Date: October 31, 2025 Overview: The ransomware-as-a-service group Rhysida has initiated a new malvertising campaign that uses fake search-ads and spoofed download portals to deliver the...
In the most explosive zero-day campaign of 2025, China’s elite TICK unit—also known as Bronze Butler—turned Japan’s favorite endpoint manager into a skeleton-key for 200+ enterprises. For 53 straight...
Over 300 Million Stolen Credentials Exposed on the Dark Web in 2025 November 3, 2025 CRITICAL ALERT The underground economy of stolen data has...
Boyd Gaming Corporation, one of the largest casino and entertainment companies in the United States, has disclosed a significant cybersecurity incident involving unauthorized access to its internal...
A threat actor claiming responsibility for a recent mass-email incident tied to the University of Pennsylvania (Penn) says they stole data for approximately 1.2 million students, alumni and donors....
Threat actors are deploying a malicious implant dubbed BADCANDY on Cisco IOS XE devices vulnerable to CVE-2023-20198, a previously exploited privilege-escalation flaw that allows unauthenticated...
In-Depth Cyber Threat Analysis | November 2025 The ransomware battlefield has shifted once again. Qilin, one of the most aggressive and technically sophisticated...
The Akira ransomware group claims it exfiltrated ~23 GB of data from Apache OpenOffice. Data allegedly includes personal, financial, and internal project files. No verified evidence of encryption...
Location: United States • Date disclosed: October 2025 Incident Summary: Ribbon Communications, a U.S.-based provider of telecom software, voice and data networking technologies, and a vendor to...
In one of the most significant cybersecurity events of 2025, Conduent Business Services, LLC—a leading provider of back-office and digital solutions for governments and enterprises—has disclosed a...
BREAKING CRITICAL INFRASTRUCTURE CLOP RANSOMWARE Published November 1, 2025 | CyberWatch Report ...
The University of Pennsylvania (Penn) is currently investigating a cybersecurity incident in which multiple students, alumni and faculty received inflammatory emails sent from official university...
November 1, 2025 In an era where global trade relies on seamless logistics, ransomware attacks pose a severe threat to interconnected supply chains. The recent assault on TMF...
China’s Cyberspace Administration of China (CAC) has finalized the Administrative Measures for the Reporting of National Cybersecurity Incidents, creating a unified national framework that...
Date: October 30, 2025 Summary: Security researchers have observed a rapid surge in automated botnet activity over the last 24 hours, with long-standing IoT botnets — Mirai, Gafgyt and Mozi —...
Date: October 30, 2025 Overview: A previously undocumented zero-day vulnerability (CVE-2025-41244) in the widely used virtualization platform VMware vCenter Server is being actively exploited by a...
Date: October 29, 2025 Overview: The Russian-linked threat actor Gamaredon has launched a sophisticated spear-phishing campaign targeting government ministries, diplomatic services, parastatals...
Stockholm, October 28, 2025 — Sweden’s state-owned transmission system operator Svenska kraftnät (SVK) has confirmed that it suffered a major cybersecurity incident over the weekend. The breach,...
The Crypto24 ransomware group has claimed responsibility for a data breach impacting Bayu Buana Travel, one of Indonesia’s most prominent corporate and leisure travel agencies. The claim appeared...
Global — October 28, 2025 Summary: Security researchers and analysts have identified a massive trove of stolen credentials — roughly 183 million email account entries and associated passwords —...