Category: CYBER SECURITY

Tata Technologies Ltd., a subsidiary of Tata Motors, recently faced a ransomware attack that forced the company to suspend some of its IT services.

Cybersecurity experts warn that the chatbot poses a risk of data exposure to the Chinese government.

The Pentagon is scrambling to block DeepSeek, a Chinese AI chatbot after U.S. Department of Defense (DoD) employees connected their work computers to Chinese servers, Bloomberg reports.

DeepSeek, the Chinese AI startup behind the DeepSeek-R1 language model, left two unsecured databases publicly accessible, exposing user chat logs, API keys, backend infrastructure details, and operational metadata.

Japan faced an unprecedented rise in cyberattacks last month, as Distributed Denial-of-Service (DDoS) attacks reached record levels, according to industry data.

Cybercriminals are actively exploiting outdated versions of WordPress and its plug-ins to hijack thousands of websites, tricking visitors into downloading malware, security researchers have discovered.

The European Union has imposed sanctions on three Russian hackers from Unit 29155, a division of Russia’s military intelligence agency (GRU), for their involvement in cyberattacks targeting Estonia’s government agencies in 2020.

DeepSeek, a rapidly growing AI platform from China, has temporarily disabled new user registrations on its DeepSeek-V3 chat platform following a large-scale cyberattack targeting its services.

Phemex, a prominent cryptocurrency exchange, suffered a devastating security breach on Thursday, resulting in the theft of over $85 million worth of cryptocurrency.

UK telecommunications company TalkTalk is investigating a potential data breach involving a third-party supplier after a threat actor began offering alleged customer data for sale on a hacking forum.

UnitedHealth has confirmed that the cyberattack on its subsidiary, Change Healthcare, last February impacted around 190 million people—almost double the initial estimate.

Security researchers uncovered a critical vulnerability in Subaru’s Starlink service that could have allowed attackers to hijack and control vehicles in the U.S., Canada, and Japan using only a license plate number.

Two severe security vulnerabilities have been identified in the RealHome theme and Easy Real Estate plugin for WordPress, which could allow attackers to gain administrative access to websites without authentication.

A critical vulnerability in the 7-Zip file archiver (CVE-2025-0411) has been discovered, enabling attackers to bypass the Mark of the Web (MotW) Windows security feature.

Ransomware groups are adopting advanced techniques that combine email bombing with fake Microsoft Teams IT support calls to infiltrate company networks.

The largest DDoS attack ever recorded reached a colossal 5.6 terabits per second (Tbps), originating from a Mirai-based botnet comprising 13,000 compromised devices.

A Russian nation-state actor known as Star Blizzard has launched a new spear-phishing campaign aimed at compromising WhatsApp accounts of individuals in key sectors, including government, diplomacy, defense policy, international relations, and Ukraine aid organizations.

The Federal Trade Commission (FTC) has mandated that web hosting giant GoDaddy implement stronger security protections following years of inadequate safeguards.

The U.S. Treasury Department has imposed sanctions on a network of individuals and front companies linked to North Korea’s Ministry of National Defense.

A critical security vulnerability in the W3 Total Cache plugin poses serious risks by potentially exposing sensitive information, including metadata from cloud-based applications.