Cyber Attack

A sophisticated cyber fraud has stolen over ₹5.58 crore from many bank accounts, highlighting serious concerns about digital payment security. This scam involved cloning biometric data and affected 251 accounts in 17 districts. Authorities are working hard to contain the situation and catch those responsible. The Modus Operandi: A Digital …

Google confirmed that a recent data breach in one of its Salesforce CRM systems exposed information about potential Google Ads customers. “We’re writing to let you know about an event that affected a limited set of data in one of Google’s corporate Salesforce instances used to communicate with prospective Ads …

More than 28,000 unpatched Microsoft Exchange servers are publicly accessible and vulnerable to the critical security flaw CVE-2025-53786, as reported by The Shadowserver Foundation on August 7, 2025. CISA’s Emergency Directive 25-02 on August 7 requires federal agencies to fix a critical vulnerability in Microsoft Exchange hybrid setups by 9:00 …

Bouygues Telecom, a major telecom company in France and the third-largest mobile operator, announced on Wednesday that it suffered a cyberattack affecting millions of customers’ data. The nature of the attack was not disclosed, and the company said the “situation was resolved as quickly as possible” by its technical teams, …

Air France and KLM announced on Wednesday that their customer service platform was hacked, resulting in stolen data from an unknown number of customers. Air France and KLM, along with Transavia, form the Air France–KLM Group, a French-Dutch airline holding company established in 2004, and a key player in global …

Cybersecurity researcher Jeremiah Fowler discovered an unencrypted database with 38 GB of CSV and PDF files and reported it to Website Planet. The exposed data included hundreds of thousands of names, addresses, phone numbers, emails, and other sensitive information. The publicly exposed database was not password-protected or encrypted. It contained …

Trend Micro warned customers to quickly secure their systems due to a remote code execution vulnerability in its Apex One endpoint security platform that is currently being exploited. Apex One is an endpoint security platform designed to automatically detect and respond to threats, including malicious tools, malware, and vulnerabilities. The …

On July 24, 2025, Cisco learned of a vishing attack aimed at one of its representatives, allowing a bad actor to access basic profile information from a third-party CRM system. Upon learning of the incident, the actor’s access to that CRM system instance was immediately terminated and Cisco commenced an …

Cloud intrusions increased significantly in the first half of 2025, rising 136% compared to all of 2024, as reported by CrowdStrike’s 2025 Threat Hunting Report. Researchers noted that the data shows more attackers are learning to target cloud environments by exploiting misconfigurations, maintaining access, and moving laterally. The explosion in …

Over 17k Microsoft SharePoint servers are exposed to internet attacks, with 840 vulnerable to the critical zero-day vulnerability CVE-2025-53770, according to Shadowserver Foundation. The “ToolShell” vulnerability has a critical CVSS score of 9.8 and lets unauthorized users run arbitrary code on on-premises SharePoint servers. Microsoft has attributed the attacks to …