Data Breach

5g (9)

DOGE Accused of Uploading Social Security Data to Unsecured Cloud

A whistleblower report filed today accuses the Department of Government Efficiency (DOGE) within the Social Security Administration (SSA) of secretly replicating the nation’s entire Social Security dataset in an unsecured cloud environment. According to the disclosure, this action placed over 300 million Americans at risk of identity theft, financial fraud, and potential loss of Social […]

DOGE Accused of Uploading Social Security Data to Unsecured Cloud Read More »

5g (4)

Salesloft and Drift Breach Used to Steal OAuth Tokens from Salesforce

A highly advanced cyber campaign has compromised corporate Salesforce environments by abusing OAuth tokens linked to the Salesloft Drift third-party application. The incident resulted in large-scale exposure of sensitive information across several organizations. The campaign, attributed to UNC6395, was active between August 8 and August 18, 2025, and showed a high level of operational security

Salesloft and Drift Breach Used to Steal OAuth Tokens from Salesforce Read More »

add a heading (11)

Hackers Evade EDR to Steal Windows Secrets and Credentials Undetected

Cybersecurity researchers have uncovered a stealthy method that enables attackers to extract Windows secrets and credentials without triggering alerts from most Endpoint Detection and Response (EDR) solutions. This approach can be used after gaining initial access to a system, allowing attackers to perform lateral movement across networks while staying hidden from standard monitoring tools. How

Hackers Evade EDR to Steal Windows Secrets and Credentials Undetected Read More »

add a heading (7)

Colt Admits Customer Data Theft Following Ransomware Attack

Colt Technology Services, a leading telecommunications provider, has confirmed that a ransomware attack on August 12, 2025, resulted in the theft of sensitive customer data. The company revealed that attackers gained access to confidential files containing customer information. Soon after, the document titles were leaked on dark web forums, forcing Colt to take urgent containment

Colt Admits Customer Data Theft Following Ransomware Attack Read More »

add a heading (7)

Critical PostgreSQL Flaws Enable Code Injection in Restorations

The PostgreSQL Global Development Group has rolled out emergency security updates across all supported versions to fix three newly discovered vulnerabilities that expose organizations to arbitrary code execution risks during database restoration processes. These vulnerabilities affect PostgreSQL versions 13 through 17, with security patches available in the latest releases: 17.6, 16.10, 15.14, 14.19, and 13.22.

Critical PostgreSQL Flaws Enable Code Injection in Restorations Read More »

add a heading (6)

Workday Data Breach: Hackers Exploit Third-Party CRM

Workday, a well-known provider of enterprise cloud applications for finance and human resources, has confirmed it was impacted by a sophisticated social engineering campaign that led to a data breach involving a third-party Customer Relationship Management (CRM) system. No Customer Data Compromised The company clarified that its customer data and tenant environments were not affected,

Workday Data Breach: Hackers Exploit Third-Party CRM Read More »

Cyberattack on Bouygues Telecom Exposes Data of 6.4 Million Customers

Cyberattack on Bouygues Telecom Exposes Data of 6.4 Million Customers A major cyberattack has hit French telecommunications giant Bouygues Telecom, compromising personal data belonging to 6.4 million customers. The breach, detected on August 4th, has raised serious concerns over data security and customer safety. Details of the Breach Bouygues, which serves nearly 27 million mobile

Cyberattack on Bouygues Telecom Exposes Data of 6.4 Million Customers Read More »

Google Confirms Data Breach Exposed Potential Google Ads Customer Information

“Google Confirms Data Breach Exposed Potential Google Ads Customer Information” Google has confirmed a data breach involving one of its corporate Salesforce CRM instances used for communicating with potential Google Ads customers. The incident exposed basic business contact details but did not affect financial or active Ads account data. In a data breach notification sent to affected parties and

Google Confirms Data Breach Exposed Potential Google Ads Customer Information Read More »