BleepingComputer.com News Headlines

05-01-26 (17:49)   VSCode IDE forks expose users to "recommended extension" attacks
05-01-26 (16:20)   Ledger customers impacted by third-party Global-e data breach
05-01-26 (16:20)   Agentic AI Is an Identity Problem and CISOs Will Be Accountable for the Outcome
05-01-26 (15:49)   NordVPN denies breach claims, says attackers have "dummy data"
04-01-26 (00:03)   Hackers claim to hack Resecurity, firm says it was a honeypot
03-01-26 (21:49)   ShinyHunters claims Resecurity hack, firm says it's a honeypot
02-01-26 (20:03)   Covenant Health says May data breach impacted nearly 478,000 patients
02-01-26 (18:34)   Cryptocurrency theft attacks traced to 2022 LastPass breach
02-01-26 (17:03)   Over 10K Fortinet firewalls exposed to actively exploited 2FA bypass
02-01-26 (16:34)   Google is testing a new image AI and it's going to be its fastest model
02-01-26 (16:20)   Google is testing a new image AI and it's going to be its fastest mdoel
02-01-26 (15:20)   Trust Wallet links $8.5 million crypto theft to Shai-Hulud NPM attack
01-01-26 (20:20)   OpenAI is offering $20 ChatGPT Plus for free to some users
01-01-26 (20:20)   The biggest cybersecurity and cyberattack stories of 2025
01-01-26 (20:20)   New GlassWorm malware wave targets Macs with trojanized crypto wallets
01-01-26 (00:03)   NYC mayoral inauguration bans Flipper Zero, Raspberry Pi devices
31-12-25 (17:03)   Hackers drain $3.9M from Unleash Protocol after multisig hijack
31-12-25 (16:03)   RondoDox botnet exploits React2Shell flaw to breach Next.js servers
31-12-25 (11:49)   IBM warns of critical API Connect auth bypass vulnerability
31-12-25 (10:49)   Disney will pay $10 million to settle children's data privacy lawsuit
30-12-25 (22:20)   New ErrTraffic service enables ClickFix attacks via fake browser glitches
30-12-25 (17:34)   European Space Agency confirms breach of "external servers"
30-12-25 (17:34)   Zoom Stealer browser extensions harvest corporate meeting intelligence
30-12-25 (16:34)   US cybersecurity experts plead guilty to BlackCat ransomware attacks
30-12-25 (15:49)   CISA orders feds to patch MongoBleed flaw exploited in attacks
30-12-25 (01:20)   Chinese state hackers use rootkit to hide ToneShell malware activity
29-12-25 (23:34)   Coupang to split $1.17 billion among 33.7 million data breach victims
29-12-25 (20:34)   Hacker arrested for KMSAuto malware campaign with 2.8 million downloads
29-12-25 (17:49)   Trust Wallet says 2,596 wallets drained in $7 million crypto theft attack
29-12-25 (16:49)   The Real-World Attacks Behind OWASP Agentic AI Top 10
29-12-25 (16:49)   ChatGPT finally rolls out Thinking time toggle on mobile
29-12-25 (16:49)   Romanian energy provider hit by Gentlemen ransomware attack
29-12-25 (15:20)   Former Coinbase support agent arrested for helping hackers
29-12-25 (14:20)   Korean Air data breach exposes data of thousands of employees
29-12-25 (13:34)   Microsoft Copilot is rolling out GPT 5.2 as "Smart Plus" mode
29-12-25 (12:20)   Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks
28-12-25 (21:49)   Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
28-12-25 (19:03)   Hacker claims to leak WIRED database with 2.3 million records
28-12-25 (06:49)   Massive Rainbow Six Siege breach gives players billions of credits
27-12-25 (10:49)   OpenAI's ChatGPT ads will allegedly prioritize sponsored content in answers
27-12-25 (10:20)   Fake Grubhub emails promise tenfold return on sent cryptocurrency
26-12-25 (16:03)   MongoDB warns admins to patch severe vulnerability immediately
26-12-25 (15:34)   Trust Wallet confirms extension hack led to $7 million crypto theft
25-12-25 (23:49)   ChatGPT's new formatting blocks make its UI look more like a task tool
25-12-25 (15:34)   Google will finally allow you to change your @gmail.com address
24-12-25 (23:34)   OpenAI is reportedly testing Claude-like Skills for ChatGPT
24-12-25 (23:34)   Fake MAS Windows activation domain used to spread PowerShell malware
24-12-25 (23:34)   Microsoft Teams to let admins block external users via Defender portal
24-12-25 (16:34)   MongoDB warns admins to patch severe RCE flaw immediately
24-12-25 (16:34)   FBI seizes domain storing bank credentials stolen from U.S. victims
24-12-25 (16:34)   Microsoft rolls out hardware-accelerated BitLocker in Windows 11
23-12-25 (20:34)   WebRAT malware spread via fake vulnerability exploits on GitHub
23-12-25 (14:34)   Malicious extensions in Chrome Web store steal user credentials
23-12-25 (14:34)   Microsoft Teams strengthens messaging security by default in January
23-12-25 (13:34)   Cyberattack knocks offline France's postal, banking services
23-12-25 (12:20)   Italy fines Apple $116 million over App Store privacy policy issues
23-12-25 (11:03)   Baker University says 2024 data breach impacts 53,000 people
22-12-25 (22:34)   Nissan says thousands of customers exposed in Red Hat breach
22-12-25 (21:49)   New MacSync malware dropper evades macOS Gatekeeper checks
22-12-25 (20:03)   CISA flags ASUS Live Update CVE, but the attack is years old
22-12-25 (19:49)   Interpol-led action decrypts 6 ransomware strains, arrests hundreds
22-12-25 (17:20)   Malicious npm package steals WhatsApp accounts and messages
22-12-25 (16:34)   Romanian water authority hit by ransomware attack over weekend
22-12-25 (15:20)   University of Phoenix data breach impacts nearly 3.5 million individuals
22-12-25 (15:20)   Coupang breach affecting 33.7 million users raises data protection questions
22-12-25 (12:20)   Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374
22-12-25 (10:49)   Ukrainian hacker admits affiliate role in Nefilim ransomware gang
22-12-25 (10:03)   Critical RCE flaw impacts over 115,000 WatchGuard firewalls
22-12-25 (09:34)   Docker Hardened Images now open source and available for free
20-12-25 (21:34)   RansomHouse upgrades encryption with multi-layered data processing
19-12-25 (21:20)   Microsoft confirms Teams is down and messages are delayed
19-12-25 (20:20)   Nigeria arrests dev of Microsoft 365 'Raccoon0365' phishing platform
19-12-25 (18:20)   Microsoft 365 accounts targeted in wave of OAuth phishing attacks
19-12-25 (17:03)   New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock
19-12-25 (16:03)   Over 25,000 FortiCloud SSO devices exposed to remote attacks
19-12-25 (16:03)   Criminal IP and Palo Alto Networks Cortex XSOAR integrate to bring AI-driven exposure intelligence to automated incident response
19-12-25 (13:34)   Denmark blames Russia for destructive cyberattack on water utility
19-12-25 (11:34)   New critical WatchGuard Firebox firewall flaw exploited in attacks
19-12-25 (10:20)   FTC: Instacart to refund $60M over deceptive subscription tactics
19-12-25 (02:20)   Windows 10 OOB update released to fix Message Queuing (MSMQ) issues
18-12-25 (21:34)   University of Sydney suffers data breach exposing student and staff info
18-12-25 (21:20)   Clop ransomware targets Gladinet CentreStack in data theft attacks
18-12-25 (18:34)   New password spraying attacks target Cisco, PAN VPN gateways
18-12-25 (17:20)   US seizes E-Note crypto exchange for laundering ransomware payments
18-12-25 (16:20)   NIS2 compliance: How to get passwords and MFA right
18-12-25 (14:49)   France arrests Latvian for installing malware on Italian ferry
18-12-25 (12:49)   HPE warns of maximum severity RCE flaw in OneView software
18-12-25 (11:20)   Microsoft: Recent Windows updates break RemoteApp connections
18-12-25 (00:20)   Zeroday Cloud hacking event awards $320,0000 for 11 zero days
17-12-25 (23:34)   France arrests suspect tied to cyberattack on Interior Ministry
17-12-25 (22:49)   Amazon: Ongoing cryptomining campaign uses hacked AWS accounts
17-12-25 (20:20)   WhatsApp device linking abused in account hijacking attacks
17-12-25 (19:49)   Cisco warns of unpatched AsyncOS zero-day exploited in attacks
17-12-25 (18:49)   Sonicwall warns of new SMA1000 zero-day exploited in attacks
17-12-25 (18:03)   Microsoft asks admins to reach out for Windows IIS failures fix
17-12-25 (17:20)   Critical React2Shell flaw exploited in ransomware attacks
17-12-25 (15:20)   Your MFA Is Costing You Millions. It Doesn't Have To.
17-12-25 (00:03)   Cellik Android malware builds malicious versions from Google Play apps
16-12-25 (23:20)   GhostPoster attacks hide malicious JavaScript in Firefox addon logos
16-12-25 (21:20)   Amazon disrupts Russian GRU hackers attacking edge network devices