FBI investigating Chinese hackers who targeted top US law and tech companies, report claims https://etimg.etb2bimg.com/thumb/msid-124404219,imgsize-30116,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/fbi-investigating-chinese-hackers-who-targeted-top-us-law-and-tech-companies-report-claims.jpg FBI is investigating a large-scale cyber espionage effort by Chinese hackers. These hackers successfully infiltrated the computer systems of one of the country’s most prominent law firms, Williams & Connolly, a report claims. The firm has reportedly notified clients that its networks were compromised as ...

3,000 YouTube Videos Exposed as Malware Traps in Massive Ghost Network Operation https://firewall.firm.in/wp-content/uploads/2025/10/youtube.jpg Oct 24, 2025Ravie LakshmananMalware / Hacking News A malicious network of YouTube accounts has been observed publishing and promoting videos that lead to malware downloads, essentially abusing the popularity and trust associated with the video hosting platform for propagating malicious payloads. Active since 2021, the network has ...

Fortinet report: Data loss rises despite stronger security and higher spending https://etimg.etb2bimg.com/thumb/msid-124407373,imgsize-14212,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/fortinet-report-data-loss-rises-despite-stronger-security-and-higher-spending.jpg The 2025 Data Security Report from Fortinet and Cybersecurity Insiders reveals that despite adopting smarter strategies and increasing budgets, data loss incidents continue to rise. While most organizations rely on some form of data loss prevention (DLP), many lack visibility into how employees interact with data—particularly across SaaS ...

North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware https://firewall.firm.in/wp-content/uploads/2025/10/malware-code.jpg The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality of two of its malware programs, indicating that the hacking group is actively refining its toolset. That’s according to new findings from Cisco Talos, which said recent campaigns undertaken ...

Qantas customer data released by hackers after July breach, says airline https://etimg.etb2bimg.com/thumb/msid-124516943,imgsize-29794,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/qantas-customer-data-released-by-hackers-after-july-breach-says-airline.jpg Qantas Airways said on Sunday, October 12 that it is among the companies whose customer data was published by cybercriminals following a July database breach, reports Reuters. The airline had previously confirmed that more than one million customers had sensitive details such as phone numbers, birth dates, or ...

Experts Warn of Widespread SonicWall VPN Compromise Impacting Over 100 Accounts https://firewall.firm.in/wp-content/uploads/2025/10/sonicwall.jpg Oct 11, 2025Ravie LakshmananCloud Security / Network Security Cybersecurity company Huntress on Friday warned of “widespread compromise” of SonicWall SSL VPN devices to access multiple customer environments. “Threat actors are authenticating into multiple accounts rapidly across compromised devices,” it said. “The speed and scale of these attacks imply ...

Canada’s WestJet says some passenger data exposed in cybersecurity breach https://etimg.etb2bimg.com/thumb/msid-124247093,imgsize-964241,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/canadas-westjet-says-some-passenger-data-exposed-in-cybersecurity-breach.jpg Canadian carrier WestJet said on Monday the personal information of some passengers was exposed in a cybersecurity breach earlier this year, though no payment data was compromised. The airline said it detected suspicious activity on June 13 and later determined that a “sophisticated, criminal third party” had gained unauthorized ...

Step Into the Password Graveyard… If You Dare (and Join the Live Session) https://firewall.firm.in/wp-content/uploads/2025/10/password-security.jpg Oct 08, 2025The Hacker NewsPassword Security / Cyber Attacks Every year, weak passwords lead to millions in losses — and many of those breaches could have been stopped. Attackers don’t need advanced tools; they just need one careless login. For IT teams, that means endless resets, ...

Tenable exposes AI flaws in Google gemini that could have let hackers steal data from millions https://etimg.etb2bimg.com/thumb/msid-124284799,imgsize-39892,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/google-gemini-ai-vulnerabilities-exposed-by-tenable.jpg Tenable, the exposure management company, has identified three vulnerabilities in Google’s Gemini suite, collectively dubbed the Gemini Trifecta. These flaws, now remediated, exposed users to significant privacy risks that could have enabled attackers to manipulate Gemini’s behavior and silently steal sensitive data such ...

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files https://firewall.firm.in/wp-content/uploads/2025/10/zimbra-email-hacking.jpg Oct 06, 2025Ravie LakshmananEmail Security / Zero-Day A now patched security vulnerability in Zimbra Collaboration was exploited as a zero-day earlier this year in cyber attacks targeting the Brazilian military. Tracked as CVE-2025-27915 (CVSS score: 5.4), the vulnerability is a stored cross-site scripting (XSS) vulnerability in the Classic ...