Multiple critical vulnerabilities across Cisco products are leaving users vulnerable to attack, according to reports from several sources. Hackers are actively exploiting a critical vulnerability in Cisco's Security Email Gateway (SEG) devices to gain administrative access and add root users. The
Prominent Indian cryptocurrency exchange WazirX suspended withdrawals on Thursday following a security breach that resulted in the loss of $230 million, approximately half its reserves. The breach, which WazirX described as a “force majeure event,” involved the compromise of one of its multisig
Kaspersky Lab, the Russian cybersecurity giant, is set to close its US division and lay off all US-based employees following a ban by the US Commerce Department. This decision, affecting fewer than 50 workers, comes after the Commerce Department cited national security concerns, arguing that
AT&T has revealed that the call and text logs of approximately 109 million customers were exposed in a data breach. The breach, which occurred between April 14 and April 25, 2024, involved unauthorized access to data stored on a third-party cloud platform operated by Snowflake. The
Advance Auto Parts has confirmed that a data breach has affected over 2.3 million individuals, exposing sensitive personal information such as names, Social Security numbers, driver's licenses, and government-issued identification numbers. This breach, which occurred between April 14, 2024, and May
Check Point Researchers have discovered that a Windows MSHTML zero-day vulnerability has been exploited in malware attacks for over a year. The flaw, tracked as CVE-2024-38112, allows threat actors to bypass built-in security features and launch malicious scripts, which led to the installation of
Apple has removed 25 VPN apps from its app store in Russia following a request from Roskomnadzor, the country's internet regulator. The affected apps include popular services such as NordVPN, Proton VPN, Red Shield VPN, and Planet VPN. This action comes as part of a broader effort by the Russian
Hackers have gained access to 440,000 Taylor Swift Eras Tour tickets, and are demanding a multi-million dollar ransom from Ticketmaster. The hacker group, ShinyHunters, announced on BreachForums that they possess barcode data for hundreds of thousands of tickets and are threatening to sell the data
On July 2, 2024, Health tech provider HealthEquity disclosed a data breach involving unauthorized access to customers' protected health information via a compromised third-party vendor account. The breach was detected on March 25 and involved HealthEquity's SharePoint data. The incident,
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password-protected database that contained 38.6 million records belonging to Rapid Legal — a legal support services company that offers court filing, process serving, and document retrieval services for law
