McDonald’s chatbot issue exposed personal data of 64M applicants
The platform’s chatbot used default login credentials on a test account and failed to secure an API endpoint.
Cybersecurity News - Page 51
Cyber Security Week in Review: July 11, 2025
In brief: Wing FTP Server RCE exploited in the wild, Microsoft’s Patch Tuesday fixes over 130 flaws, and more.
Four arrested over cyberattacks targeting major UK retailers, including M&S
The ransomware attack in April, forced Marks & Spencer to suspend online clothing sales for 46 days.
Initial access broker exploits leaked machine keys to access targeted orgs
The campaign exploits leaked Machine Keys used in ASP.NET applications.
AI voice impersonator posed as US Secretary of State Marco Rubio to contact foreign ministers
The impersonator contacted the targets in mid-June using the encrypted messaging app Signal.
DoNot APT targets European foreign affairs ministry in espionage campaign
The attack used a malicious Google Drive link, which delivered a RAR archive containing malware previously linked to the DoNot APT.
Microsoft fixes over 130 flaws, no actively exploited zero-days
Among the fixes is a patch for a previously disclosed vulnerability in Microsoft SQL Server.
US sanctions North Korean cyber actor for orchestrating IT Worker scheme abroad
Song Kum Hyok created fake American identities using stolen names, Social Security numbers, and addresses for North Korean tech workers.
Hackers abuse Shellter Elite after software leak, vendor confirms
The Shellter Project said the misuse stems from a breach involving a company that recently purchased Shellter Elite licenses.
Nippon Steel Solutions hit by cyberattack exploiting zero-day flaw
NSSOL has not disclosed the specific vulnerability but confirmed the breach was the result of a zero-day exploit targeting its network equipment.
Showing elements 501 - 510