The notorious Everest Ransomware group has made waves with a bold public announcement, claiming responsibility for a massive data breach involving American apparel giant Under Armour. According to the group, they have successfully stolen a staggering 340 GB of sensitive data from the company, and they’ve set a strict deadline of just seven days for Under Armour…
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance to help IT administrators harden Microsoft Exchange servers on their networks against attacks. They recommended best practices This include hardening user authentication and access, minimizing application attack surfaces, ensuring strong network encryption. The agencies also advise network defenders to…
India has emerged as the most affected country by a prolific malware strain while ranking eighth globally in overall cyber threat exposure, according to Microsoft‘s Digital Defense Report 2025 released recently. And the top target for Lumma Stealer malware, with over 44,000 infected Windows devices between March and May 2025, according to Microsoft’s Digital Defense Report….
German authorities nix 1,400 websites used for cybertrading fraud German investigators and banking watchdog BaFin have shut down over 1,400 illegal domains in Eastern Europe that were involved in cybertrading fraud, officials said in a joint statement on Monday. Dubbed Operation Heracles, the probe was conducted by Baden Wuerttemberg state criminal police and BaFin, Europol…
Google has acknowledged a data breach in one of its Salesforce systems carried out by the hacker group ShinyHunters. The breach, which occurred in early June, compromised one of Google’s internal Salesforce instances, exposing contact information and notes related to small and medium businesses. Back then, Google’s Threat Intelligence Group (GTIG) had already warned about…
KLM Airlines (aka KLM Royal Dutch Airlines), a French-Dutch multinational airline, has notified customers about a recent data breach that exposed certain personal details after a third-party system the company relies on was accessed by an unauthorised party. The breach did not affect core systems or more sensitive data, but it still involves information that…
Kaspersky GReAT (Global Research and Analysis Team) experts have discovered open-source packages that download the Quasar backdoor and a stealer designed to exfiltrate cryptocurrency. The malicious packages are intended for the Cursor development environment, which is based on Visual Studio Code — a tool used for AI-assisted coding. The malicious open-source packages are extensions hosted…
Harmony SASE (Secure Access Service Edge) is a cloud-delivered security platform that integrates multiple network security functions into a unified system. Check Point Software Technologies has introduced an India-based data residency instance of its Harmony SASE platform. This is aimed at supporting local regulatory requirements and growing demand for secure cloud adoption. The move marks…
Stock exchange BSE India, on Wednesday, advised market participants to take precautionary measures on potential cyber risks The circular from BSE cited an advisory from Indian Computer Emergency Response Team (CERT-In) highlighting on cyber threat campaign specifically targeting Indian organisations operating within the Banking, Financial Services, and Insurance (BFSI) sector. Banks have also tightened their…
The United Kingdom’s National Cyber Security Centre warned that ongoing cyberattacks impacting multiple UK retail chains should be taken as a “wake-up call.” Part of the GCHQ British intelligence agency, the NCSC provides support and guidance to private and public sector entities following major cybersecurity incidents to protect the UK’s critical services. The NCSC is…
