News

One threat actor demanded $50 million from Novo Nordisk. Another one demanded $25 million. Neither got paid.

Bys s June 16, 2026

Yesterday, DataBreaches reported that FulcrumSec had hacked Danish pharmaceutical giant Novo Nordisk. FulcrumSec followed up on that reporting by releasing their own very detailed report on their dark web leak site about the incident and what they had acquired. This morning, DataBreaches woke up to find messages waiting on Signal from someone claiming they, too, had hacked…

Source

News

Bridging the Remediation Gap: Introducing Pentera Resolve
Bys s October 22, 2025

From Detection to Resolution: Why the Gap Persists A critical vulnerability is identified in an exposed cloud asset. Within hours, five different tools alert you about it: your vulnerability scanner, XDR, CSPM, SIEM, and CMDB each surface the issue in their own way, with different severity levels, metadata, and context. What’s missing is a system…

Read More Bridging the Remediation Gap: Introducing Pentera Resolve
News

LDAPNightmare PoC Exploit Crashes LSASS and Reboots Windows Domain Controllers
By January 3, 2025

A proof-of-concept (PoC) exploit has been released for a now-patched security flaw impacting Windows Lightweight Directory Access Protocol (LDAP) that could trigger a denial-of-service (DoS) condition. The out-of-bounds reads vulnerability is tracked as CVE-2024-49113 (CVSS score: 7.5). It was addressed by Microsoft as part of Patch Tuesday updates for December 2024, alongside CVE-2024-49112 (

Read More LDAPNightmare PoC Exploit Crashes LSASS and Reboots Windows Domain Controllers
News

RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment
Bys s March 26, 2025

The Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time, marking a departure in the threat actor’s tradecraft. The activity, observed by Romanian cybersecurity company Bitdefender, involves the deployment of a never-before-seen ransomware strain dubbed QWCrypt. RedCurl, also called Earth Kapre and Red Wolf, has a history of…

Read More RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment
News

McDonald’s McHire leak involving ‘123456’ admin password exposes 64 million applicant chat records
Bys s July 11, 2025

Loraine Centeno reports: McDonald’s just got a supersized reminder to beef up its digital security after its recruitment platform allegedly exposed the sensitive data of 64 million applicants. Security researchers Ian Carrol and Sam Curry, known for their work in vulnerability investigations and ethical hacking, recently revealed a major flaw in McDonald’s new McHire recruitment…

Read More McDonald’s McHire leak involving ‘123456’ admin password exposes 64 million applicant chat records
News

Beyond the kill chain: What cybercriminals do with their money (Part 5)
Bys s May 15, 2025

In the last of our five-part series, Sophos X-Ops explores the implications and opportunities arising from threat actors’ involvement in real-world industries and crimes

Read More Beyond the kill chain: What cybercriminals do with their money (Part 5)
News

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
Bys s May 7, 2026

Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been explored in limited attacks in the wild. The high-severity vulnerability, CVE-2026-6973 (CVSS score: 7.2), is a case of improper input validation affecting EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1. It allows “a remotely authenticated user with administrative access to achieve…

Read More Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Similar Posts