Data Breaches
The City of Syracuse has begun mailing notification letters to individuals potentially impacted by a security breach within the Syracuse Police Department (SPD) network. The city confirmed that the incident, which initially forced a shutdown of department computer systems to contain the intrusion, has cost taxpayers approximately $250,000 in
China
Cybersecurity investigators and international intelligence agencies are scrambling to verify a massive data breach involving one of China’s most prominent supercomputing centers. A threat actor, operating under an alias on dark web forums, claims to have exfiltrated roughly 10 petabytes (PB) of highly sensitive data from a government-linked high-performance
Threat Intelligence
U.S. intelligence and cybersecurity agencies have issued a joint advisory warning of a significant escalation in Iranian-linked cyber operations targeting the nation’s critical infrastructure. The coordinated alert from CISA, the FBI, and the NSA highlights a strategic shift from "episodic" disruptions to a "sustained and
LOS ANGELES — The City of Los Angeles is investigating a sprawling data breach that has resulted in the online leak of thousands of sensitive documents belonging to the Los Angeles Police Department (LAPD) and the City Attorney’s office. According to reports from TechCrunch and The Record, the breach appears
U.S. intelligence and cybersecurity agencies have issued a joint advisory warning of a significant escalation in Iranian-linked cyber operations targeting the nation’s critical infrastructure. The coordinated alert from CISA, the FBI, and the NSA highlights a strategic shift from "episodic" disruptions to a "sustained and
Microsoft’s threat intelligence team has issued a high-priority warning regarding a sophisticated cyber-criminal actor, designated as Storm-1175, which is utilizing zero-day vulnerabilities to deploy the Medusa ransomware. The group, identified as an affiliate of the broader Medusa-as-a-Service operation, has demonstrated an unprecedented speed in its attack lifecycle, often moving
Security researchers have identified a significant resurgence in cyber-espionage activity by the China-aligned threat actor TA416. The group, also known as Mustang Panda or RedDelta, has expanded its targeting to include European government entities, diplomatic missions, and organizations in the Middle East, signaling a strategic shift aligned with evolving global
The Trump administration has unveiled its Fiscal Year 2027 budget proposal, calling for a significant $707 million reduction in funding for the Cybersecurity and Infrastructure Security Agency (CISA). The proposal, which represents a nearly 25% cut to the agency's current operating budget, has sparked a debate over the
An international coalition of security agencies, led by the UK’s National Cyber Security Centre (NCSC) and the FBI, has disrupted a major cyber-espionage operation targeting thousands of home and small-office routers. The campaign, attributed to the Russian military intelligence unit known as APT28 (also documented as Fancy Bear or
Microsoft’s threat intelligence team has issued a high-priority warning regarding a sophisticated cyber-criminal actor, designated as Storm-1175, which is utilizing zero-day vulnerabilities to deploy the Medusa ransomware. The group, identified as an affiliate of the broader Medusa-as-a-Service operation, has demonstrated an unprecedented speed in its attack lifecycle, often moving
Security researchers have identified a significant resurgence in cyber-espionage activity by the China-aligned threat actor TA416. The group, also known as Mustang Panda or RedDelta, has expanded its targeting to include European government entities, diplomatic missions, and organizations in the Middle East, signaling a strategic shift aligned with evolving global
The Trump administration has unveiled its Fiscal Year 2027 budget proposal, calling for a significant $707 million reduction in funding for the Cybersecurity and Infrastructure Security Agency (CISA). The proposal, which represents a nearly 25% cut to the agency's current operating budget, has sparked a debate over the
An international coalition of security agencies, led by the UK’s National Cyber Security Centre (NCSC) and the FBI, has disrupted a major cyber-espionage operation targeting thousands of home and small-office routers. The campaign, attributed to the Russian military intelligence unit known as APT28 (also documented as Fancy Bear or
Jones Day, one of the world's largest law firms, has confirmed that a targeted cyberattack resulted in unauthorized access to sensitive files belonging to 10 of its clients. The breach, which the firm describes as "limited" in scope, was carried out via a sophisticated phishing campaign
The Federal Bureau of Investigation’s Internet Crime Complaint Center (IC3) has released its 2025 Annual Report, revealing a staggering $20.8 billion in reported losses to cybercrime — the highest figure ever recorded. The data shows a sharp escalation in both the frequency and financial impact of digital attacks, with
PayPal has issued a series of security alerts following a wave of "unconventional" cyberattacks designed to compromise user accounts and exfiltrate sensitive financial data. The payments giant has confirmed that a significant credential stuffing campaign, alongside sophisticated phishing operations, has resulted in the exposure of personal information for
A major ransomware attack targeting Vivaticket, one of the world’s leading providers of ticketing and access control systems, has disrupted operations at thousands of high-profile tourist sites, museums, and theme parks across Europe and the Middle East. The breach has left iconic institutions, including the Louvre in Paris and
Fortinet has released urgent security updates to address a high-severity zero-day vulnerability in its FortiClient Endpoint Management Server (EMS) that is currently being exploited in the wild. The flaw, identified as CVE-2026-35616, allows unauthenticated attackers to gain unauthorized access and potentially execute arbitrary code on affected systems. Technical Breakdown of
Drift Protocol, a prominent decentralized exchange (DEX) operating on the Solana blockchain, has been targeted in a massive exploit resulting in the loss of approximately $285 million. Leading blockchain forensic firms, including Elliptic, TRM Labs, and Chainalysis, have attributed the attack to threat actors associated with the Democratic People’s
Harvard University’s Information Technology (HUIT) department has issued a high-priority security alert following a "brazen" and targeted cyber campaign aimed at students, faculty, and staff. The university, which serves as a global hub for high-value research and intellectual property, is currently navigating a sophisticated social engineering raid
Die Linke, a prominent political party in the German Bundestag, has officially confirmed a significant data breach following an attack by the Qilin ransomware group. The breach, which has sent ripples through the German political landscape, involves the unauthorized exfiltration of sensitive internal documents, with the threat actors now threatening