Breached Company - Breached Company (Page 5)

Marquis Ransomware Breach: When Third-Party Vendors Become the Weakest Link in Financial Services

A comprehensive analysis of the August 2025 attack that exposed nearly 800,000 bank and credit union customers Executive Summary In August 2025, Marquis Software Solutions, a Texas-based financial technology vendor serving over 700 banks and credit unions, fell victim to a sophisticated ransomware attack that compromised the personal and

The Ukrainian Woman Who Sabotaged Children's Water Parks and Critical Infrastructure for Russia

Victoria Dubranova faces life in prison for 99 documented cyberattacks spanning from swimming pools to public water systems In what reads like a script from a techno-thriller, Victoria Eduardovna Dubranova, a 20-something Ukrainian woman known online as "Vika" and "Sovasonya," stands accused of orchestrating some of

Close Access Operations Foiled: Polish Authorities Arrest Suspected Hackers with Advanced Equipment

Warsaw, Poland — In a significant cybersecurity operation, Polish police have detained three Ukrainian nationals carrying sophisticated hacking and surveillance equipment capable of compromising critical national infrastructure. The December 8, 2025 arrests highlight the persistent threat of close-access cyber operations targeting NATO allies in Eastern Europe. The Traffic Stop That Exposed

Petco's Application Misconfiguration Exposes Highly Sensitive Customer Data

December 8, 2024 - Pet retail giant Petco has disclosed a significant data breach affecting an undetermined number of customers, with exposed information including Social Security numbers, driver's license details, financial account data, and credit card information. The incident, caused by a misconfigured application setting, highlights the ongoing

Asus Confirms Supplier Breach After Everest Ransomware Claims 1TB Data Theft

Major tech manufacturer faces supply chain attack exposing critical phone camera source code December 8, 2025 Asus, one of the world's largest computer hardware manufacturers, has confirmed a significant cybersecurity incident affecting one of its suppliers after the Everest ransomware group claimed to have stolen over one terabyte

When a Phone Call Costs a Billion Dollars: Harvard's Vishing Attack and the Ivy League Breach Epidemic

Five of eight Ivy League schools compromised in six months. Elite fundraising operations exposed. And the oldest trick in the book—a convincing phone call—remains the most effective. Related Coverage: * Hackers Strike US Ivy League Schools Already Under Political Pressure * Educational Institutions Under Siege: New Haven Phishing Attack Highlights

The Perfect Supply Chain Storm: How Cl0p's Oracle Rampage Exposes the Hidden Vulnerabilities in Enterprise Software

When trusted software becomes the attack vector, organizations learn the hardest lesson in cybersecurity: You can do everything right and still lose everything. Related Coverage: * Oracle E-Business Suite Zero-Day Exploitation: Inside Cl0p's Latest Mass Data Extortion Campaign * Clop Ransomware: Inside One of the World's Most Dangerous

Critical Security Advisory

React2Shell (CVE-2025-55182): The CVSS 10.0 RCE Shaking the JavaScript Ecosystem

December 6, 2025 | Critical Security Advisory Executive Summary The JavaScript ecosystem is facing one of its most severe security crises in recent memory. CVE-2025-55182, dubbed "React2Shell" by security researchers, is a maximum-severity (CVSS 10.0) remote code execution vulnerability affecting React Server Components that allows unauthenticated attackers to

The Ransomware Revolution: How Attack Economics Are Reshaping the Threat Landscape Entering 2026

Executive Summary As we close out 2025 and look toward 2026, the ransomware ecosystem has undergone a dramatic transformation that fundamentally changes how organizations must approach cyber defense. With attacks surging 34% year-over-year while ransom payments plummet to historic lows, threat actors are evolving their business models in ways that

Massive Intellexa Leak Exposes Predator Spyware's Dark Evolution: Ad-Based Zero-Click Attacks and Vendor Backdoor Access

Major investigation reveals commercial spyware vendor maintained secret access to government surveillance systems while developing invisible infection vectors through digital advertising A damning new investigation into mercenary spyware vendor Intellexa has exposed operational details that should alarm every CISO: the company behind the notorious Predator spyware not only developed zero-click

Europol Dismantles EUR 700 Million Cryptocurrency Fraud Network in Coordinated International Operation

Two-phase operation targets investment scam platforms and affiliate marketing infrastructure across seven countries December 4, 2025 In a sweeping international operation that marks one of the largest cryptocurrency fraud takedowns of 2025, law enforcement authorities have successfully dismantled a sophisticated criminal network responsible for laundering over EUR 700 million through

North Korean Hackers Tricked by Fake Remote-Work Laptops: Inside the Lazarus Group Honeypot Operation

First-Time Capture: Researchers Watch Chollima Operators Live in Sophisticated Sandbox Trap In a groundbreaking cybersecurity operation, researchers successfully infiltrated North Korea's notorious Lazarus Group hiring pipeline and watched their operators work in real-time—believing they had access to genuine developer laptops. Instead, the Famous Chollima division walked directly

See all