CYBERSECUIRTY NEWS – Securitydive

APT Hackers Targets Indian Govt Infrastructure Using GOGITTER Tool & GITSHELLPAD Malware

Advanced persistent threat actors operating from Pakistan have launched coordinated attacks against Indian government organizations using newly discovered tools and malware designed to bypass security defenses. The attack chain begins with emails that are phishing base containing deceptive PDF documents that impersonate legitimate government communications. These PDFs display blurred images of official documents and use…

48M Gmail, 6.5M Instagram Exposed Online From Unprotected Database

admin7 hours ago7 hours ago02 mins

A massive database containing 149 million stolen login credentials was discovered exposed online without password protection. Cybersecurity researcher Jeremiah Fowler uncovered the breach and reported findings to ExpressVPN, revealing a sprawling collection of stolen accounts spanning major platforms, including Gmail, Instagram, Facebook, and government systems. Posing serious security risks to users of Gmail, Instagram, Facebook, Netflix,…

admin1 week ago03 mins

Forcepoint has appointed Archie Jackson as Data Security Strategist, Customer Success for Asia Pacific (APAC). This appointment will reinforce Forcepoint’s commitment to helping enterprises strengthen data protection amid accelerating cloud adoption, distributed work environments, and AI-driven workflows. In his new role, Jackson will work closely with customers, partners, and internal teams across the region to…

New set of Implementation for ZeroTrust released by the NSA

admin1 week ago1 week ago04 mins

The NSA has published the first two documents in its Zero Trust Implementation Guidelines series. These initial releases cover the Primer and the Discovery Phase, which together set the groundwork for future guidance tied to the Department of War CIO Zero Trust Framework. Each phase focuses on a defined set of technical and operational steps…

RondoDox botnet linked to large-scale exploit of critical HPE OneView bug

admin1 week ago03 mins

A critical HPE OneView flaw is now being exploited at scale, with Check Point tying mass, automated attacks to the RondoDox botnet. The security outfit says it has identified “large-scale exploitation” of CVE-2025-37164, a maximum-severity remote code execution bug in HPE’s data center management platform. Check Point has tied the activity to RondoDox, a Linux-based…

Bengaluru-based CloudSEK becomes first Indian cybersecurity firm to get investment from a US state fund

admin2 weeks ago03 mins

Bengaluru-based Cybersecurity company CloudSEK on Tuesday said it has raised $10 million (about ₹90 crore) from Connecticut Innovations, the strategic venture capital arm of the State of Connecticut in the United States. With this investment, CloudSEK becomes the first Indian-origin cybersecurity company to receive funding from a US based back venture. CloudSEK had previously raised $19…

One of the largest US broadband providers investigates breach

admin2 weeks ago05 mins

Crimson Collective claims to have stolen PII on 1M+ Brightspeed customers, including names, emails, phone numbers, and partial payment data Brightspeed has not confirmed the breach, saying it is investigating reports of a cybersecurity event The company, headquartered in Charlotte, NC, operates fiber broadband across 20 states and serves millions of premises One of the…

Meta signs nuclear deals to power the next generation of AI

admin2 weeks ago04 mins

Meta revealed on Friday that it has signed agreements with three US nuclear energy companies as it aims to secure energy resources to power its expanding AI infrastructure. The tech giant inked agreements with retail electricity and power generation company Vistra, nuclear technology company TerraPower, and Sam Altman-backed nuclear technology startup Oklo. “Our agreements with…

Hackers claim to hack Resecurity, firm says it was a honeypot

admin3 weeks ago3 weeks ago05 mins

Threat actors associated with the “Scattered Lapsus$ Hunters” (SLH) claim to have breached the systems of cybersecurity firm Resecurity and stolen internal data, while Resecurity says the attackers only accessed a deliberately deployed honeypot containing fake information used to monitor their activity. Today, threat actors published screenshots on Telegram of the alleged breach, claiming they stole…

Acronis Strengthens Cybersecurity With AI & Threat Research

admin4 weeks ago08 mins

Acronis is accelerating security momentum across the cybersecurity industry with AI-powered product innovation, deep threat intelligence, and strong third-party validation. Through a continued focus on the Acronis Threat Research Unit (TRU), expanded security capabilities, and a growing ecosystem of integrations, Acronis is solidifying its position as a platform built for real-world protection. With its managed…