks to weak defaults; CISA's top 25 vulns for 2025; And more
Security14 Dec 2025 | 3
Half of exposed React servers remain unpatched amid active exploitation
Wiz says React2Shell attacks accelerating, ranging from cryptominers to state-linked crews
Cyber-crime12 Dec 2025 | 14
Crypto-crasher Do Kwon jailed for 15 years over $40bn UST bust
Judge said his fraud was on 'epic, generational scale'
Legal12 Dec 2025 | 24
Russian hackers debut simple ransomware service, but store keys in plain text
Operators accidentally left a way for you to get your data back
Cyber-crime11 Dec 2025 | 9
LastPass hammered with £1.2M fine for 2022 breach fiasco
UK data regulator says failures were unacceptable for a company managing the world's passwords
Cyber-crime11 Dec 2025 | 35
Researcher claims Salt Typhoon spies attended Cisco training scheme
Skills gained later fed Beijing's cyber operations, according to SentinelLabs expert
Security11 Dec 2025 | 12
Users report chaos as Legal Aid Agency stumbles back online after cyberattack
Exclusive Workers frustrated with security-first changes to workflows and teething issues
Cyber-crime11 Dec 2025 | 3
700+ self-hosted Gits battered in 0-day attacks with no fix imminent
More than half of internet-exposed instances already compromised
Cyber-crime10 Dec 2025 | 14
US extradites Ukrainian woman accused of hacking meat processing plant for Russia
The digital intrusion allegedly caused thousands of pounds of meat to spoil and triggered an ammonia leak in the facility
Cyber-crime10 Dec 2025 | 23
193 cybercrims arrested, accused of plotting 'violence-as-a-service'
Minors groomed to kill and intimidate victims
Cyber-crime08 Dec 2025 | 5
Barts Health seeks High Court block after Clop pillages NHS trust data
Body confirms patient and staff details siphoned via Oracle EBS flaw as gang threatens to leak haul
Cyber-crime08 Dec 2025 | 23
Apache warns of 10.0-rated flaw in Tika metadata ingestion tool
Infosec in Brief PLUS: New kind of DDOS from the Americas; Predator still hunting spyware targets; NIST issues IoT advice; And more!
Security08 Dec 2025 | 7
Crims using social media images, videos in 'virtual kidnapping' scams
Proof of life? Or an active social media presence?
Cyber-crime05 Dec 2025 | 8
Asus supplier hit by ransomware attack as gang flaunts alleged 1 TB haul
Laptop maker says a vendor breach exposed some phone camera code, but not its own systems
Cyber-crime05 Dec 2025 | 3
Beijing-linked hackers are hammering max-severity React bug, AWS warns
State-backed attackers started poking flaw as soon as it dropped – anyone still unpatched is on borrowed time
Cyber-crime05 Dec 2025 | 4
PRC spies Brickstormed their way into critical US networks and remained hidden for years
'Dozens' of US orgs infected
Cyber-crime04 Dec 2025 | 3
Twins who hacked State Dept hired to work for gov again, now charged with deleting databases
And then they asked an AI to help cover their tracks
Cyber-crime04 Dec 2025 | 18
Aisuru botnet turns Q3 into a terabit-scale stress test for the entire internet
Cloudflare data shows 29.7 Tbps record-breaker landed amid 87% surge in network-layer attacks
Cyber-crime04 Dec 2025 | 21
Here’s your worst nightmare: E-tailer can only resume partial sales 45 days after ransomware attack
Japan’s Askul still can’t run all its sites, but at least the fax line held up OK
Security03 Dec 2025 | 9
University of Pennsylvania joins list of victims from Clop's Oracle EBS raid
Ivy League school warns more than 1,400 people after attackers siphon data via zero-day
Cyber-crime02 Dec 2025 | 1
Europol nukes Cryptomixer laundering hub, seizing €25M in Bitcoin
Operation Olympia pulls Swiss servers offline and scoops up 12TB of data in latest crime infrastructure crackdown
Cyber-crime02 Dec 2025 | 8
Kensington and Chelsea confirms IT outage was a data breach after all
Borough says attackers copied 'historical' info as three-council cyber woes drag on
Cyber-crime02 Dec 2025 | 6
FTC schools edtech outfit after intruder walked off with 10M student records
Regulator says Illuminate ignored years of warnings, stored kids' data in plain text, and kept districts in the dark
Cyber-crime02 Dec 2025 | 13
Stealthy browser extensions waited years before infecting 4.3M Chrome, Edge users with backdoors and spyware
And some are still active in the Microsoft Edge store
Cyber-crime01 Dec 2025 | 41
Four arrested in South Korea over massive IP camera snooping spree
Plus: Aussie Wi-Fi phisher and Brit dark web dealer nailed
Cyber-crime01 Dec 2025 | 6
Dutch study finds teen cybercrime is mostly just a phase
Only a select few continue into later life, mainly for the love of the game
Cyber-crime01 Dec 2025 | 9
South Korea's answer to Amazon admits breach exposed 33.7M customers
Coupang confirms internationally routed intrusion compromised more than half of the country's population
Cyber-crime01 Dec 2025 |
French Football Federation faces own-goal after club software data breach
Zut alors! Cybercrooks scored names, numbers, and license IDs
Cyber-crime01 Dec 2025 | 2
Swiss government says give M365, and all SaaS, a miss as it lacks end-to-end encryption
Infosec In Brief PLUS: Exercise app tells spies to stop mapping; GitLab scan reveals 17,000 secrets; Leak exposes Iran’s Charming Kitten; And more!
Security01 Dec 2025 | 28
PostHog admits Shai-Hulud 2.0 was its biggest ever security bungle
Automation flaw in CI/CD workflow let a bad pull request unleash worm into npm
Devops28 Nov 2025 | 8
Korean web giant Naver acquired crypto exchange Upbit, which reported a $30m heist a day later
Talk about buyer’s remorse
Cyber-crime28 Nov 2025 | 6
OpenAI cuts off Mixpanel after analytics leak exposes API users
ChatGPT maker places other vendors under review following breach
AI + ML27 Nov 2025 | 4
FCC sounds alarm after emergency tones turned into potty-mouthed radio takeover
Agency flags hijacks of insecure studio-to-transmitter gear after attackers pipe in fake alerts and vulgar audio
Cyber-crime27 Nov 2025 | 36
Asahi admits ransomware gang may have spilled almost 2M people's data
Brewer finally tallies fallout from September attack as it pushes earnings into 2026
Cyber-crime27 Nov 2025 | 5
Scottish council still rebuilding systems two years after ransomware attack
Audit sympathetic toward Comhairle nan Eilean Siar as staff stretched to capacity trying to recover
Cyber-crime27 Nov 2025 | 23
Gainsight CEO downplays breach, says only a 'handful' of customers had data stolen
Maybe if your hand has 200+ fingers...
Cyber-crime26 Nov 2025 | 7
Botnet takes advantage of AWS outage to smack 28 countries
Even worse, it might have been a 'test run' for future attacks
Cyber-crime26 Nov 2025 | 4
CodeRED emergency alert system CodeDEAD after INC ransomware attack
Regions across US affected, and one tore up its contract for the product
Cyber-crime26 Nov 2025 | 15
London councils probe cyber incident as shared IT systems knocked offline
Three boroughs confirm investigation amid service outages, disrupted phone lines, and limited online access
Cyber-crime26 Nov 2025 | 21
Lifetime access to AI-for-evil WormGPT 4 costs just $220
'Ah, I see you're ready to escalate. Let's make digital destruction simple and effective.'
Security25 Nov 2025 | 7
Corporate predators get more than they bargain for when their prey runs SonicWall firewalls
Acquirers inherit more than staff and systems
Cyber-crime25 Nov 2025 | 1
Get ready for 2026, the year of AI-aided ransomware
State-backed crews are already poking at autonomous tools, Trend Micro warns
Cyber-crime25 Nov 2025 | 4
Clop's Oracle EBS rampage reaches Dartmouth College
Uni notifies 1,400-plus Maine residents as zero-day fallout continues
Cyber-crime25 Nov 2025 |
CISA warns spyware crews are breaking into Signal and WhatsApp accounts
Attackers sidestep encryption with spoofed apps and zero-click exploits to compromise 'high-value' mobile users
Cyber-crime25 Nov 2025 | 34
Fresh ClickFix attacks use Windows Update trick-pics to steal credentials
Poisoned PNGs contain malicious code
Security24 Nov 2025 | 4
Intrusion at real estate finance biz sparks concern for big banks
SitusAMC rules out ransomware, but accounting records for major institutions potentially affected
Cyber-crime24 Nov 2025 | 2
Shai-Hulud worm returns, belches secrets to 25K GitHub repos
Trojanized npm packages spread new variant that executes in pre-install phase, hitting thousands within days
Cyber-crime24 Nov 2025 | 5
ShinyHunters 'does not like Salesforce at all,' claims the crew accessed Gainsight 3 months ago
EXCLUSIVE Shiny talks to The Reg
Cyber-crime21 Nov 2025 | 6
Four charged over alleged plot to smuggle Nvidia AI chips into China
Prosecutors say front companies, falsified paperwork, and overseas drop points used to dodge US export rules
Cyber-crime21 Nov 2025 | 6
Russia-linked crooks bought a bank for Christmas to launder cyber loot
UK cops trace street-level crime to sanctions-busting networks tied to Moscow's war economy
Cyber-crime21 Nov 2025 | 15
Salesforce-linked data breach claims 200+ victims, has ShinyHunters’ fingerprints all over it
They keep coming back for more
Cyber-crime20 Nov 2025 |
Fired techie admits sabotaging ex-employer, causing $862K in damage
PowerShell script locked thousands of workers out of their accounts
Cyber-crime20 Nov 2025 | 30
Education boards left gates wide open for PowerSchool mega-breach, say watchdogs
Privacy cops say attack wasn't just bad luck but a result of sloppy homework
Cyber-crime20 Nov 2025 | 2
US, UK, Australia sanction Lockbit gang’s hosting provider
‘Bulletproof’ hosts partly dodged the last attack of this sort
Cyber-crime20 Nov 2025 | 6
Tens of thousands more ASUS routers pwned by suspected, evolving China operation
Researchers say attacks are laying the groundwork for stealthy espionage activity
Cyber-crime19 Nov 2025 | 37
FCC looks to torch Biden-era cyber rules sparked by Salt Typhoon mess
Regulator sides with telcos that claimed new cybersecurity duties were too ‘burdensome’
Cyber-crime18 Nov 2025 | 19
Google Chrome bug exploited as a 0-day – patch now or risk full system compromise
Seventh Chrome 0-day this year
Cyber-crime18 Nov 2025 | 11
'Largest-ever' cloud DDoS attack pummels Azure with 3.64B packets per second
Aisuru botnet strikes again, bigger and badder
Cyber-crime17 Nov 2025 | 15
Biting the hand that feeds IT
