Infosecdefence | Cyber News of the World

Vulnerabilities

Instagram Fixes Password Reset Flaw Amid Reports of User Data Leak

By|
Admin
|
2026-01-23

Vulnerabilities

Researcher Highlights WhatsApp Metadata Leak as Meta Rolls Out Mitigations
Cyber Attack

Landfall Android Spyware Targeted Samsung Phones via Zero-Day
Cyber Attack

Robo-Advisor Betterment Discloses Data Breach
Cyber Attack

Traveler Data Exposed in Eurail Security Breach
Ransomware

42,000 Individuals Affected in Ingram Micro Ransomware Breach
Cyber Attack

When “I’m Not a Robot” Turns Into “I’m Stealing Your Data”: Fake CAPTCHAs Used in Phishing Attacks
Cyber Attack

Colt Telecom Hit by Cyberattack Claimed by WarLock Ransomware, Data Allegedly for Sale
Vulnerabilities

Critical FortiWeb Flaw Lets Attackers Bypass Authentication and Impersonate Users
Ransomware

Manpower Data Breach Exposes Nearly 145,000 Individuals; RansomHub Claims Responsibility
Cyber Attack

158-Year-Old Company Crumbles Due to Weak Password Vulnerability
Cyber Attack

Elon Musk Reports 'Massive Cyberattack' on X Following Global Outages
Vulnerabilities

Salt Typhoon Hackers Infiltrate U.S. Telecom Networks Using Cisco Vulnerabilities and Stolen Credentials
Vulnerabilities

Nagios XI Flaw Exposes User Data to Unauthenticated Attackers
Vulnerabilities

Critical Vulnerabilities in Fluent Bit Expose Cloud Services to DoS Attacks
Cyber Attack

CPI UK Battles Cyber Attack, Works to Restore IT Systems Across Eight Sites
Cyber Attack

Raymond Limited Suffers Cyber Attack, Core Operations Remain Secure
Malware Attack

Android Malware Disguised as Health App Discovered on Amazon Appstore
Malware Attack

OT/ICS Engineering Workstations Targeted by New Wave of Malware Attacks
Malware Attack

BadBox Malware Botnet Infects 192,000 Android Devices Despite Shutdown Efforts
Vulnerabilities

New Apache Tomcat Vulnerabilities Allow Remote Code Execution
Vulnerabilities

Severe Sophos Firewall Vulnerabilities Allow Remote Code Execution by Attackers
Ransomware

Starbucks Hit by Disruptions After Ransomware Attack on Software Vendor
Ransomware

Software Company Serving US and UK Grocery Chains Targeted in Ransomware Attack
Cyber Attack

Equinox Healthcare Alerts 21K Patients and Staff of Data Breach
Ransomware

Helldown Ransomware Targets VMware ESXi and Linux Servers in Latest Attacks
Ransomware

CISA Reports BianLian Ransomware Shifts Focus to Data Theft
Reports

New Report Highlights the Rising Threat and Scale of DDoS Attacks
Cyber Attack

Alert: Over 2,000 Palo Alto Networks Devices Compromised in Active Attack Campaign
Cyber Attack

Cybercriminals Turn to Snail Mail—Here’s What You Need to Know
Reports

Crucial Defense Unit Targeted in Ransomware Attack: DoPT Report (2023)
Cyber Attack

Lazarus Group Exploits Google Chrome Flaw to Hijack Infected Devices
Ransomware

Fog Ransomware Exploits SonicWall VPN Vulnerabilities to Infiltrate Corporate Networks
Ransomware

Henry Schein Reveals Data Breach One Year After Ransomware Attack
Malware Attack

Resilient Return: Bumblebee Malware Resurfaces After Recent Crackdown
Cyber Attack

Fidelity Alerts 77,000 Customers About Data Breach
Ransomware

Akira and Fog Ransomware Exploit Critical RCE Vulnerability in Veeam
Malware Attack

Cybercriminals Employ Unicode to Conceal Mongolian Skimmer in E-Commerce Sites
Cyber Attack

Internet Archive Hacked: Data Breach Affects 31 Million Users
Cyber Attack

Cyberattack Hits America's Largest Water Utility Amid Growing Threats to U.S. Infrastructure
Malware Attack

Custom Malware Breaches Air-Gapped Systems of European Government
Cyber Attack

Microsoft Confirms Active Exploitation of Zero-Day Vulnerability in Windows Management Console
Vulnerabilities

New Scanner Detects CUPS RCE Vulnerabilities in Exposed Linux and UNIX Servers
Malware Attack

New Variant of RomCom Malware, 'SnipBot,' Discovered in Data Theft Attacks
Cyber Attack

Transportation Companies Targeted by Cyberattacks Utilizing Lumma Stealer and NetSupport Malware
Cyber Attack

Kansas Water Plant Cyberattack Forces Transition to Manual Operations
Reports

U.S. Government Agency CMS Reports Data Breach Affecting 3.1 Million Individuals
Cyber Attack

Third Ivanti Vulnerability Recently Exploited in Active Attacks
Vulnerabilities

Over 1,000 ServiceNow Instances Exposed Corporate Knowledge Base Data
Malware Attack

Necro Android Malware Infects Millions
Vulnerabilities

Ransomware Gangs Leverage Microsoft Azure Tools for Data Exfiltration in Sophisticated Attacks
Cyber Attack

Halliburton Confirms Data Theft in Recent RansomHub Cyberattack
Cyber Attack

Planned Parenthood Confirms Cyberattack; RansomHub Threatens to Leak Stolen Data
Cyber Attack

Microchip Technology Confirms Data Breach Following Cyberattack
Cyber Attack

TfL Suffers Major Cyber Attack, National Crime Agency Launches Investigation
Ransomware

Cicada3301 Ransomware Targets VMware ESXi Servers in New Global Cybercrime Operation
Cyber Attack

Cisco Issues Warning About Backdoor Admin Account in Smart Licensing Utility
Vulnerabilities

Over 1.1 Million Users Affected by Vulnerabilities in Two WordPress Contact Form Plugins
Cyber Attack

Critical AWS Vulnerabilities Expose Services to Remote Attacks and Data Theft
Vulnerabilities

Critical Vulnerability in Ivanti Virtual Traffic Manager Could Grant Unauthorized Admin Access
Ransomware

3AM Ransomware Compromises Data of 464,000 Kootenai Health Patients
Vulnerabilities

pfsense Open Source Firewall Vulnerable to Remote Code Execution Attacks
Cyber Attack

Hacker Erases Data on 13,000 Devices After Breaching Classroom Management Platform
Reports

Average Cost of Data Breaches in India Reaches $2.18 Million: RBI Report
Vulnerabilities

New Specula Tool Exploits Outlook for Remote Code Execution on Windows
Cyber Attack

Threat Actor Exploits Proofpoint Email Routing Flaw to Send Millions of Spoofed Phishing Emails
Cyber Attack

ServiceNow RCE Flaws Actively Exploited to Steal Credentials
Vulnerabilities

Cisco VPN Routers Flaw Allows Remote Code Execution
Cyber Attack

Gemini Crypto Exchange Discloses Third-Party Data Breach
Malware Attack

Malware Attacks Target 250 Million Players of Hamster Kombat
Reports

Cisco Talos Report Unveils Key Insights into Ransomware Trends
Ransomware

Akira Ransomware Targets Latin American Airline Industry
Vulnerabilities

Ransomware Groups Exploiting Vulnerability in Veeam Backup & Replication
Ransomware

CDK Global Paid $25M Ransom Following Cyberattack
Ransomware

AT&T Data Breach Linked to American Hacker in Turkey, Telecom Giant Paid $370K Ransom
Ransomware

Offshore Vessel Company Fined $18,000 After Ransomware Attack Exposes Seamen's Personal Data
Vulnerabilities

OVHcloud Attributes Record-Breaking DDoS Attack to MikroTik Botnet
Malware Attack

Poseidon Mac Stealer Spreads via Google Ads
Vulnerabilities

VMware ESXi Vulnerabilities Allow Attackers to Bypass Authentication
Cyber Attack

Cyberattack on Indonesia's National Data Center Demands $8 Million Ransom
Cyber Attack

BSNL Data Breach Exposes 278 GB of Sensitive Telecom Information Twice in Six Months
Cyber Attack

CoinStats Reports North Korean Hackers Breached 1,590 Crypto Wallets
Vulnerabilities

Facebook PrestaShop Module Exploited to Steal Credit Card Information
Cyber Attack

Los Angeles Unified Confirms Student Data Stolen in Snowflake Account Hack
Cyber Attack

Massive Data Breach Exposes PI of Over 3 Million Americans to Cybercriminals
Cyber Attack

First Million Compromised Ticketmaster Records Released for Free
Ransomware

Keytronic Reports Theft of Personal Information in Ransomware Attack
Vulnerabilities

FortiOS Vulnerability Allows Attackers to Execute Unauthorized Commands
Malware Attack

Medibank Breach Exposes Data of 9.7 Million Individuals Due to VPN Security Flaw
New In Technology

New Phishing Toolkit Exploits PWAs to Steal Login Credentials
Ransomware

Knight Ransomware Rebranded and Targeting Healthcare and Businesses Globally
Malware Attack

Hundreds of Snowflake Customer Passwords Exposed Online, Tied to Info-Stealing Malware
Cyber Attack

Active Exploitation of OS Command Injection Flaw in Oracle WebLogic Server
Cyber Attack

Massive Criminal Records Leak Exposes Personal Information of 70 Million Americans
Cyber Attack

Unknown Threat Actor Bricks 600,000 Routers Using Chalubo Malware
Cyber Attack

Snowflake Denies Breach, Attributes Data Theft to Poorly Secured Customer Accounts
Reports

Hackers Target 1,500 Banks and Customers in 60 Countries, Aiming to Drain Accounts
Cyber Attack

Boeing Acknowledges $200 Million Ransomware Extortion Attempt
Cyber Attack

Dell Issues Alert on Data Breach: Reportedly Impacts 49 Million Customers
Cyber Attack

MoD Data Breach Exposes UK Armed Forces' Personal Information
Vulnerabilities

Traficom Issues Warning on Android Malware Targeting Finnish Bank Accounts
Cyber Attack

Panda Restaurants Reveals Data Breach Following Hack of Corporate Systems
Cyber Attack

Dropbox Discloses Theft of Customer Data and Authentication Secrets from eSignature Service
Malware Attack

Cuttlefish Malware Targets Routers, Monitoring Traffic for Credentials
Cyber Attack

U.S. Health Giant Kaiser Notifying Millions of Data Breach, Shared Patient Info with Advertisers
Cyber Attack

Cisco ASA Devices Compromised by Zero-Day Exploits
Reports

Exploited Vulnerability Impacts Thousands of Palo Alto Firewalls
Cyber Attack

Critical Vulnerability in Citrix UberAgent Enables Privilege Escalation
Cyber Attack

Hackers Exploit OpenMetadata Apps in Kubernetes for Cryptomining
Vulnerabilities

Researchers Uncover Windows Vulnerabilities Allowing Rootkit-Like Capabilities
Vulnerabilities

CISA Advisory Highlights Critical ICS Device Vulnerabilities with No Immediate Fixes
Patches

CrushFTP Urges Immediate Patching for Exploited Zero-Day Vulnerability
Cyber Attack

Serious Vulnerability in Forminator Plugin Affects 300,000+ WordPress Websites
Cyber Attack

Security Breach Reported for Cisco Duo's Multifactor Authentication Service
Vulnerabilities

Intel and Lenovo Servers Affected by 6-Year-Old BMC Vulnerability
Cyber Attack

Roku Reports 576,000 User Accounts Compromised Following Second Security Incident
Cyber Attack

Targus Discloses Cyberattack Following Detection of Hackers on File Servers
Ransomware

Hoya, Optics Leader, Faces $10 Million Ransomware Demand
Vulnerabilities

Palo Alto Networks Issues Alert About Firewall Vulnerability Being Exploited
Malware Attack

New Raspberry Robin Malware Campaign Spreads via Malicious Windows Script Files (WSFs)
Malware Attack

Sophisticated Multi-Stage Attack Delivers Various Malware via Invoice Phishing
Cyber Attack

Hackers Breach Government Consulting Firm, Steal 340,000 Social Security Numbers
Ransomware

Health Data of 533,000 Individuals Stolen by GHC-SCW Ransomware Gang
Cyber Attack

Researchers Uncover First Native Spectre v2 Exploit Against Linux Kernel
Vulnerabilities

Cisco Resolves High-Severity Vulnerability in IOS Software for Catalyst 6000 Series Switches
Cyber Attack

Hackers Exploit Thousands of Compromised WordPress Sites for Crypto Scams
Cyber Attack

Magento Flaw Exploited by Threat Actors to Inject Persistent Backdoor into E-commerce Websites
Vulnerabilities

Backdoor Account Found on Over 92,000 Exposed D-Link NAS Devices
Patches

Apache HTTP Server Vulnerability Enables Injection of Malicious Headers and HTTP/2 Denial-of-Service
Cyber Attack

95,000 User Personal Records Compromised in XpressBees Data Leak
Reports

Midnight Blizzard Causes US Government Impact in Microsoft Breach
Vulnerabilities

Regulator Warns of Increasing Vulnerability to Cyberattacks in US Electric Grid
Reports

Sophos Report: Cybercriminals Exploit Remote Desktop Protocol in 90% of Cyber Attacks
Vulnerabilities

Researcher Earns $5,500 Bounty for Discovering SQL Injection Vulnerability in LayerSlider WordPress Plugin
Vulnerabilities

Newly Discovered HTTP/2 Vulnerabilities Enable "CONTINUATION Flood" Denial of Service Attacks
Malware Attack

Phishing Campaign Impersonating "Federal Bureau of Transportation" Targets Oil & Gas Sector
Ransomware

Jackson County Declares State of Emergency Following Ransomware Attack
Ransomware

Harvard Pilgrim Health Network Revises Data Breach Total to Nearly 2.9 Million
Patches

Cisco Fixes Multiple Vulnerabilities in IOS and IOS XE Software, Potentially Triggering Denial-of-Service (DoS) Attacks
Vulnerabilities

Cisco Issues Recommendations to Mitigate Password-Spraying Attacks on VPN Services
Vulnerabilities

Recent Linux Vulnerability Poses Risk of User Password Disclosure and Clipboard Hijacking
Malware Attack

PyPI Halts New User Registrations to Thwart Malware Campaign
Vulnerabilities

CISA Issues Warning on Exploited Microsoft SharePoint Vulnerabilities
Malware Attack

Android Phones Transformed into Proxies by Free VPN Apps on Google Play
Ransomware

Agenda Ransomware Unleashes Enhanced Virtual Machine-Focused Attack Worldwide
Cyber Attack

Global Victims Afflicted by 'Darcula' Phishing Operation as a Service
Vulnerabilities

New Tool "BlueDucky" Exploits Bluetooth Vulnerability for 0-Click Code Execution
Cyber Attack

Hackers Exploit Vulnerability in Ray Framework to Breach Servers and Hijack Resources
Malware Attack

The Moon Malware Infects 6,000 ASUS Routers Within 72 Hours to Serve as Proxies
Vulnerabilities

Input Validation Flaw in MobSF Pen-Testing Tool Leads to SSRF Vulnerability
Cyber Attack

Hackers Allegedly Gain Unauthorized Entry to Fortinet Devices Across Multiple Companies
Cyber Attack

Developers on GitHub Targeted in Sophisticated Supply Chain Cyberattack
Cyber Attack

Raspberry Pi Transformed by Hackers into an Online Anonymity Tool
Reports

New Phishing Attacks Unleash StrelaStealer on Over 100 EU and US Organizations
Malware Attack

AndroxGh0st Malware Targets Laravel Applications to Extract Cloud Credentials
Vulnerabilities

UAE Cybersecurity Council Warns of High-Risk Vulnerabilities in Google Chrome
Cyber Attack

Belgian Grand Prix Email Account Compromised for Phishing Scam
Cyber Attack

Critical Denial-of-Service Attacks Target UDP-Based Network Communications
Reports

Report: Hundreds of Government Units and Companies in China Compromised by Cyberattacks
Vulnerabilities

'GoFetch' Vulnerability Exposes Apple Silicon's Encryption Weakness
Cyber Attack

New Phishing Campaign Targets US Organizations with NetSupport RAT
Vulnerabilities

New Technique Puts Millions of Windows Domains at Risk, Warns Akamai Researchers
Malware Attack

Malicious Sign1 Malware Campaign Hits 39,000 WordPress Websites
Reports

Russian State Hackers Launch Targeted Phishing Campaigns in Global Espionage Efforts
New In Technology

Pwn2Own Vancouver 2024 Wraps Up with Hackers Earning Over $1.1 Million and Exploiting 29 Zero-Day Vulnerabilities
Malware Attack

Corporate Phishing Campaign Utilizing 'Fluffy Wolf' Disseminates Meta Stealer
Cyber Attack

EPA and White House Issue Warning: US Water Systems Under Cyberattack Threat
Vulnerabilities

Oracle cautions that macOS 14.4 update disrupts Java functionality on Apple CPUs
Cyber Attack

Security Oversight Exposes 19 Million Passwords in Firebase Instances, Unencrypted
Cyber Attack

New Cyberattack Method "Conversation Overflow" Targets Executives by Evading AI Security
Malware Attack

Malware Threatens Over 100,000 Projects on GitHub
Cyber Attack

Hackers Allegedly Leak Over 70 Million Records Purportedly Obtained from AT&T
Cyber Attack

Fujitsu Discovers Malware Infection, Confirms Customer Data Breach
Vulnerabilities

Novel Proof-of-Concept Attack Reveals ChatGPT Vulnerabilities
Cyber Attack

Hackers leverage Aiohttp vulnerability to target susceptible networks
Cyber Attack

IMF Discloses Cyber Incident: 11 Email Accounts Compromised
Cyber Attack

Financial Services Firm WeRize Falls Victim to Data Breach
Cyber Attack

Hackers Employ Weaponized PDFs to Distribute Remcos RAT
Vulnerabilities

Vulnerabilities in ChatGPT Plug-in Pose Risk of Exposing Sensitive Data
Cyber Attack

Data Breach at French Unemployment Agency Affects 43 Million Individuals
Reports

Report: Exploitation of eSIM Vulnerabilities by SIM Swappers for Phone Numbers
Patches

Chipmakers Intel and AMD Release Patches to Address New Microarchitectural Vulnerabilities
Ransomware

StopCrypt Ransomware Evades Detection, Becomes Widely Distributed
Vulnerabilities

CERT-In Issues Alert Regarding Numerous Security Vulnerabilities Impacting Latest Android Versions
Cyber Attack

Russian-Backed Hacktivists Launch DDoS Cyberattack on Alabama
Malware Attack

New PixPirate Banking Trojan for Android Uses Innovative Technique to Stay Hidden on Phones
Patches

Cisco Addresses Critical Vulnerabilities in IOS RX
Vulnerabilities

Researchers Outline Kubernetes Vulnerability Allowing Windows Node Takeover
Cyber Attack

French Government Reports Unprecedented Surge in Cyberattacks
Cyber Attack

Advanced Vishing Campaigns Sweep Across the Globe
Vulnerabilities

Study Reveals Cybersecurity Risks from Misconfigured Microsoft SCCM Systems
Patches

Microsoft Patch Actively Exploited Admin-to-Kernel Vulnerability
Cyber Attack

15,000 Compromised Roku Accounts Sold online
Vulnerabilities

Proof-of-Concept Exploit Released for Critical Progress Software OpenEdge Vulnerability
Cyber Attack

Hackers Exploit Vulnerability in Popup Builder Plugin, Infecting 3,300 WordPress Sites with Malware
Malware Attack

WogRAT Malware Targets Windows and Linux Systems Through Exploited Notepad Service
Cyber Attack

Magnet Goblin Exploits 1-Day Vulnerabilities for Financial Gain
Cyber Attack

CISA Discloses Breach, Shuts Down Systems Amidst Cybersecurity Concerns
Vulnerabilities

Critical SSL VPN Flaw in FortiOS Warned by Fortinet, Potentially Exploited in Active Attacks
Cyber Attack

Critical Flaw in JetBrains TeamCity Exploited; 1.4k Servers Compromised
Patches

AnyCubic Resolves 3D Printer Zero-Day Vulnerability with Firmware Update
Cyber Attack

Cyber Attack Impacts Duvel Beer Production
Patches

Cisco Releases Patch for Critical VPN Hijacking Vulnerability in Secure Client
Cyber Attack

WordPress Sites Exploited: Visitors' Browsers Used for Distributed Brute-Force Attacks
Cyber Attack

Bifrost Trojan's Linux Variants Employ Typosquatting to Evade Detection
Vulnerabilities

Critical Authentication Bypass Flaw in QNAP NAS Devices Prompts Warning
Malware Attack

Python-Based Snake Info Stealer Spreads via Facebook Messages
Malware Attack

Golang Malware Targets Docker, Hadoop, Redis, and Confluence Systems, Warns Security Experts
Cyber Attack

Hackers Exploit QEMU for Covert Network Traffic Tunneling in Cyberattacks
Cyber Attack

Online Leak Exposes Millions of Google, WhatsApp, and Facebook 2FA Security Codes
Ransomware

Hamilton City Hit by Ransomware Attack, Services Paralyzed for First Time
Patches

Hikvision Addresses High-Severity Vulnerability in Security Management System with Patch
Ransomware

BlackCat Ransomware Shuts Down Servers Amid Allegations of $22 Million Ransom Theft
Cyber Attack

Hackers of TA577 Group Shift Tactics, Utilizing Phishing to Snatch NTLM Authentication Hashes
Ransomware

U.S. Agencies Warn of Phobos Ransomware Targeting Critical Infrastructure
Vulnerabilities

CISA Issues Warning: Malware Exploits Microsoft Streaming Bug
Cyber Attack

Malicious AI Models on Hugging Face Threaten Users' Machines
Malware Attack

GTPDOOR Malware: A Threat Targeting Telecoms, Exploiting GPRS Roaming Networks
Vulnerabilities

VoltSchemer's Exploit Enables Wireless Charger Takeovers
Cyber Attack

Major Brands' Subdomains Hijacked in Extensive Spam Campaign
Malware Attack

Pikabot Unveils Latest Tricks: A Return with Surprising Innovations
Vulnerabilities

US and Allied Nations Issue Warning: Russian Hackers Transitioning to Cloud Attacks
New In Technology

Breaking Ground: US-India Cybersecurity Initiative Launched to Fortify IT Connections
Ransomware

Blackcat Ransomware Attack on UnitedHealth Unit Causes US Pharmacy Outage, Sources Report
Cyber Attack

Hackers Exploit 14-Year-Old CMS Editor on Government and Education Websites for SEO Poisoning
Cyber Attack

RCMP Confirms Cyber Attack, Assures No Impact on Operations
New In Technology

CISA, EPA, and FBI Unite to Strengthen Cybersecurity for Water Systems
Malware Attack

Rhadamanthys Stealer: A New Cyber Threat to the Oil and Gas Industry
Vulnerabilities

Exploitation of New ScreenConnect RCE Flaw in Ransomware Attacks
Reports

Stolen Credentials Identified as Primary Risk in X-Force Threat Intelligence Index 2024
Cyber Attack

Francis Howell Schools, Missouri, Offline Following Cyber Attack
Cyber Attack

Hackers Strike Malawi, Prompting Suspension of Passport Issuance
Cyber Attack

Change Healthcare Confirms Cyber Attack, Disrupting Systems Across US Healthcare
Reports

New Cybersecurity Report from CrowdStrike Shows Cloud Attacks Surge by 75%
Ransomware

PSI, Control Systems Firm, Faces Uphill Battle in Ransomware Attack Recovery
Vulnerabilities

VMware Urges Admins: Remove Deprecated, Vulnerable Authentication Plug-In
Ransomware

Cactus Ransomware Group Claims 1.5TB Data Theft from Schneider Electric
Malware Attack

RatMilad can secretly record your phone calls

Trending News

Vulnerabilities

Instagram Fixes Password Reset Flaw Amid Reports of User Data Leak

Vulnerabilities

Researcher Highlights WhatsApp Metadata Leak as Meta Rolls Out Mitigations

Cyber Attack

Landfall Android Spyware Targeted Samsung Phones via Zero-Day

Cyber Attack

Robo-Advisor Betterment Discloses Data Breach

Cyber Attack

Landfall Android Spyware Targeted Samsung Phones via Zero-Day

Robo-Advisor Betterment Discloses Data Breach

Traveler Data Exposed in Eurail Security Breach

Reports

New Report Highlights the Rising Threat and Scale of DDoS Attacks

Crucial Defense Unit Targeted in Ransomware Attack: DoPT Report (2023)

U.S. Government Agency CMS Reports Data Breach Affecting 3.1 Million Individuals

No blogs found in the reports category.