Mass Ransomware Campaign Hits S3 Buckets Using Stolen AWS Keys
Researchers reveal a large-scale ransomware campaign leveraging over 1,200 stolen AWS access keys to encrypt S3 buckets. Learn how attackers used SSE-C silently and the…
Category: HackRead
CVE Program Stays Online as CISA Backs Temporary MITRE Extension
MITRE avoids CVE program shutdown with last-minute contract extension. Questions remain about long-term funding and the future of vulnerability tracking. MITRE’s role in managing the…
BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian Forum
BidenCash, a dark web carding marketplace known for its aggressive tactics, has leaked a fresh batch of 910,380 stolen credit card records on the Russian-language…
Hertz Confirms Data Breach After Hackers Stole Customer PII
Hertz confirms data breach linked to Cleo software flaw; Cl0p ransomware group leaked stolen data, exposing names, driver’s licenses, and credit card details. Car rental…
SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions
Palo Alto, California, April 16th, 2025, CyberNewsWire SquareX researchers Jeswin Mathai and Audrey Adeline will be disclosing a new class of data exfiltration techniques at…
Best Crypto Tax Software in 2025: A Comprehensive Guide
Keeping up with crypto tax laws in Europe feels like a constant hurdle. Regulations evolve, tax authorities demand precise reporting, and tracking every trade across…
Fake PDFCandy File Converter Websites Spread Malware
CloudSEK uncovers a sophisticated malware campaign where attackers impersonate PDFCandy.com to distribute the ArechClient2 information stealer. Learn how this scam works and how to protect…
Encrypted Chats from Sky ECC, ANOM Lead to 232 Arrests
Intelligence from encrypted platforms like Sky ECC and ANOM has led to the arrest of 232 individuals and the seizure of millions in assets in…
4chan Breached? Hacker from Rival Soyjak Forum Claims Source Code Leak
4chan is down amid claims from a rival Soyjak forum user who says they’ve breached the site and leaked its source code. Investigation is ongoing.…
Fake PDFCandy Websites Spread Malware via Google Ads
CloudSEK uncovers a sophisticated malware campaign where attackers impersonate PDFCandy.com to distribute the ArechClient2 information stealer. Learn how this scam works and how to protect…
UK Software Firm Exposed 1.1TB of Healthcare Worker Records
8M UK healthcare worker records, including IDs and financial data, exposed due to a misconfigured staff management database from UK-based software firm Logezy. Cybersecurity researcher…
New “Slopsquatting” Threat Emerges from AI-Generated Code Hallucinations
AI code tools often hallucinate fake packages, creating a new threat called slopsquatting that attackers can exploit in public code repositories, a new study finds.…