Pro-Israel hacktivist group claims reponsibility for alleged Iranian bank hack

Lorenzo Franceschi-Bicchierai / techcrunch - The apparent cyberattack comes as Israel and Iran engage in a days-long escalating military conflict.

Back to Top / Tuesday, June 17, 2025, 6:20 pm / permalink 8276 / 4 stories in 8 months

Sitecore CMS flaw let attackers brute-force 'b' for backdoor

Connor Jones / theregister - Hardcoded passwords and path traversals keeping bug hunters in work Security researchers have issued a warning about a pre-authentication exploit chain affecting a CMS used by some of the biggest companies in the world.…

Back to Top / Tuesday, June 17, 2025, 12:21 pm / permalink 8214 / 2 stories in 8 months

After just 12 days, Nintendo is already nuking Switch 2 consoles for players caught using Mig Flash — popular cartridge allows Switch 1 games on the new console, but users say they're only using their own ROMs

tomshardware - Be wary if you're planning to use the MIG-Switch with your Nintendo Switch 2, with user reports indicating a widespread ban on consoles that have been used with the flash cart.

Back to Top / Tuesday, June 17, 2025, 10:21 am / permalink 8201 / 6 stories in 8 months

23andMe hit with £2.3M fine after exposing genetic data of millions

Connor Jones / theregister - Penalty follows year-long probe into flaws that allowed attack to affect so many The UK's data watchdog is fining beleaguered DNA testing outfit 23andMe £2.31 million ($3.13 million) over its 2023 mega breach.…

Back to Top / Tuesday, June 17, 2025, 9:21 am / permalink 8195 / 5 stories in 8 months

Bots are overwhelming websites with their hunger for AI data

Thomas Claburn / theregister - GLAM-E Labs report warns of risk to online cultural resources Bots harvesting content for AI companies have proliferated to the point that they're threatening digital collections of arts and culture.…

Back to Top / Tuesday, June 17, 2025, 6:20 am / permalink 8182 / 2 stories in 8 months

Canada's WestJet says 'expect interruptions' online as it navigates cybersecurity turbulence

Connor Jones / theregister - Flights still flying - just don't count on the app or website working smoothly Canadian airline WestJet is warning of "intermittent interruptions or errors" on its app and website as it investigates a cybersecurity incident.…

Back to Top / Monday, June 16, 2025, 12:21 pm / permalink 8088 / 2 stories in 8 months

Dark Web Drug Market Crushed by Transatlantic Law Enforcement

European and US authorities have coordinated a decisive operation that dismantled an illicit dark web drug marketplace. The crackdown resulted in key arrests, dismantling a platform that had facilitated large-scale narcotics trafficking and underscoring the international resolve to combat cyber-enabled criminal networks.

Back to Top / Monday, June 16, 2025, 10:21 am / permalink 8063 / 2 stories in 8 months

Car sharing giant Zoomcar says hacker accessed personal data of 8.4 million users

Jagmeet Singh / techcrunch - The personal data includes customer names, phone numbers, and car registration numbers.

Back to Top / Monday, June 16, 2025, 10:21 am / permalink 8061 / 4 stories in 8 months

Microsoft 365: Hackers Abuse Pentesting Tool for Widespread Attack on 80,000 User Accounts

Markus Kasanmascheff / winbuzzer - The "UNK_SneakyStrike" campaign is actively targeting over 80,000 Microsoft Entra ID accounts by weaponizing the TeamFiltration pentesting tool for large-scale, automated password spraying attacks.The post Microsoft 365: Hackers Abuse Pentesting Tool for …

Back to Top / Thursday, June 12, 2025, 11:21 am / permalink 7818 / 3 stories in 8 months

Journalists targeted by Paragon spyware confirmed in latest hacking incident

Recent reports confirm that multiple journalists have been hacked using Paragon spyware, intensifying concerns over digital press freedom and privacy. Investigations reveal sophisticated techniques aimed at European media figures, prompting urgent calls for stronger cybersecurity measures amid an already invasive surveillance landscape.

Back to Top / Thursday, June 12, 2025, 11:21 am / permalink 7817 / 3 stories in 8 months

Aim Security details first known AI zero-click exploit targeting Microsoft 365 Copilot

Duncan Riley / siliconangle - A new report out today from Aim Security Ltd. has revealed the first known zero-click artificial intelligence vulnerability that could have allowed attackers to exfiltrate sensitive internal data without any user interaction. The vulnerability, dubbed “Ec…

Back to Top / Wednesday, June 11, 2025, 6:20 pm / permalink 7729 / 4 stories in 8 months

Texas warns 300,000 crash reports siphoned via compromised user account

Iain Thomson / theregister - Lone Star State drivers with accident records need to be careful about fraud The Texas Department of Transportation says a compromised user account was used to improperly download nearly 300,000 crash reports, exposing personal data that could be exploite…

Back to Top / Tuesday, June 10, 2025, 2:22 pm / permalink 7516 / 2 stories in 8 months

Ongoing cyberattack at US grocery distributor giant UNFI affecting customer orders

Zack Whittaker / techcrunch - United Natural Foods said it is "diligently managing through the cyber incident" that sparked disruption outages.

Back to Top / Tuesday, June 10, 2025, 9:21 am / permalink 7453 / 3 stories in 8 months

M&S online ordering system operational 46 days after cyber shutdown

Connor Jones / theregister - A milestone in cyberattack recovery – but deliveries will take a while and normal service not yet back UK retailer Marks & Spencer has reinstated online orders for some customers, marking a major milestone in its recovery from a cyberattack in April.…

Back to Top / Tuesday, June 10, 2025, 7:20 am / permalink 7443 / 1 stories in 8 months

Spyware maker cuts ties with Italy after government refused audit into hack of journalist’s phone

therecord - Israel-based spyware maker Paragon and Italy's government had a falling out over the company's offer to help investigate what happened on journalist Francesco Cancellato's phone.

Back to Top / Monday, June 9, 2025, 4:22 pm / permalink 7377 / 2 stories in 8 months

Major US grocery distributor warns of disruption after cyberattack

Zack Whittaker / techcrunch - UNFI, a grocery distributor for Whole Foods and others, warned of disruptions to customer orders after a cyberattack.

Back to Top / Monday, June 9, 2025, 11:20 am / permalink 7307 / 3 stories in 8 months

Trump rescinds Biden’s cybersecurity initiatives with new executive order

Swagath Bandhakavi / techmonitor - US President Donald Trump issued an executive order on Friday that revokes multiple cybersecurity measures established by Joe Biden.

Back to Top / Monday, June 9, 2025, 10:21 am / permalink 7298 / 2 stories in 8 months

Google fixes bug that could reveal users’ private phone numbers

Zack Whittaker / techcrunch - The bug allowed a researcher to uncover recovery phone numbers of nearly any Google account.

Back to Top / Monday, June 9, 2025, 10:21 am / permalink 7297 / 8 stories in 8 months

New PathWiper data wiper malware hits critical infrastructure in Ukraine

Bill Toulas / bleepingcomputer - A new data wiper malware named 'PathWiper' is being used in targeted attacks against critical infrastructure in Ukraine, aimed at disrupting operations in the country. [...]

Back to Top / Friday, June 6, 2025, 12:21 pm / permalink 7051 / 4 stories in 9 months

Cellebrite acquires iPhone virtualization firm Corellium for $200M

appleinsider - Cellebrite, an Israeli cybersecurity firm known for assisting law enforcement in unlocking iPhones, has acquired the virtualization-focused startup Corellium for $200 million. The two already have plans for a new digital forensics product.Cellebrite has a…

Back to Top / Thursday, June 5, 2025, 7:20 pm / permalink 6988 / 2 stories in 9 months