What 345 Days of Untested Exposure Looks Like at a Bank
What 345 Days of Untested Exposure Looks Like at a Bank Sponsored by Sprocket Security June 3, 2026 10:02 AM In April, a single VPN vulnerability led to data breaches at…
Search
Top stories
7-Eleven data breach exposes personal information of 185,000 people
…ShinyHunters has been targeting Salesforce customers for the past year and breached hundreds of companies, claiming they've stolen billions of records in the Salesforce Aura data theft attacks and the Salesloft…
Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution
…attention from security researchers and malware analysts. Several technical analyses published in recent months focused on the malware’s capabilities, infrastructure, and similarities to Lumma Stealer, including browser targeting mechanisms, and credential…
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
…Organizations using GlobalProtect VPN devices should immediately install the latest security updates to patch the flaws. Admins can also mitigate the flaw by turning off the authentication override feature or utilizing a…
Windows BitLocker zero-day gives access to protected drives, PoC released
…the EFI partition on the target drive. According to Chaotic/Nightmare Eclipse, the spawned shell gains unrestricted access to the storage volume protected by BitLocker. Independent security researcher Kevin Beaumont confirmed that…
GitHub links repo breach to TanStack npm supply-chain attack
…TeamPCP was linked to other major supply chain attacks targeting developer code platforms, including PyPI , NPM , GitHub , and Docker , and, more recently, to the "Mini Shai-Hulud" supply chain campaign (which also…
Netherlands seizes 800 servers of hosting firm enabling cyberattacks
…The same outlet alleges that Danish authorities and infrastructure providers linked WorkTitans to attacks by the pro-Russian hacktivist group NoName057(16), which has previously targeted key organizations with distributed denial-of…
Oxford University discloses data breach after careers platform hack
…It also warned staff, students, and external CareerConnect users that they might be targeted by phishing or scam emails. This is the second data breach disclosed by Oxford University this year, following…
Police seize “First VPN” service used in ransomware, data theft attacks
…While they are used legitimately to protect privacy on public WiFi, bypass censorship, reduce tracking, and enable secure remote work, threat actors also rely on them to hide their location and infrastructure…
Inside a Crypto Drainer: How to Spot it Before it Empties Your Wallet
…The findings reveal an increasingly professionalized ecosystem focused on affiliate growth, automation, phishing scalability, wallet-security bypasses, and operational resilience. The analyzed data suggests that modern drainer operations increasingly function similarly to…