Cybersecurity news headlines trending on Happy New Year 2025

Harley-Davidson Faces Data Breach, Customer Information Leaked Harley Davidson, the iconic American motorcycle manufacturer, has become the latest victim of a cyberattack. A hacking group known as “888” is reportedly responsible for the breach, which exposed sensitive customer information. The stolen data, which is now being sold on the dark web, includes email addresses, phone numbers, physical addresses, and full names, putting affected customers at risk of phishing and identity theft. According to sources from Telegram, the group accessed Harley-Davidson’s...

Read More

Here’s the little known iPhone data security secret, the Lockdown Mode

Apple has introduced a powerful new data security feature, Lockdown Mode, for iPhone users running iOS 16 and later versions. This feature aims to provide heightened protection against cyber threats, particularly for individuals who are at a higher risk of being targeted by advanced attacks. While Lockdown Mode offers enhanced security, it does come with certain limitations that users should be aware of before enabling it. What is Lockdown Mode? Lockdown Mode is a security feature designed primarily for individuals who may be vulnerable to sophisticated...

Read More

Chinese APT Hackers behind US Treasury breach of data

Chinese hackers, reportedly part of an Advanced Persistent Threat (APT) group, are accused of breaching the servers and workstations of the U.S. Department of the Treasury. The department confirmed the cyberattack in an official statement released on December 30, 2024. The breach came to light after the Treasury was alerted by BeyondTrust, a technology vendor, about the possibility of a security compromise. The breach involved the theft of one or two security keys using stolen employee credentials. According to the details of the incident, the...

Read More

Italy faces DDOS attacks from Russia

On Saturday, a series of sophisticated cyberattacks hit nine Italian government websites, causing disruptions across several key digital platforms. Among the affected sites were those of Italy’s Foreign Ministry, as well as the official websites of Milan’s two major airports, Linate and Malpensa. Despite the scale of the attack, Italy’s proactive cybersecurity defenses were able to mitigate the impact, with the downtime limited to just 109 minutes, according to an official spokesperson authorized to speak on the matter. The attack took the form...

Read More

SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach

Palo Alto, Calif., USA, December 30th, 2024, CyberNewsWire SquareX, an industry-first Browser Detection and Response (BDR) solution, leads the way in browser security. About a week ago, SquareX reported large-scale attacks targeting Chrome Extension developers aimed at taking over the Chrome Extension from the Chrome Store. On December 25th, 2024, a malicious version...

Read More

Google trending Cybersecurity headlines for the last weekend

Space Bears Ransomware Targets Atos SE in Major Cyberattack Atos SE, the France-based global leader in cloud computing and cybersecurity services, has confirmed a major cybersecurity breach involving the ransomware group Space Bears. The cybercriminals claim to have compromised Atos’ database, extracting sensitive data by exploiting a known vulnerability. The attack is part of a growing wave of ransomware campaigns that target large corporations for financial extortion. The attack occurred on December 28, 2024, and led to the deployment of file-encrypting...

Read More

2024 Attack Surface Threat Intelligence Report – Cogility – TacitRed

Introduction Over 80% of cyber breaches result from external threat actors conducting phishing, session hijacking, account takeover, and ransomware attacks, putting organizations under mounting pressure to improve their security posture and automate cyber response. This increase in successful attacks stems from an extended attack surface, vulnerable internet-facing assets...

Read More

Volkswagen data breach of Electric cars and D Link router botnet attack

Volkswagen Data Leak Exposes Information of Over 800,000 Electric Vehicle Owners Volkswagen (VW), one of the most well-known automobile manufacturers in the world, has become the latest victim of a significant data breach that has compromised the personal information of over 800,000 electric vehicle (EV) owners. The breach, which has raised concerns about data privacy, exposed sensitive details such as location data and contact information of customers. However, what makes this breach particularly alarming is that it was not the result of a sophisticated...

Read More

Hacking Tug-of-War: China Accuses the USA for launching cyber attacks on its Technology Infrastructure

In recent weeks, the landscape of online espionage has shifted dramatically. For years, Western governments and companies have openly accused China of orchestrating cyber attacks on critical infrastructure to steal trade secrets, intellectual property, and sensitive data. However, the narrative has now taken a turn, with China publicly accusing the United States of launching similar cyber attacks on Chinese tech firms. These allegations, made by the Chinese National Internet Emergency Center (CN-CERT), have raised eyebrows globally and shed light...

Read More

Clop Ransomware Gang Targets Cleo File Transfer Service and threatens to expose Sensitive Data

The infamous Clop Ransomware gang has once again made headlines by successfully breaching the servers of Cleo, a well-known provider of file transfer software. The cybercriminal group is now threatening to leak sensitive data from Cleo’s extensive client base unless a ransom demand is met within a 48-hour deadline. The ransomware group has already issued warnings to 66 companies, indicating that if they fail to negotiate or pay the required sum within the stipulated time frame, their confidential information will be sold on the dark web. Initial...

Read More

2024 Cloud Security Report Fortinet

Introduction Companies are increasingly pursuing a cloud-first strategy by developing and deploying applications with the cloud in mind. With the majority of organizations adopting a hybrid or multi-cloud approach to support various use cases and work models, the attack surface has significantly broadened, making securing today’s cloud environments more critical and increasingly...

Read More