Author Info

A hacker operating under the alias "NullBulge" has confessed to infiltrating Disney's internal Slack channels, extracting over 1.1 terabytes of sensitive data. This breach highlights significant cybersecurity vulnerabilities within corporate communication platforms. Malware Disguised as AI Tool Ryan Kramer, a 25-year-old from California, developed a

Nova Scotia Power and its parent company, Emera, are currently managing a cybersecurity incident that has disrupted their IT infrastructure. Despite the breach, the companies have assured that there have been no power outages affecting their customers. Incident Overview On April 25, 2025, unauthorized access was detected within parts of

In a recent cybersecurity revelation, seven malicious PyPI packages were identified using Gmail's SMTP servers and WebSockets to facilitate data exfiltration and remote command execution. Discovered by Socket's threat research team, these packages have since been removed from PyPI. However, they had been available for over

A sophisticated cyberattack campaign by the Earth Kurma Advanced Persistent Threat (APT) group has been identified, targeting government and telecommunications organizations in Southeast Asia. This campaign, uncovered by cybersecurity researchers, poses significant risks through the use of custom malware, rootkits, and cloud storage exploitation for espionage and data theft. Targeted

Hitachi Vantara, a subsidiary of the global conglomerate Hitachi, recently faced a significant cybersecurity incident involving the Akira ransomware. The company, known for its data storage and cloud management services, took decisive action by taking its servers offline to mitigate the threat and protect its systems. Incident Overview The ransomware

The CEO of Veritaco, Jeffrey Bowie, has been charged with allegedly installing malware on computers at St. Anthony Hospital in Oklahoma City, violating the state's Computer Crimes Act. Incident Overview On August 6, 2024, Bowie reportedly infiltrated hospital systems, deploying malware designed to capture and transmit screenshots to

British retail giant Marks & Spencer is currently grappling with significant operational disruptions due to a ransomware attack. The attack is attributed to a notorious hacking group known as Scattered Spider. This incident has led to widespread outages, affecting the company's payment systems and online services. Details of

Recent investigations by cybersecurity experts have uncovered the operations of an initial access broker (IAB) known as ToyMaker. This entity has been linked to providing access to ransomware groups, including the notorious CACTUS, enabling them to execute double extortion attacks. Understanding ToyMaker's Operations ToyMaker is identified as a

A newly identified vulnerability, CVE-2025-31324, in SAP NetWeaver Visual Composer poses a severe risk of system compromise. This flaw, scoring a perfect 10.0 in severity, allows attackers to exploit systems by deploying web shells. Organizations must assess their SAP Java systems for exposure and take immediate action to mitigate