Security News

Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws
2025-04-05 15:50

A likely lone wolf actor behind the EncryptHub persona was acknowledged by Microsoft for discovering and reporting two security flaws in Windows last month, painting a picture of a "conflicted"...

China’s FamousSparrow flies back into action, breaches US org after years off the radar
2025-03-27 22:06

Crew also cooked up two fresh SparrowDoor backdoor variants, says ESET The China-aligned FamousSparrow crew has resurfaced after a long period of presumed inactivity, compromising a US...

How PAM Mitigates Insider Threats: Preventing Data Breaches, Privilege Misuse, and More
2025-03-26 10:15

When people think of cybersecurity threats, they often picture external hackers breaking into networks. However, some of the most damaging breaches stem from within organizations. Whether through...

Coinbase was primary target of recent GitHub Actions breaches
2025-03-21 23:35

Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack that compromised secrets in hundreds of repositories. [...]

US seizes $23 million in crypto linked to LastPass breaches
2025-03-07 19:13

U.S. authorities have seized over $23 million in cryptocurrency linked to the theft of $150 million from a Ripple crypto wallet in January 2024. Investigators believe hackers who breached LastPass...

US charges Chinese hackers linked to critical infrastructure breaches
2025-03-05 17:23

The US Justice Department has charged Chinese state security officers along with APT27 and i-Soon hackers for network breaches and cyberattacks that have targeted victims globally since 2011. [...]

⚡ THN Weekly Recap: Alerts on Zero-Day Exploits, AI Breaches, and Crypto Heists
2025-03-03 11:58

This week, a 23-year-old Serbian activist found themselves at the crossroads of digital danger when a sneaky zero-day exploit turned their Android device into a target. Meanwhile, Microsoft pulled...

EncryptHub breaches 618 orgs to deploy infostealers, ransomware
2025-02-26 15:31

A threat actor tracked as 'EncryptHub,' aka Larva-208, has been targeting organizations worldwide with spear-phishing and social engineering attacks to gain access to corporate networks. [...]

Silent breaches are happening right now, most companies have no clue
2025-02-12 04:30

The breaches and ransomware attacks of 2024 highlighted systemic vulnerabilities, demonstrating how third-party and fourth-party dependencies amplify risks across industries, according to a Black...

Amazon Redshift gets new default settings to prevent data breaches
2025-02-03 21:37

Amazon has announced key security enhancements for Redshift, a popular data warehousing solution, to help prevent data exposures due to misconfigurations and insecure default settings. [...]