Hackread.com

Chinese Groups Stole 115 Million US Cards in 16-Month Smishing Campaign Follow us on Blue Sky, Mastodon Twitter, Facebook and LinkedIn @Hackread

🪝 Chinese syndicates ran a #smishing campaign from July 2023 to October 2024 that compromised anywhere from 12.7 M to 115 M US payment cards by bypassing MFA and exploiting Apple Pay and Google Wallet.

Read: hackread.com/chinese-stol...

#CyberSecurity #Scam #MFA #ApplePay #GoogleWallet

Hacker Accesses Millions of IMDataCenter Records from Exposed AWS Bucket Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

A researcher reported a Florida-based data firm had an exposed server with no security. But in July, HackRead was contacted by a hacker who revealed they’d already downloaded the full data including millions of emails, phone numbers and 50K+ SSNs.

Read: hackread.com/hacker-acces...

#CyberSecurity

KLM Confirms Customer Data Breach Linked to Third-Party System Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

🚨Just In: KLM has confirmed a data breach via a third-party system where attackers stole customer personal details.

Read: hackread.com/klm-customer...

#CyberSecurity #KLM #DataBreach #CyberAttack #Airlines

Over 100 Dell Laptop Models Plagued by Vulnerabilities Impacting Millions Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

🚨 Over 100 #Dell laptop models are affected by serious security flaws, putting millions at risk. One flaw can survive OS reinstalls and give attackers full control!

🔗 hackread.com/dell-laptop-...

#CyberSecurity #Vulnerability #ReVault

Pandora Cyber Attack Exposes Customer Data Via Third-Party Vendor Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

🚨 Pandora hit by a cyber attack via a third-party vendor, exposing personal data of customers.

🔗 hackread.com/pandora-cybe...

#Pandora #CyberSecurity #DataBreach #CyberAttack

Discord CDN Link Abused to Deliver RAT Disguised as OneDrive File Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Watch out as scammers abuse Discord CDN to deliver RATs disguised as a #OneDrive file in a phishing attack targeting Microsoft 365 users.

Read: hackread.com/discord-cdn-...

#CyberSecurity #Discord #Phishing #Scam #Malware #Microsoft365

Hackers Abuse Microsoft 365 Direct Send to Send Internal Phishing Emails Follow us on Blue Sky, Mastodon Twitter, Facebook and LinkedIn @Hackread

⚠️ Watch out as hackers are abusing #Microsoft365’s “Direct Send” feature to send phishing emails that look internal and legit.

More here: hackread.com/hackers-micr...

#CyberSecurity #M365 #Phishing #Scam

New JSCEAL Malware Targets Millions via Fake Crypto App Ads Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

🚨 Watch out as #JSCEAL malware is targeting millions through fake crypto app ads, draining wallets and stealing user data.

Details: hackread.com/jsceal-malwa...

#CyberSecurity #Malware #Crypto #Scam #Fraud

LegalPwn Attack Tricks GenAI Tools Into Misclassifying Malware as Safe Code Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

New attack called #LegalPwn tricks popular GenAI tools including Grok, ChatGPT, Llama, Gemini and others into misclassifying malware as safe code.

Read: hackread.com/legalpwn-att...

#CyberSecurity #GenAI #AI #Malware #InfoSec #ChatGPT #Llama

Bitdefender Warns Users to Update Dahua Cameras Over Critical Flaws Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Bitdefender warns Dahua Camera users to update firmware to patch two critical flaws that permit unauthenticated remote control.

Read: hackread.com/bitdefender-...

#CyberSecurity #IoT #CameraUpdate #Vulnerability #Dahua

New Attack Uses Windows Shortcut Files to Install REMCOS Backdoor Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

New malware campaign uses #Windows shortcut files to deliver the #REMCOS backdoor, giving attackers full control over victims' systems.

🔗 hackread.com/attack-windo...

#CyberSecurity #RemcosRAT #Malware #Phishing #InfoSec

US Government Begins $200M Payouts to Backpage Trafficking Victims Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

The US government has launched its largest-ever trafficking victim compensation effort, paying out $200 million to survivors exploited through #Backpage.

🔗 hackread.com/us-gov-payou...

#CyberSecurity #CyberCrime #HumanTrafficking #HumanTraffickingAwareness

Everest Ransomware Claims Mailchimp as New Victim in Relatively Small Breach Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Everest ransomware claims it breached #Mailchimp, stealing 943,000 lines dataset. Smaller in scale, but part of a growing ransomware wave.

🔗 hackread.com/everest-rans...

#CyberSecurity #Everest #Ransomware #CyberAttack

OnlyFans, Discord ClickFix-Themed Pages Spread Epsilon Red Ransomware Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Watch out as Fake Discord, Twitch and OnlyFans ClickFix-themed pages are spreading Epsilon Red ransomware in an ongoing campaign.

Read: hackread.com/onlyfans-dis...

#CyberSecurity #CyberAttack #ClickFix #EpsilonRed #Ransomware

Researchers Link New SS7 Encoding Attack to Surveillance Vendor Activity Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

⚠️ Researchers identify a new SS7 encoding attack used by a surveillance vendor to bypass defenses and access mobile subscriber data.

Read: hackread.com/researchers-...

#CyberSecurity #SS7 #Vulnerability #Telecom #Surveillance

Browser Extensions Can Exploit ChatGPT, Gemini in ‘Man in the Prompt’ Attack Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

New Man in the Prompt attack shows how browser extensions can exploit ChatGPT, Gemini and other AI tools to steal data or inject hidden prompts.

Read: hackread.com/browser-exte...

#CyberSecurity #AI #Vulnerability #ManinthePrompt #ChatGPT #Gemini

SonicWall Urges Patch After 3 Major VPN Vulnerabilities Disclosed Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

SonicWall urges users to patch SMA100 VPN devices after researchers uncover 3 major vulnerabilities, including pre-auth RCE risks. Patch NOW!

Details: hackread.com/sonicwall-pa...

#CyberSecurity #SonicWall #Vulnerability #InfoSec

Inc Ransomware Claims 1.2TB Data Breach at Dollar Tree Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Just in: Another day, another ransomware attack! #DollarTree is the latest victim of the INC Ransomware gang, which claims to have stolen 1.2TB of sensitive data.

Read: hackread.com/inc-ransomwa...

#CyberSecurity #INCRansomware #Ransomware #CyberAttack #DataBreach

TrickBot Behind More Than $724 Million in Crypto Theft and Extortion Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

It turns out that #TrickBot malware has been a major force behind over $724 million in crypto theft and extortion from 2016 to today.

Read: hackread.com/trickbot-beh...

#CyberSecurity #Botnet #Malware #Crypto #Extortion

New Choicejacking Attack Steals Data from Phones via Public Chargers Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

⚠️ New #Choicejacking attack brings public phone charging risk back into focus, allowing attackers to steal data from iOS and Android devices in 133 milliseconds without user input.

Read: hackread.com/choicejackin...

#CyberSecurity #Privacy #PhoneCharging #iOS #Android

Allianz Life Data Breach Hits 1.4 Million Customers Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Allianz Life confirms a data breach impacting most of its 1.4 million customers after a social engineering attack on a third-party CRM vendor.

Read: hackread.com/allianz-life...

#cybersecurity #databreach #AllianzLife #cyberattack #insurance

SAP NetWeaver Vulnerability Used in Auto-Color Malware Attack on US Firm Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackers have been spotted exploiting a critical SAP NetWeaver flaw (CVE-2025-31324) to deploy Auto-Color malware in an attack on a US firm.

Read: hackread.com/sap-netweave...

#CyberSecurity #Vulnerability #SAPNetWeaver #Malware

How Scattered Spider Used Fake Calls to Breach Clorox via Cognizant Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

#ScatteredSpider tricked Cognizant's helpdesk with fake calls, gaining admin access and crippling Clorox in a $380M ransomware attack. New analysis breaks down how it happened:

Read: hackread.com/how-scattere...

#CyberSecurity #DataBreach #Clorox #Cognizant #Ransomware

GLOBAL GROUP Ransomware Claims Breach of Media Giant Albavisión Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Just In: GLOBAL GROUP ransomware claims breach of media giant #Albavisión, alleging theft of 400 GB of data.

Read: hackread.com/global-group...

#CyberSecurity #Ransomware #CyberAttack #GLOBALGROUP

Scattered Spider Launching Ransomware on Hijacked VMware Systems, Google Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Scattered Spider group is now hijacking VMware systems to deploy ransomware directly from the hypervisor, Google warns.

Read: hackread.com/scattered-sp...

#CyberSecurity #CyberAttacks #ScatteredSpider #Ransomware #Google

macOS Sploitlight Flaw Exposes Apple Intelligence-Cached Data to Attackers Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Microsoft reveals a macOS flaw dubbed #Sploitlight that lets attackers steal data, including #AppleIntelligence caches, by abusing Spotlight plugins. Patch is out. Update your Mac NOW!

Read: hackread.com/macos-sploit...

#CyberSecurity #macOS #Vulnerability #Apple #Microsoft #AI

Post SMTP Plugin Flaw Allowed Subscribers to Take Over Admin Accounts Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

A now-patched flaw in the #PostSMTP WordPress plugin let Subscriber-level users take over Admin accounts by accessing email logs like password reset links. Update to stay safe.

🔗 hackread.com/post-smtp-pl...

#CyberSecurity #WordPress #Vulnerability #Plugin #Privacy

Tea App Breach: Women Only Dating Platform Leaks 72K User Images Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

⚠️ The Tea dating app had a data breach exposing 72000 images including selfies, photo IDs and private photos from posts and DMs.

Read: hackread.com/tea-app-breach-women-dating-platform-user-images-leak/

#CyberSecurity #TeaApp #DataBreach #Women #Dating #Privacy

Arizona Woman Jailed for Helping North Korea in $17M IT Job Scam Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

#Arizona woman sentenced to 8½ years in prison for orchestrating a $17M IT fraud scheme that helped #NorthKorea infiltrate US companies with fake job placements.

Read: hackread.com/arizona-woma...

#CyberSecurity #CyberCrime #JobScam #Fraud

Researchers Expose Online Fake Currency Operation in India Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Researchers have exposed a massive fake currency network in #India, run openly through Facebook and Instagram. Over 750 accounts involved.

Read: hackread.com/researchers-...

#CyberSecurity #CyberCrime #Scam #Fraud #Facebook #Instagram