Bybit Hit by Record-Breaking $1.46 Billion Crypto Heist
Bybit has suffered the largest crypto theft in history, with hackers stealing $1.46 billion from the exchange earlier today.
Bijay Pokharel,
February 22, 2025
1 min read
Microsoft Patches Zero-Day Vulnerability in Power Pages Exploited in Attacks
Microsoft has issued a security alert regarding a high-severity elevation of privilege vulnerability in Power Pages, which hackers exploited as a zero-day attack.
Bijay Pokharel,
February 21, 2025
1 min read
Health Net Federal Services to Pay $11.25M Over False Cybersecurity Compliance Claims
Health Net Federal Services (HNFS) and its parent company, Centene Corporation, have agreed to pay $11.25 million to settle allegations of falsely certifying compliance with cybersecurity requirements under their Defense Health Agency (DHA) TRICARE contract.
Bijay Pokharel,
February 21, 2025
1 min read
U.K. Healthcare Provider HCRG Care Group Investigates Ransomware Attack
HCRG Care Group, one of the largest independent healthcare providers in the U.K., has confirmed it is investigating a cybersecurity breach after a ransomware gang claimed to have stolen a vast amount of sensitive data.
Bijay Pokharel,
February 20, 2025
1 min read
Ghost Ransomware Spreads Across 70+ Countries, Targeting Critical Infrastructure
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI warned about the widespread impact of Ghost ransomware, which has breached victims across more than 70 countries.
Bijay Pokharel,
February 20, 2025
2 min read
DM Clinical Research Data Breach Exposes 1.6 Million Record Online
Over 1.6 million clinical research records containing personally identifiable information (PII) and sensitive patient medical data have been exposed in a massive data breach.
Bijay Pokharel,
February 18, 2025
1 min read
Russian-Linked Hackers Attack Microsoft 365 Accounts Using Device Code Phishing
A threat group, likely linked to Russia, is targeting Microsoft 365 accounts by exploiting a process called device code phishing.
Bijay Pokharel,
February 16, 2025
1 min read
Chinese Hackers Salt Typhoon Breach U.S. Telecoms via Cisco Vulnerabilities
Chinese state-backed hackers, known as Salt Typhoon (also tracked as RedMike), continue to target global telecommunications networks, exploiting unpatched Cisco IOS XE devices.
Bijay Pokharel,
February 15, 2025
1 min read
Researchers Uncover AWS “whoAMI” Attack That Exploits AMI Name Confusion
Security researchers have discovered a flaw in Amazon Web Services (AWS) that could allow unauthorized access to an AWS account simply by publishing an Amazon Machine Image (AMI) with a cleverly chosen name.
Bijay Pokharel,
February 14, 2025
2 min read
Dutch Police Shut Down Bulletproof Hosting Provider Linked to Cybercrime
The Dutch Police (Politie) have dismantled the ZServers/XHost bulletproof hosting operation, taking down 127 servers that were allegedly used for illegal activities.
Bijay Pokharel,
February 14, 2025
1 min read
Google Fixes YouTube Vulnerability That Could Expose User Emails
Google has patched two serious security flaws that, when exploited together, could have revealed the email addresses of YouTube users—posing a major privacy risk, especially for those who rely on anonymity.
Bijay Pokharel,
February 13, 2025
2 min read
zkLend Loses $9.5M in Hack, Appeals to Thief for 90% Recovery
Decentralized finance (DeFi) platform zkLend has fallen victim to a major cyberattack, with hackers exploiting a flaw in its smart contract to steal 3,600 Ethereum—worth approximately $9.5 million at the time of the breach.
Bijay Pokharel,
February 13, 2025
2 min read
Mars Hydro Data Breach Exposes 2.7 Billion Records Online
Cybersecurity Researcher Jeremiah Fowler uncovered a non-password-protected database that contained nearly 2.7 billion records belonging to Mars Hydro.
Bijay Pokharel,
February 13, 2025
1 min read
Six Arrested in Multi-Million-Euro Investment Fraud Bust Across Europe and Israel
Law enforcement agencies across France, Spain, and Israel arrested six suspects in the early hours of January 27, 2025.
Bijay Pokharel,
February 12, 2025
2 min read
Microsoft’s February 2025 Patch Tuesday Fixes 55 Security Flaws, Including Two Actively Exploited Zero-Days
Microsoft has released its February 2025 Patch Tuesday updates, addressing 55 security vulnerabilities, including four zero-day flaws, with two actively exploited in real-world attacks.
Bijay Pokharel,
February 12, 2025
1 min read
Russian Sandworm Hackers Target Ukraine with Fake Windows Updates and Pirated Software
A Russian military cyber-espionage group known as Sandworm is attacking Windows users in Ukraine by spreading malware through trojanized Microsoft Key Management Service (KMS) activators and fake Windows updates.
Bijay Pokharel,
February 12, 2025
2 min read
U.S., U.K., and Australia Sanction Russian Hosting Provider Zservers for Aiding LockBit Ransomware
The United States, United Kingdom, and Australia have sanctioned Zservers, a Russia-based bulletproof hosting (BPH) provider, for supplying key infrastructure to the LockBit ransomware gang.
Bijay Pokharel,
February 12, 2025
2 min read
Apple and Google Remove 20 Apps Containing Data-Stealing Malware
Apple and Google have removed 20 apps from their stores after researchers discovered they contained malware stealing user data for nearly a year.
Bijay Pokharel,
February 11, 2025
1 min read
Hacker Pleads Guilty to SEC X Account Scam
Eric Council Jr., 25, pleaded guilty to hacking the SEC’s X account in January 2024.
Bijay Pokharel,
February 11, 2025
1 min read
Massive Brute Force Attack Leverages 2.8 Million IPs to Target Network Devices
A sweeping brute force assault is currently in progress, with nearly 2.8 million unique IP addresses being used daily to guess login credentials for a wide array of networking devices—including those manufactured by Palo Alto Networks, Ivanti, and SonicWall.
Bijay Pokharel,
February 9, 2025
2 min read





