How 'bulletproof' hosting providers enable billions in ransomware attacks—and why law enforcement is finally fighting back In the ongoing war against cybercrime, there's a critical battlefield that rarely makes headlines: the digital infrastructure that keeps criminal operations running. While ransomware gangs like LockBit and malware
Executive Summary A sophisticated phishing campaign has struck New Haven Public Schools, with attackers compromising at least four student accounts to distribute over 10,000 fraudulent emails seeking personal banking information. More than half of the student body received these malicious emails, and approximately 1,000 students—representing 10% of
November 20, 2025 - The City of Attleboro, Massachusetts became the latest American municipality to fall victim to a sophisticated cyberattack, joining a growing list of cities and towns struggling against an unprecedented surge in ransomware operations targeting local governments. Smart City Cybersecurity Assessment | CyberSafe.CityComprehensive security assessment for smart
Executive Summary In September 2025, Cloudflare mitigated an 11.5 terabits per second (Tbps) distributed denial-of-service (DDoS) attack—a record that stood for just three weeks before being shattered by a 22.2 Tbps assault. These unprecedented attacks represent the culmination of a multi-year escalation that has seen volumetric DDoS
Executive Summary On the morning of November 18, 2025, a configuration error at Cloudflare triggered a cascading failure that rendered significant portions of the internet inaccessible for several hours. ChatGPT, X (formerly Twitter), Spotify, League of Legends, and countless other services went dark, exposing an uncomfortable truth: our modern digital
The ransomware landscape has undergone a dramatic transformation throughout 2025, with law enforcement disruptions creating both chaos and opportunity within the cybercriminal ecosystem. While Operation Cronos dismantled LockBit's infrastructure in early 2024, the void left by the once-dominant group has spawned a more fragmented, competitive, and paradoxically more
Executive Summary Organizations worldwide face an unprecedented wave of actively exploited vulnerabilities affecting critical network infrastructure from major cybersecurity vendors. As of November 2025, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added multiple high-severity vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, with threat actors demonstrating sophisticated
Just in: DoorDash breached… On November 13, 2025, DoorDash began notifying users of a security incident that occurred on October 25, 2025, involving "an unauthorized third party gaining access to and taking certain user contact information." According to the company's disclosure, the compromised data "may
THE HAGUE — In a major escalation of the international Operation Endgame cybercrime offensive, Dutch police have seized thousands of servers owned by CrazyRDP, a notorious bulletproof hosting provider implicated in 80 law enforcement investigations spanning cybercrime operations and child sexual abuse material (CSAM) distribution. The operation marks the latest and
Executive Summary Jaguar Land Rover (JLR) has revealed that the devastating cyber attack that struck on August 31, 2025, cost the company £196 million directly—a figure that contributed to the UK's largest automotive manufacturer swinging to an underlying loss of £485 million in Q2. The breach forced
SINGAPORE — In a significant cybercrime prosecution, three Chinese nationals have been sentenced to more than 28 months in prison after Singapore police uncovered a sophisticated hacking-for-hire operation based in a luxury Mount Sinai bungalow. The September 9, 2024 raids revealed remote access trojans (RATs) linked to state-sponsored malware, including PlugX
BREAKING: Thai authorities have arrested Alexey Viktorovich Lukashev, a senior lieutenant in Russia's Main Intelligence Directorate (GRU) and one of the FBI's most wanted cyber criminals, in a dramatic takedown operation in Phuket that could mark a turning point in prosecuting state-sponsored hackers. The 35-year-old GRU
In a groundbreaking disclosure that signals a dangerous new era in cybersecurity, Anthropic revealed today (November 13, 2025) that Chinese state-sponsored hackers successfully weaponized its Claude AI system to conduct the first documented AI-orchestrated cyber espionage campaign. The sophisticated operation, detected in mid-September 2025, represents an unprecedented shift in cyberattack
When Qantas Airways faced a sophisticated ransomware attack in July 2025, the airline made a decision that sets it apart from almost every other major Australian organization: it refused to pay the ransom. While Australia's flagship carrier held firm against the notorious hacking group Scattered Spider (also known
Law enforcement delivers crushing blow to cybercrime infrastructure, seizing control of major infostealer and RAT operations affecting hundreds of thousands of victims worldwide Executive Summary Between November 10 and 14, 2025, international law enforcement agencies coordinated from Europol's headquarters in The Hague executed the latest phase of Operation
The nation's legislative scorekeeper remains compromised while America sleeps on the story When the Congressional Budget Office confirmed it had been hacked on November 7, 2025, the response was muted at best. A few headlines, some perfunctory warnings to congressional staff, and then... silence. Yet this wasn'
November 2025 - Hyundai Motor Group is notifying millions of customers about a significant data breach that occurred earlier this year, marking the latest in a troubling series of cybersecurity incidents affecting the automotive industry. The breach, which targeted Hyundai AutoEver America (HAEA), the IT services arm serving Hyundai, Kia,
Executive Summary The automotive industry has emerged as one of the most targeted sectors for cyberattacks in 2024-2025, with major manufacturers including Volvo, Stellantis, Scania, Hyundai AutoEver, and Jaguar Land Rover suffering devastating breaches that exposed millions of records and caused billions in damages. These incidents reveal a troubling pattern:
In an extraordinary case that exposes the evolving tactics of ransomware operations, BBC cyber correspondent Joe Tidy revealed in September 2025 that he was directly targeted by the Medusa ransomware gang for insider recruitment. The criminals offered him up to 25% of a potential multi-million-dollar ransom—enough to "never
Nikkei Inc., one of the world's most influential media organizations and owner of the Financial Times, has disclosed a significant data breach affecting over 17,000 employees and business partners. The breach, discovered in September 2025, resulted from infostealer malware infecting an employee's personal computer, highlighting
India's busiest airport becomes latest target in escalating cyber threat to civil aviation In an unprecedented cybersecurity incident that sent shockwaves through India's aviation sector, Delhi's Indira Gandhi International Airport experienced severe GPS spoofing attacks over seven consecutive days in early November 2025, disrupting
The Washington Post has confirmed it was compromised as part of a widespread cyberattack campaign targeting organizations using Oracle E-Business Suite (EBS) software. The breach, attributed to the notorious Clop ransomware gang, represents one of the most significant supply chain attacks of 2025, affecting over 100 organizations worldwide. The Attack:
Executive Summary In October 2025, the extortion group Crimson Collective breached Red Hat's consulting GitLab instance, claiming to have exfiltrated 570GB of compressed data from over 28,000 internal repositories. The breach exposed approximately 800 Customer Engagement Reports (CERs) containing sensitive infrastructure details, authentication credentials, and network configurations
In a significant escalation of ransomware attacks targeting financial institutions, the notorious Qilin ransomware group has claimed responsibility for breaching Habib Bank AG Zurich, allegedly stealing over 2.5 terabytes of data comprising nearly 2 million files from the Swiss-based international bank. The Attack Unveiled On November 5, 2025, the