Notion Public Pages Leak Collaborators’ Emails and Profile Pictures

Notion pages published to the web may be silently leaking collaborators’ email addresses and profile photos, exposing thousands of users and organizations to potential phishing and social-engineering attacks. SAN FRANCISCO, CA — A design-driven privacy vulnerability in Notion’s "Publish to web" feature is currently exposing the personally identifiable

ShinyHunters Hits Udemy: 1.4M Records After ADT Breach

Same group behind ADT 10M breach claims 1.4M Udemy users via SaaS vishing. Education sector PII and corporate data at risk. April 27 leak deadline looms. SAN FRANCISCO, CA — Less than a week after the ADT data breach exposed 10 million records, the notorious threat collective ShinyHunters has claimed

ADT Data Breach: ShinyHunters Steals Millions from Security Giant

America's largest home security provider confirms breach after vishing attackers claim 10M customer records. Okta SSO → Salesforce attack chain exposes PII and partial SSNs. BOCA RATON, FL — In a stinging blow to the world’s most recognized name in physical security, ADT Inc. (NASDAQ: ADT) has confirmed a

$13B DeFi Collapse: Kelp DAO Exploit Triggers Largest Sector Panic Since 2022

Original $293M LayerZero bridge attack caused 43x larger $13B TVL crash across Aave (-43%) + 26 protocols. North Korea's Lazarus hits $578M in 18 days as bridges become primary attack vector. GLOBAL — The fallout from the Kelp DAO exploit has officially mutated from a singular protocol theft into a

Government AI Agents Outpace Private Sector: 3,600+ Use Cases Create Massive Attack Surface

Federal adoption hits 82% vs 41% private sector as FedRAMP 20x accelerates unvetted agents into classified networks. WASHINGTON, D.C. — While the commercial world cautiously debates the ROI of agentic AI, the federal government has quietly surged ahead, creating a massive, unmanaged attack surface. According to recent IDC and Salesforce

OCR Fines $1.17M: HIPAA Failures Enabled 427K Patient Ransomware Breaches

HHS cracks down on four healthcare entities after risk analysis failures allowed PYSA and other ransomware to encrypt servers and exfiltrate patient data. WASHINGTON, D.C. — In a decisive move against systemic negligence in the medical sector, the HHS Office for Civil Rights (OCR) has announced a collective $1.165

NASA Employees Duped: Chinese Engineer Stole Defense Software Via 5-Year Phishing

AVIC engineer Song Wu impersonated U.S. researchers to harvest NASA aerospace modeling software. Faces 300+ years if convicted. NASA OIG exposes China’s IP theft pipeline. WASHINGTON, D.C. — In a staggering breach of national security, NASA’s Office of Inspector General (OIG) has detailed how a Chinese national

PIBuster Attack Bricks 60% of City EV Chargers in 30 Seconds

DEF CON researchers demonstrate physical attack that overwrites CCS Parameter Information Block, permanently disabling public charging infrastructure with no software fix available. LAS VEGAS, NEVADA — At DEF CON 33, security researchers have unveiled a devastating new physical cyber weapon targeting the backbone of municipal electric vehicle (EV) infrastructure. The attack,

Coupang Breach Escalates: US Congress Subpoenas Korea as Alliance Frays

33.7M user leak → US investor lawsuits → Congressional intervention → Delayed security consultations. How a consumer data breach became a national security crisis. SEOUL — What began as a corporate data leak has spiraled into an unprecedented diplomatic standoff between Washington and Seoul. The Coupang data breach, which exposed the personal information

FAST16 Discovered: 2005 Sabotage Malware Predates Stuxnet by Five Years

SentinelOne uncovers ShadowBrokers-referenced cyberweapon that silently corrupted engineering math; likely US/Israel operation against Iranian nuclear program. SINGAPORE — Everything we knew about the origins of state-sponsored cyber-sabotage was just rewritten. Today, at Black Hat Asia 2026, SentinelOne researchers Vitaly Kamluk and Juan Andrés Guerrero-Saade unveiled FAST16, a precision-engineered malware sample

Leaked Pentagon Memo Threatens Spain NATO Suspension, Falklands Review

Internal DoD email outlines retaliation against allies refusing Iran war basing rights; UK reaffirms "unchanged" Falklands sovereignty amid diplomatic firestorm. WASHINGTON, D.C. — A high-level operational security breach has exposed a widening rift within the NATO alliance. A leaked internal Pentagon email, circulating since Thursday evening, outlines a

Checkmarx Attack Weaponizes KICS and Bitwarden CLI

Malicious Docker images and VS Code extensions steal IaC secrets; Bitwarden npm trusted publishing abused in a sophisticated DevSecOps attack chain. TEL AVIV, IL — In a cascading security failure that strikes at the heart of modern DevSecOps, the prominent security vendor Checkmarx has confirmed a multi-stage supply chain compromise affecting