ACTIVE THREATS: Chrome zero-day CVE-2025-0971 under active exploitation — update immediately • CISA ED-25-02: Ivanti Connect Secure emergency directive issued • VoltZite ransomware targeting North American power grid operators ACTIVE THREATS: Chrome zero-day CVE-2025-0971 under active exploitation — update immediately • CISA ED-25-02: Ivanti Connect Secure emergency directive issued • VoltZite ransomware targeting North American power grid operators
Latest cybersecurity breaches news, analysis, and intelligence.
A ransomware-linked breach at MediSecure Health Network has exposed the personal health information of over 14 million patients across 38 US states. The attack, attributed to the BlackSuit ransomware group, compromised EHR databases containing Social Security numbers, diagnoses, and insurance data.
Security researcher Jeremiah Fowler has discovered and responsibly disclosed a series of misconfigured AWS S3 buckets exposing over 2.1 billion records across hundreds of companies. The data includes customer PII, API keys, internal source code, and HR records.
Dubai-based Bybit confirmed that attackers drained $47 million in ETH, BTC, and stablecoins from its hot wallet infrastructure. The attack, one of the most technically sophisticated exchange hacks of 2025, exploited a multi-signature wallet vulnerability via a supply chain compromise.