Salesloft, a popular sales engagement platform, has revealed that a breach of its GitHub environment earlier this year played a key role in a recent wave of data theft attacks targeting Salesforce customers. The company explained that attackers gained…
Category: CySecurity News – Latest Information Security and Hacking Incidents
The Cookie Problem. Should you Accept or Reject?
It is impossible for a user today to surf the internet without cookies, to reject or accept. A pop-up shows in our browser that asks to either “accept all” or “reject all.” In a few cases, a third option allows…
Muzaffarpur Man Loses ₹3.5 Lakh in Remote Access App Bank Fraud
A resident of Muzaffarpur, Bihar fell victim to a sophisticated remote access application scam that resulted in the loss of ₹3.5 lakh from his bank account. The cybercrime incident occurred when the victim was searching online for courier service…
MostereRAT Malware Leverages Evasion Tactics to Foil Defenders
Despite the fact that cybercrime has become increasingly sophisticated over the years, security researchers have uncovered a stealthy phishing campaign in which a powerful malware strain called MostereRAT was deployed. This remote access trojan allows attackers to take full…
GitHub Supply Chain Attack ‘GhostAction’ Exposes Over 3,000 Secrets Across Ecosystems
A newly uncovered supply chain attack on GitHub, named GhostAction, has compromised more than 3,300 secrets across multiple ecosystems, including PyPI, npm, DockerHub, GitHub, Cloudflare, and AWS. The campaign was first identified by GitGuardian researchers, who traced initial signs…
Nx “s1ngularity” Supply Chain Attack Exposes Thousands of Secrets
The recent Nx “s1ngularity” NPM supply chain attack has led to a massive security fallout, exposing thousands of account tokens and repository secrets, according to Wiz researchers. A post-incident analysis revealed that the breach compromised 2,180 accounts and 7,200…
Great Firewall of China Compromised in Historic 600GB Data Exposure
It has been reported that on September 11, 2025, nearly 600 gigabytes of classified materials linked to the Great Firewall of China have emerged online in a breach of China’s closely guarded internet censorship machinery, which is a breach…
Smart Meters: A Growing Target in Data Security
Smart electricity meters, once simple devices for recording household consumption, are now central to modern energy systems. They track usage patterns, support grid balancing, and enable predictive maintenance. But as their role has expanded, so has the volume of…
SVG Phishing Campaign Bypasses Antivirus, Targets Colombian Judiciary
VirusTotal has uncovered a sophisticated phishing campaign that leverages SVG (Scalable Vector Graphics) files to bypass traditional antivirus detection while impersonating Colombia’s judicial system. The campaign was discovered after VirusTotal added SVG support to its AI Code Insight platform,…
Czechia Warns of Chinese Data Transfers and Espionage Risks to Critical Infrastructure
Czechia’s National Cyber and Information Security Agency (NÚKIB) has issued a stark warning about rising cyber espionage campaigns linked to China and Russia, urging both government institutions and private companies to strengthen their security measures. The agency classified the…