The UK postal service Royal Mail is investigating a significant data breach involving the leak of over 144GB of sensitive user data, attributed to unauthorized access through its third-party provider Spectos GmbH.
The cryptocurrency industry faced a dramatic increase in cyberattacks in the first quarter of 2025, with losses exceeding $1.67 billion, primarily due to a significant breach at Bybit linked to North Korea’s Lazarus Group.
Web Application Firewalls (WAFs) are crucial tools for protecting web applications from various online threats, including SQL injections and cross-site scripting, by blocking malicious traffic and ensuring only legitimate users access the application.
A recent report highlights China’s advanced cyber capabilities and military ambitions, emphasizing the need for the US to strengthen its defenses against potential attacks on critical infrastructure.
North Korean operatives are infiltrating European companies, particularly in defense and blockchain sectors, using fake identities and advanced technical skills to conduct illicit activities and extortion.
Google has launched a beta version of end-to-end encryption for Gmail, enhancing email security by ensuring that only the sender and recipient can access the content, while preventing Google from viewing inboxes.
Cybercriminals are increasingly using lookalike domains and spoofed websites to execute targeted email-based social engineering and financial fraud across various sectors, including finance, legal services, insurance, and construction.
A sophisticated multi-stage phishing attack leveraging vishing, remote access tools, and DLL sideloading has been identified, exploiting Microsoft Teams and Quick Assist to deploy a JavaScript-based command-and-control backdoor on victim devices.
Ukrzaliznytsia, Ukraine’s state-owned railway operator, suffered a significant cyber-attack attributed to Russian intelligence services, disrupting its digital services and prompting increased physical ticket sales while investigations into the incident continue.
A hacker group named Rose87168 claimed responsibility for breaching Oracle Cloud’s federated SSO servers, compromising approximately 6 million user records and exposing sensitive data due to a zero-day vulnerability.
