Other noteworthy stories that might have slipped under the radar: Heritage Bank data breach, new State Department unit tackles cyber threats, LA Metro disruptions. The post In Other News: Palo Alto Recruiter Scam, Anti-Deepfake Chip, Google Sets 2029 Quantum Deadline appeared first on SecurityWeek.
World Leaks is a cyber extortion operation that steals sensitive data from organizations and threatens to leak it via the dark web if a ransom is not paid. Read more in my article on the Fortra blog.
The United Kingdom's Foreign, Commonwealth and Development Office (FCDO) has sanctioned Xinbi, a Chinese-language cryptocurrency-based online marketplace that sells stolen data and satellite internet equipment to scam networks in Southeast Asia. [...]
Russian police arrested a Taganrog resident believed to be the owner of LeakBase, a major online forum used by cybercriminals to buy and sell stolen data and hacking tools. [...]
Organizations disclose attack details, though information may be limited, following a breach, but what if they did the same with close calls?
The FBI has warned that Iranian hacking group Handala has been targeting opponents of the regime since 2023
Ericsson data breach affects 15k employees/customers after third-party service provider compromise
A global operation has resulted in the takedown of popular cybercrime forum LeakBase
Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors
Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches
The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group
Dutch telco Odido has revealed a major data breach impacting over six million customers
Substack did not specify the number of users affected by the data breach
A supply chain attack on Notepad++ update process was linked to compromised hosting infrastructure
Non-profit ITRC says the number of data breaches increased 5% annually to reach a record total in 2025
Zscaler analysts found critical vulnerabilities in 100% of enterprise AI systems, with 90% compromised in under 90 minutes
Under Armour said there is no evidence at this point to suggest the incident affected systems used to process payments or store customer passwords