Data Breach Archives • Page 2 of 7 • Daily CyberSecurity

PoC Released: MongoBleed Exploit Allows Unauthenticated Attackers to Drain MongoDB Memory MongoBleed, CVE-2025-14847

PoC Released: MongoBleed Exploit Allows Unauthenticated Attackers to Drain MongoDB Memory

Do Son December 29, 2025

Database administrators are facing a critical security emergency after the disclosure of a high-severity vulnerability in MongoDB,...

EmEditor Compromised: “WALSHAM” Imposter Poisons Official Installer with Spyware Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

EmEditor Compromised: “WALSHAM” Imposter Poisons Official Installer with Spyware

Do Son December 29, 2025

In a major supply chain security incident, the popular text editor EmEditor has confirmed that its official...

Security Shift: Google Retires Dark Web Report Service, Citing Inability to Offer Concrete Remedies

Do Son December 17, 2025

For users concerned about whether their personal data is “running naked” across the internet, Google’s Dark Web...

Alarm: Coupang Data Breach Exposes 33.7 Million Users—Over Half of South Korea Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Alarm: Coupang Data Breach Exposes 33.7 Million Users—Over Half of South Korea

Do Son December 2, 2025

A major data breach has struck Coupang, one of South Korea’s most prominent e-commerce platforms, compromising the...

ChatGPT Lockdown Mode OpenAI OpenClaw acquisition OpenAI Prism GPT-5.2 LaTeX, scientific research AI workspace OpenAI, Mixpanel Breach ChatGPT Data Preservation, NYT Lawsuit ChatGPT Apps SDK, super app OpenAI Jony Ive, AI Hardware Delay Musk Apple lawsuit, App Store antitrust UK AI Partnership, OpenAI Collaboration Jony Ive OpenAI, DoD Contract OpenAI Lawsuit, ChatGPT Privacy North Korea ChatGPT - GPT-4.5 model OpenAI Models, AI Advancements OpenAI pricing, Flex API

OpenAI API Users Exposed in Mixpanel Security Breach

Do Son November 28, 2025

In a significant reminder of the risks inherent to the digital supply chain, artificial intelligence giant OpenAI...

Salesforce Revokes Access Tokens: Gainsight App Breach May Have Exposed Customer Data Salesforce Gainsight Breach AppExchange Security Vishing, Salesforce Attack UNC6040

Salesforce Gainsight Breach AppExchange Security Vishing, Salesforce Attack UNC6040

Salesforce Revokes Access Tokens: Gainsight App Breach May Have Exposed Customer Data

Do Son November 21, 2025

Salesforce has issued an urgent security alert after discovering unusual activity involving Gainsight-published applications connected to its...

Google Debunks False Gmail Breach Rumors as Credentials Leak Again

Do Son October 28, 2025

Earlier, several media outlets misinterpreted and selectively quoted statements from Google’s Security Team, claiming that the data...

ClaimPix Data Exposure: 10TB of Insurance Records, Vehicle Data, and Legal Documents Left Unprotected Data breach, ClaimPix

ClaimPix Data Exposure: 10TB of Insurance Records, Vehicle Data, and Legal Documents Left Unprotected

Do Son September 24, 2025

Cybersecurity researcher Jeremiah Fowler has discovered a massive unprotected database containing highly sensitive insurance and vehicle-related records....

Warning: Popular Apps Leaking Your Private Data Mobile app security, data privacy

Warning: Popular Apps Leaking Your Private Data

Do Son September 20, 2025

Researchers at Jamf Threat Labs have uncovered two mobile applications leaking sensitive user data, including credentials and...

The Great Firewall Leaks: A 600GB Trove of Secrets Exposed Booking.com Data Breach Claude Code Leak Anthropic Source Code YggTorrent data breach PS5 BootROM key leak 2026, PlayStation 5 unpatchable jailbreak Great Firewall data leak Dating App Breach, Tea App Leak 23andMe Data Leak

Booking.com Data Breach Claude Code Leak Anthropic Source Code YggTorrent data breach PS5 BootROM key leak 2026, PlayStation 5 unpatchable jailbreak Great Firewall data leak Dating App Breach, Tea App Leak 23andMe Data Leak

The Great Firewall Leaks: A 600GB Trove of Secrets Exposed

Do Son September 19, 2025

China’s internet censorship system, the Great Firewall, has recently suffered the largest data breach in its history,...

CVE-2025-59340: Critical HubSpot’s Jinjava Engine Flaw Exposes Thousands of Websites to RCE Jinjava Vulnerability CVE-2026-25526 CVE-2025-59340 HubSpot RCE

Jinjava Vulnerability CVE-2026-25526 CVE-2025-59340 HubSpot RCE

CVE-2025-59340: Critical HubSpot’s Jinjava Engine Flaw Exposes Thousands of Websites to RCE

Do Son September 19, 2025

HubSpot has issued a security advisory regarding a critical flaw in its Jinjava template engine, which powers...

SolarWinds Issues Advisory on Salesforce Data Breach Linked to Salesloft Drift Serv-U RCE, Authenticated RCE CVE-2024-0692 Salesforce breach

SolarWinds Issues Advisory on Salesforce Data Breach Linked to Salesloft Drift

Do Son September 18, 2025

SolarWinds has issued a security advisory regarding a major Salesforce data breach that exposed sensitive information from...

Hacktivists Launch Coordinated Attacks on India’s Infrastructure hacktivist attacks

Hacktivists Launch Coordinated Attacks on India’s Infrastructure

Do Son September 18, 2025

India’s digital infrastructure has become a high-value battleground for hacktivists. A new analysis from CYFIRMA highlights how...

BreachForums Founder Resentenced to Three Years in Prison for Cybercrime AccountDumpling Phishing Google AppSheet Abuse AI-Generated Malware PureRAT Campaign RondoDoX Botnet, Next.js React2Shell EchoGather, Paper Werewolf Salt Typhoon, Telecom Espionage BreachForums, Conor Fitzpatrick Ransomware Negotiation, DOJ Investigation MirrorFace group - Earth Kasha Emperor Dragonfly

AccountDumpling Phishing Google AppSheet Abuse AI-Generated Malware PureRAT Campaign RondoDoX Botnet, Next.js React2Shell EchoGather, Paper Werewolf Salt Typhoon, Telecom Espionage BreachForums, Conor Fitzpatrick Ransomware Negotiation, DOJ Investigation MirrorFace group - Earth Kasha Emperor Dragonfly

BreachForums Founder Resentenced to Three Years in Prison for Cybercrime

Do Son September 17, 2025

The U.S. Department of Justice (DOJ) announced the resentencing of Conor Brian Fitzpatrick, 22, of Peekskill, New...

Phishing Wave Hits U.S. Energy Giants: Chevron, ConocoPhillips Targeted Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

Phishing Wave Hits U.S. Energy Giants: Chevron, ConocoPhillips Targeted

Do Son September 15, 2025

The U.S. energy industry has become a prime target for large-scale phishing operations in 2025, according to...

EvilAI Malware Campaign Exploits Trust in AI Tools to Infiltrate Global Industries EvilAI, malware campaign

EvilAI Malware Campaign Exploits Trust in AI Tools to Infiltrate Global Industries

Do Son September 15, 2025

Trend Micro researchers have uncovered a sophisticated malware campaign dubbed EvilAI, which disguises itself as productivity and...

KillSec Ransomware Strikes Brazilian Healthcare Provider, Exposing Patient Data

Do Son September 11, 2025

Resecurity has reported that KillSec ransomware has targeted MedicSolution, a key healthcare software provider in Brazil, compromising...

Salesforce Breach Through Salesloft Drift Hits Google, Cloudflare, and 750 Firms Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Salesforce Breach Through Salesloft Drift Hits Google, Cloudflare, and 750 Firms

Do Son September 9, 2025

Beginning in July 2025, several high-profile companies reported breaches of their Salesforce CRM (Customer Relationship Management) systems,...

Plex Urges Password Reset After Data Breach Iranian Hacktivists Operation Epic Fury Cyber New Generation Warfare Russian Hybrid Escalation Plex data breach Water Systems Cybersecurity - Threat Actor Naming Standard

Iranian Hacktivists Operation Epic Fury Cyber New Generation Warfare Russian Hybrid Escalation Plex data breach Water Systems Cybersecurity - Threat Actor Naming Standard

Plex Urges Password Reset After Data Breach

Do Son September 9, 2025

The popular streaming platform Plex was recently the target of a cyberattack that resulted in a database...

Cloudflare Confirms Supply Chain Attack, Customer Support Data Exposed Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare Confirms Supply Chain Attack, Customer Support Data Exposed

Do Son September 3, 2025

Renowned network services provider Cloudflare has also emerged as a victim in the recent Salesforce CRM attack,...

Critical Alert 1 Active Exploit Detected Today