Oracle Responds to Claims of Data Breach Involving 6 Million Records
Oracle has firmly denied suffering a data breach after a hacker claimed to have stolen approximately 6 million records from Oracle Cloud’s federated Single Sign-On (SSO) servers. According to Oracle’s statement, shared with security news outlet BleepingComputer, the company asserts that “there has been no breach of Oracle Cloud,” adding explicitly that none of its cloud customers experienced any data
Cloudflare Eliminates Unencrypted HTTP API Access
Cloudflare recently announced it has completely disabled unencrypted HTTP connections to its API endpoint (api.cloudflare.com). The company now exclusively accepts secure HTTPS connections, significantly strengthening protection against sensitive data exposure. Previously, Cloudflare permitted API requests via both HTTP and HTTPS. Non-secure HTTP requests were either redirected or rejected with a 403 Forbidden response. However, even brief unencrypted interactions risked exposing
PSEA Data Breach Affects Over 500,000 People
A major cyberattack targeted the Pennsylvania State Education Association (PSEA), compromising the personal data of more than 500,000 individuals. The breach occurred in July 2024 but only came to light after a lengthy investigation that concluded in February 2025. PSEA represents over 178,000 educators, including teachers, administrators, and support staff across Pennsylvania. In letters sent to 517,487 people, the organization
RansomHub Ransomware Affiliates Adopt New ‘Betruger’ Backdoor in Attacks
Cybersecurity researchers from Symantec have uncovered a sophisticated new backdoor named Betruger, recently deployed by affiliates of the notorious RansomHub ransomware-as-a-service (RaaS) group. This custom-built malware significantly enhances the efficiency and stealth of ransomware attacks. What is the Betruger Backdoor? Symantec describes Betruger as an advanced "multi-function" malware, uniquely designed to consolidate several malicious tools into one powerful package. This
CISA Warns of Active Exploitation in NAKIVO Backup Software Flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has alerted federal agencies about active exploitation of a severe vulnerability in NAKIVO’s Backup & Replication software. Identified as CVE-2024-48248, the flaw allows attackers to access sensitive files remotely, potentially compromising entire infrastructures. Vulnerability Details: CVE-2024-48248 Explained This vulnerability is classified as an absolute path traversal flaw, meaning unauthenticated attackers could remotely
AI Revolutionises Weather Prediction: Meet Aardvark Weather
Researchers from the University of Cambridge have introduced Aardvark Weather, a groundbreaking AI-driven weather forecasting system. According to the latest study published in Nature, this new model provides significantly faster and more efficient forecasts compared to traditional methods. Supported by prominent institutions like the Alan Turing Institute, Microsoft Research, and the European Centre for Medium Range Weather Forecasts (ECMWF), Aardvark
The Changing Landscape of Organised Crime: EU-SOCTA 2025 Report
Organised crime is evolving rapidly. Driven by global instability, digitalisation, and new technologies like artificial intelligence (AI), criminal networks are transforming faster than ever before. The EU’s Serious and Organised Crime Threat Assessment (EU-SOCTA 2025) outlines key changes reshaping organised crime in Europe. Crime as a Destabilising Force Today, organised crime doesn't just threaten public safety—it challenges the stability of
Europe’s Tech Companies Call for Increased Digital Independence from EU
European tech companies have called on the European Commission to urgently support technological independence across the continent. Nearly a hundred businesses, including Sweden-based Cleura, Iver, Redpill Linpro, and Safespring, signed an open letter addressed directly to EU Commission President Ursula von der Leyen. Strategic Digital Autonomy Needed Urgently The letter emphasizes Europe's heavy reliance on technology provided by major international
Sweden Announces New National Cybersecurity Strategy
The Swedish government has unveiled its new national cybersecurity strategy. Covering the period from 2025 until 2029, the strategy prioritizes enhanced cybersecurity readiness and resilience in the face of growing digital threats. Minister for Civil Defence, Carl-Oskar Bohlin, highlighted the strategy’s importance. He emphasized that cybersecurity remains a high-priority area due to escalating geopolitical tensions and increased cyber threats against
Alphabet to buy cyber security group Wiz for $32bn
Alphabet's Landmark Acquisition of Wiz to Enhance Cloud Security Alphabet Inc., the parent company of Google, has announced its agreement to acquire cybersecurity firm Wiz for $32 billion in an all-cash transaction, marking the largest acquisition in Alphabet's history. Strategic Move to Bolster Google Cloud This acquisition aims to strengthen Google's position in the competitive cloud services market. Where it
