Suspected Chinese Hackers Use Brickstorm Malware in Long-Term Espionage Attacks
Suspected Chinese state-backed hackers have been linked to long-term espionage operations against U.S. organizations in the technology and legal sectors, according to a new report by Google’s Threat Intelligence Group (GTIG).
Bijay Pokharel,
September 25, 2025
2 min read
UK Police Arrest Man Linked to Ransomware Attack That Disrupted European Airports
The UK’s National Crime Agency (NCA) has arrested a man in West Sussex in connection with the ransomware attack that disrupted airport operations and caused widespread flight delays across Europe last week.
Bijay Pokharel,
September 25, 2025
1 min read
European Police Arrest Five in €100 Million Cryptocurrency Fraud Case
Law enforcement authorities in Europe have arrested five suspects linked to a massive cryptocurrency investment fraud ring that stole more than €100 million ($118 million) from over 100 victims.
Bijay Pokharel,
September 24, 2025
1 min read
SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability
SolarWinds has released a hotfix for a critical security flaw in its Web Help Desk (WHD) product that allows remote code execution (RCE) without authentication.
Bijay Pokharel,
September 24, 2025
1 min read
LastPass Warns of Fake GitHub Repositories Spreading macOS Malware
LastPass has issued a warning about a new campaign targeting macOS users with malicious software disguised as popular apps, delivered through fraudulent GitHub repositories.
Bijay Pokharel,
September 23, 2025
1 min read
Stellantis Confirms Data Breach After Attack on Third-Party Provider
Automotive giant Stellantis has confirmed that attackers gained access to some of its North American customers’ data after breaching a third-party service provider’s platform.
Bijay Pokharel,
September 23, 2025
2 min read
Ransomware Attack Disrupts Major European Airports, Delays Hundreds of Flights
Several major European airports faced widespread disruptions over the weekend after a ransomware attack targeted the check-in and boarding systems provided by Collins Aerospace.
Bijay Pokharel,
September 23, 2025
2 min read
Verified Steam Game ‘Block Blasters’ Drains Gamer’s $32K Crypto During Cancer Fundraiser
A gamer seeking financial support for cancer treatment has fallen victim to a major cryptocurrency theft after downloading a verified Steam game called Block Blasters.
Bijay Pokharel,
September 22, 2025
2 min read
Critical Microsoft Entra ID Flaw Could Have Exposed Every Tenant Worldwide
A critical Entra ID flaw combining legacy actor tokens and a Graph API bug (CVE-2025-55241) could have given attackers Global Admin access to any tenant.
Bijay Pokharel,
September 22, 2025
2 min read
Russian Ransomware Gang Hacks 20 South Korean Asset Management Firms
Data from around 20 asset management firms in South Korea were compromised in a hacking attack earlier this month, industry sources revealed on Monday.
Bijay Pokharel,
September 22, 2025
1 min read
RCMP Shuts Down TradeOgre Crypto Exchange, Seizes $40M in Record Canadian Asset Confiscation
The Royal Canadian Mounted Police (RCMP) has shut down the TradeOgre cryptocurrency exchange and seized more than $40 million believed to originate from criminal activities.
Bijay Pokharel,
September 21, 2025
2 min read
FBI Warns of Spoofed IC3 Websites Used in Scams
The FBI has issued a warning about cybercriminals impersonating its Internet Crime Complaint Center (IC3) website in what it describes as “possible malicious activity.”
Bijay Pokharel,
September 20, 2025
1 min read
Researchers Use ChatGPT to Steal Gmail Data in “Shadow Leak” Attack
Security researchers have demonstrated how ChatGPT can be tricked into stealing sensitive Gmail data, highlighting new risks tied to agentic AI systems.
Bijay Pokharel,
September 20, 2025
1 min read
Google Patches Sixth Chrome Zero-Day Exploited in Attacks This Year
Google has released emergency security updates to patch another actively exploited Chrome zero-day vulnerability—the sixth so far in 2025.
Bijay Pokharel,
September 18, 2025
1 min read
Lotte Card Confirms Data Breach Impacting 3 Million Customers
Lotte Card Co., South Korea’s fifth-largest card issuer, confirmed on Thursday that the personal data of roughly 3 million customers was compromised in a hacking incident last month.
Bijay Pokharel,
September 18, 2025
1 min read
Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation
Microsoft and Cloudflare have successfully disrupted RaccoonO365, a large-scale Phishing-as-a-Service (PhaaS) operation that enabled cybercriminals to steal thousands of Microsoft 365 credentials worldwide.
Bijay Pokharel,
September 18, 2025
2 min read
ShinyHunters Claim Theft of 1.5 Billion Salesforce Records Using Compromised OAuth Tokens
The notorious ShinyHunters extortion group claims to have stolen over 1.5 billion Salesforce records from more than 760 companies by exploiting compromised OAuth tokens from Salesloft Drift.
Bijay Pokharel,
September 18, 2025
2 min read
Facebook Faces Backlash as Sexually Explicit Ads Continue to Slip Through Review System
Sexually explicit ads are resurfacing on Facebook despite Meta’s strict policies, raising concerns about user safety and repeated moderation failures.
Bijay Pokharel,
September 18, 2025
2 min read
Microsoft Seizes 340 Phishing Websites Linked to Nigerian Service Raccoon0365
Microsoft has taken down nearly 340 websites tied to Raccoon0365, a fast-growing Nigerian-based phishing service that helped cybercriminals steal at least 5,000 Microsoft user credentials.
Bijay Pokharel,
September 17, 2025
1 min read
FBI Issues Alert on Salesforce Attacks by UNC6040 and UNC6395
The FBI has issued a FLASH alert warning about UNC6040 and UNC6395 targeting Salesforce platforms to steal corporate data and extort victims.
Bijay Pokharel,
September 15, 2025
2 min read





