On November 21, 2025, Bengaluru-based private firm Enan Tech Pvt Ltd became the victim of a ransomware attack. The breach resulted in critical company data being encrypted and rendered inaccessible....
ShinyHunters is a notorious cyber-criminal collective known for orchestrating some of the largest data-theft operations of the past several years. The group first emerged around 2020, rapidly...
Asahi Group Holdings, one of Japan’s largest beverage companies, recently became the target of a significant ransomware attack that severely disrupted its operations and compromised sensitive...
Mixpanel, a prominent provider of user analytics software, has disclosed a significant security breach that has resulted in the unauthorized access to limited customer profile data belonging to...
In late November 2025, several London borough councils suffered a major cyberattack that disrupted core digital systems and triggered emergency response protocols. The affected councils include the...
OpenAI announced that some user metadata belonging to its API customers was exposed after a security incident at Mixpanel, its former third-party analytics provider. The breach occurred entirely...
A proactive security measure to combat Cross-Site Scripting (XSS) attacks in browser-based sign-in experiences. In a major security enhancement, Microsoft...
Shai-Hulud 2.0 is the latest and most aggressive iteration of the self-propagating worm that first surfaced in September 2025. This second wave — dubbed “The Second Coming” by attackers — represents...
Secure Network Solutions, a U.S.-based managed service provider, was targeted in a ransomware attack attributed to the Sinobi ransomware group. The attack highlights the mounting trend of threat...
The Qilin ransomware group carried out a significant supply-chain attack against a South Korean managed service provider, resulting in a widespread compromise affecting 28 downstream organizations....
On 27 November 2019, South Korean cryptocurrency exchange Upbit suffered one of the largest digital asset thefts in the industry. Attackers successfully withdrew 342,000 ETH from the exchange’s...
OnSolve, the Florida-based critical communications company behind the CodeRED emergency notification system, confirmed on November 25, 2025, that its flagship platform suffered a major cybersecurity...
Dartmouth College, the historic Ivy League institution founded in 1769 and consistently ranked among the top academic and research universities in the United States, publicly acknowledged on November...
In late 2025, security researchers from the University of Vienna and SBA Research disclosed a serious privacy vulnerability in WhatsApp’s contact-discovery mechanism. By automating queries at scale,...
Multiple security vendors are sounding an alarm over a sophisticated and highly aggressive new wave of attacks targeting the **npm registry**, the primary repository for JavaScript development. The...
A set of five severe vulnerabilities has been discovered in **Fluent Bit**, the lightweight, open-source telemetry agent widely used across cloud and Kubernetes environments. Cybersecurity firm Oligo...
Spanish flag-carrier Iberia Airlines has confirmed a data-security incident involving unauthorized access to customer data. The airline states that the breach stems from a compromise of systems...
On 12 November 2025, U.S. real-estate-loan-servicing vendor SitusAMC disclosed a cyberattack that may have exposed sensitive corporate and customer-data belonging to several major U.S. banks. The...
November 23, 2025 A long-patched but widely unmitigated vulnerability in 7-Zip has officially entered its most dangerous phase: a fully functional, easy-to-use exploit is now publicly available...
Harvard University has announced a data breach affecting its Alumni Affairs systems, raising concerns across the global academic community. The university confirmed that an unauthorized party gained...