Global takedown disrupts Tycoon2FA phishing service tied to MFA bypass
A global operation disrupted Tycoon2FA, a phishing service used to steal credentials and bypass MFA through adversary-in-the-middle attacks.
Ex-data analyst stole company data in $2.5M extortion scheme
A contractor’s $2.5M extortion scheme against Brightly Software shows how insider access can become a serious data-theft threat.
CISA orders federal agencies to patch exploited Zimbra XSS flaw
CISA added Zimbra flaw CVE-2024-27443 to KEV, ordering federal agencies to patch the actively exploited XSS bug on deadline.
Huge ‘Shadow Layer’ of organizations hit by supply chain attacks
Black Kite says 26,000 hidden corporate victims were exposed through 136 third-party breaches, revealing the true scale of supply-chain risk.
Iranian cyber threat actor targets Iraqi government officials in AI-powered campaign
Zscaler links an AI-assisted campaign targeting Iraqi officials to an Iranian adversary, highlighting rising espionage risks for diplomats.
North Korea’s APT37 expands toolkit to breach air-gapped networks
Zscaler says North Korea’s APT37 added five new tools, including capabilities that can help breach air-gapped networks.
University of Mississippi Medical Center still offline after ransomware attack
UMMC remains disrupted after a ransomware attack, underscoring how healthcare cyber incidents can threaten operations, data, and patient safety.
Odido breach impacts millions of Dutch telco users
Odido says a breach affected over six million customers, raising fraud, privacy, and regulatory concerns across the Dutch telecom sector.
Time to exploit is shrinking as attackers pile onto known flaws
Flashpoint says the gap between disclosure and exploitation is shrinking, with attackers increasingly abusing known flaws before defenders can patch.
AI is helping drive a sharp rise in phishing attacks, Cofense says
Cofense says phishing volume doubled in a year as AI helps attackers craft more convincing, personalized email lures.
Labyrinth Chollima evolves into three North Korean hacking groups
CrowdStrike says North Korea’s Labyrinth Chollima has split into three groups, signaling more specialized DPRK cyber operations.
Us data breaches hit record high but victim numbers decline
U.S. data breaches hit a record high in 2025, while victim totals fell, pointing to more frequent but smaller and more fragmented incidents.