-
Legacy Systems Compromised in Targeted Attack Oxford City Council has confirmed a cyberattack that compromised legacy systems holding staff data from 2001 to 2022. The breach has disrupted core ICT services, though most have now been restored. Delays may still occur as the Council works through system backlogs. The unauthorized access allowed attackers to obtain…
-
Sophisticated Social Engineering Tactics Used in Latest Attacks Cybersecurity analysts have confirmed that Scattered Spider, a threat group known for impersonation and manipulation tactics, is now focusing on U.S. insurance companies. Previously active in the U.K. and U.S. retail sectors, the group has shifted toward exploiting customer service operations in the financial industry. John Hultquist,…
-
Stolen Credentials Used to Access External Insurance Platform Swedish vehicle manufacturer Scania has reported a cybersecurity breach impacting its Financial Services division. The attackers used stolen login credentials to access an external insurance platform hosted by a third-party IT provider. The compromised site, insurance.scania.com, has since been taken offline. The breach occurred between May 28…
-
164GB of Sensitive Data Found in Misconfigured Server A critical security lapse at Openprovider, a major domain registrar based in the Netherlands, has exposed sensitive customer data and domain management credentials. Discovered on April 6, 2025, the breach involved over 164GB of data left open to the public via a misconfigured Elasticsearch instance. Cybersecurity researcher…
-
Breach Contained Quickly, But Sensitive Data May Be Exposed U.S. insurance giant Aflac has confirmed a cybersecurity incident affecting internal systems. The company clarified that no ransomware was involved and customer operations remained stable. However, an investigation revealed that personally identifiable information (PII) may have been compromised. The exposed data could include social security numbers,…
-
Rapid Rise and Aggressive Tactics Alarm Cybersecurity Experts Cybersecurity researchers have flagged SafePay as the most active ransomware group today, despite being only seven months old. According to a recent Check Point report, SafePay has quickly built a dominant presence in the ransomware landscape. The group uses a double-extortion approach—encrypting files while also stealing sensitive…
-
Europol Leads Global Crackdown on Illicit Online Drug Trade European law enforcement has successfully shut down Archetyp Market, one of the most persistent dark web drug marketplaces. The operation was coordinated by Europol and Eurojust, involving enforcement teams across Germany, the Netherlands, Romania, Spain, Sweden, and the United States. From June 11 to 13, a…
-
Summer Launch Possible, But Not Guaranteed Sam Altman, CEO of OpenAI, has confirmed that the release of GPT-5 is expected sometime this summer. However, the exact launch date depends on the model meeting several internal benchmarks. If GPT-5 doesn’t pass these performance standards, OpenAI may delay or withhold its release. Speaking during a recent interview,…
-
Largest DDoS Attack on Record Neutralized In May 2025, Cloudflare successfully blocked a massive distributed denial-of-service (DDoS) attack that peaked at 7.3 Tbps. The attack targeted a large hosting provider and broke the previous DDoS traffic record by 12%. In just 45 seconds, attackers pushed 37.4 terabytes of data—enough to stream over 7,500 hours of…
-
Sophisticated Phishing Campaigns Target Gmail Users A Russian state-backed cyber group has bypassed Gmail’s multi-factor authentication (MFA) using app-specific passwords. The threat actor, tracked by Google’s Threat Intelligence Group (GTIG) as UNC6293, is linked to the well-known APT29 group, often referred to as Cozy Bear. Between April and early June, the group launched a highly…