Key public and private institutions across the Netherlands have been hit by a wave of distributed denial-of-service (DDoS) attacks in recent days, causing widespread access disruptions, according to the country’s National Cyber Security Center (NCSC). In a statement released this week, the NCSC, which operates under the Ministry of Justice and Security, confirmed that multiple … Continued
A security lapse at Elon Musk’s artificial intelligence startup xAI left sensitive AI models, possibly trained on internal data from SpaceX, Tesla, and X (formerly Twitter). The leak involved a private application programming interface (API) key posted to GiHub by an xAI technical staff. This key granted access to a trove of unreleased and internal … Continued
The cyber espionage group known as Billbug, also tracked under aliases Lotus Blossom, Lotus Panda, Bronze Elgin, and formerly Thrip, has been linked in to an intrusion campaign targeting critical organizations across Southeast Asia. This campaign was going on from August 2024 to February 2025 and compromised entities at least in three different countries, signalling … Continued
As millions across Europe faced a major blackout earlier this week, cybercriminals quickly seized the moment to launch a targeted phishing campaign aimed to steal personal and financial information. According to a new report from Cofense Intelligence, a spoofed email campaign impersonating TAP Air Portugal, the Portuguese national airline, circulated widely during the April 28 … Continued
A regional high court in India has ordered the government to block access to Proton Mail, a Switzerland-based encrypted email service, after a complaint alleged its platform was used to send sexually explicit and AI-generated abusive content. The Ruling The High Court of Karnataka, a state in southern India, issued the directive on April 29, … Continued
In March 2025, law enforcement agencies shut down Garantex, a notorious cryptocurrency exchange that facilitated illicit financial activity. But as history has shown, the fall of one platform often marks the rise of another. Now, all eyes are on Grinex – a similar exchange that’s now doing the work of Garantex. Background Grantex had operated … Continued
A targeted cyberattack on Uyghur exiles and senior members of the World Uyghur Congress (WUC) has been reported by Citizen Lab. It is believed to be orchestrated by threat actors linked to the Chinese government. In March 2025, WUC members living in exile were subjected to a spear phishing campaign that delivered Windows-based malware disguised … Continued
A critical vulnerability in SAP’s Netweaver Visual Composer tool is being actively exploited by attackers in the wild, raising alarm across industries that rely on the enterprise software platform. The vulnerability, tracked as CVE-2025-31324, carries the maximum CVSS severity score of 10 and affects all SAP NetWeaver 7.xx versions. The vulnerability allows unauthenticated, remote attackers … Continued
Amid rising tensions between India and Pakistan following the Pahalgam incident, anticipation of retaliatory action between the two nations has grown. But as cybersecurity community often warns—before the missiles fly, the cyberattacks strike. Today, the website of India’s Army Nursing College was hacked by a pro-Pakistan hacker group known as “Team Insane PK.” The cyberattack … Continued
In a new wave of cyberattacks, Russia-linked threat actors are exploiting legitimate Auth 2.0 authentication processes to compromise Microsoft 365 accounts belonging to individuals affiliated with Ukraine and human rights organizations, according to a report by cybersecurity firm Volexity. The adversaries—tracked by Volexity as UTA0352 and UTA0355—have been conducting the operation since early March, shortly … Continued
