Red Hat Data Breach Intensifies Amid Hacker Collaboration
The Red Hat data breach has grown into one of the most alarming cybersecurity incidents of the year. What began as a targeted intrusion by the Crimson Collective has now transformed into a high-stakes extortion campaign. With notorious hacker group ShinyHunters joining forces, the attackers have amplified their threats, adding public exposure and reputational damage to Red Hat’s growing list
Asahi Cyberattack Disrupts Beer Production in Japan
The Asahi cyberattack has disrupted beer production in Japan, forcing the country’s largest brewer to shut down parts of its IT systems. Asahi Group Holdings confirmed that the incident occurred in late September 2025, affecting operations in its domestic market. While no evidence suggests customer or partner data was exposed, the disruption highlights how vulnerable modern manufacturing has become to
Medusa Ransomware Tried to Recruit BBC Reporter
Medusa ransomware is back in the spotlight after reports surfaced of an unusual recruitment attempt. The gang allegedly contacted a BBC journalist, asking for help in hacking into a major media organization. The case shows how far ransomware groups are willing to go when traditional methods fail. A Bold Recruitment Attempt Instead of sending phishing emails or exploiting vulnerabilities, the
Postmark MCP npm Package Stole User Emails
The Postmark MCP npm package has been exposed as a malicious module that silently stole user emails. Disguised as a legitimate client, the package highlights ongoing risks in the software supply chain and raises concerns for developers relying on npm. How the Attack Happened Security researcher Kamil “kph” Piekarski discovered that the fake package was uploaded to npm on September
European Airport Cyberattack Suspect Arrested
The recent European airport cyberattack disrupted operations across several major hubs and triggered widespread delays. Authorities confirmed the incident was tied to a little-known ransomware strain, and a suspect connected to the attack has been arrested. The case highlights growing risks in aviation cybersecurity. Disruption Across European Airports The attack caused immediate delays, system interruptions, and logistical issues for multiple
Ransomware Attack Causes European Airport Disruptions
A ransomware attack has disrupted operations at several major airports across Europe, creating widespread delays and cancellations for travelers. The cybercriminals targeted key IT systems that support check-ins, boarding, and baggage handling. As staff scrambled to implement manual workarounds, passengers faced hours of uncertainty and missed connections. This large-scale disruption underscores the aviation sector’s growing dependence on digital infrastructure —
SpamGPT Cybercrime Tool Turns Phishing into Organized Business
The rise of the SpamGPT cybercrime tool highlights a dangerous evolution in digital threats. Artificial intelligence has long been used to enhance marketing, streamline workflows, and improve customer outreach. Cybercriminals have now adopted the same playbook, transforming AI into a weaponized service. SpamGPT packages phishing operations into a polished platform that resembles a legitimate CRM system. Instead of building malicious
RaccoonO365 Phishing Service Disrupted by Microsoft and Cloudflare
Microsoft and Cloudflare have joined forces to dismantle the RaccoonO365 phishing service, one of the most widespread phishing-as-a-service operations uncovered to date. The joint takedown targeted the infrastructure and domains used by cybercriminals to conduct massive credential theft campaigns against Microsoft 365 users worldwide. This disruption represents more than just the removal of malicious domains. It highlights the ongoing battle
SonicWall MySonicWall Breach Forces Credential Resets
The SonicWall MySonicWall breach has prompted urgent warnings from the cybersecurity vendor. SonicWall advised all customers to reset credentials and enable multi-factor authentication after attackers gained access to customer accounts. The incident highlights the growing risks tied to vendor platforms that hold sensitive client data. Breach Overview SonicWall confirmed unauthorized activity within its MySonicWall customer portal. This platform manages product
EggStreme Fileless Malware Targets Philippine Military
A newly identified threat named EggStreme fileless malware has been deployed by a suspected Chinese advanced persistent threat (APT) group. Researchers found the campaign targeting Philippine military systems, underlining the region’s rising geopolitical cyber risks. EggStreme stands out for its stealth. Instead of leaving files on disk, it executes in memory, making detection extremely difficult. This fileless design highlights the
