Explore

Trendline Trendline
Red Hat NPM Repository Compromised in Supply Chain Attack Affecting Developers

Red Hat NPM Repository Compromised in Supply Chain Attack Affecting Developers

Red Hat NPM Repository Compromised in Supply Chain Attack Affecting Developers
Trendline Trendline
Red Hat Confirms 'Miasma' Worm Compromises npm Packages, No Customer Impact Reported

Red Hat Confirms 'Miasma' Worm Compromises npm Packages, No Customer Impact Reported

Red Hat Confirms 'Miasma' Worm Compromises npm Packages, No Customer Impact Reported
Trendline Trendline
Red Hat npm Packages Compromised by 'Miasma' Worm, Threatening Security

Red Hat npm Packages Compromised by 'Miasma' Worm, Threatening Security

Red Hat npm Packages Compromised by 'Miasma' Worm, Threatening Security
Trendline Trendline
Red Hat npm Packages Compromised by 'Miasma' Worm, No Customer Impact Reported

Red Hat npm Packages Compromised by 'Miasma' Worm, No Customer Impact Reported

Red Hat npm Packages Compromised by 'Miasma' Worm, No Customer Impact Reported
Trendline Trendline
Infected Red Hat npm Packages Compromise Developer Credentials in Supply Chain Attack

Infected Red Hat npm Packages Compromise Developer Credentials in Supply Chain Attack

Infected Red Hat npm Packages Compromise Developer Credentials in Supply Chain Attack
Rapid Read Rapid Read
OpenAI Codex Users Targeted in Attack, Highlighting AI Software Supply Chain Risks

OpenAI Codex Users Targeted in Attack, Highlighting AI Software Supply Chain Risks

A recent attack targeting users of OpenAI Codex has exposed significant risks in the AI software supply chain. The attack involved the theft of Codex refresh tokens, which provide persistent access to user accounts. This incident is part of a broader trend where attackers create legitimate-looking projects to mask malicious activities. The attack underscores vulnerabilities in software supply chains, particularly in AI developer tools, where security measures often focus on source code rather than the distributed software artifacts.
Trendline Trendline
Better Business Bureau Urges Businesses to Enhance Data Security Amid Rising Cyber Threats

Better Business Bureau Urges Businesses to Enhance Data Security Amid Rising Cyber Threats

Better Business Bureau Urges Businesses to Enhance Data Security Amid Rising Cyber Threats
Rapid Read Rapid Read
Amtrak Data Breach Exposes Millions of Customer Records

Amtrak Data Breach Exposes Millions of Customer Records

Amtrak has reportedly experienced a data breach that exposed millions of customer records. The breach was identified on the site Have I Been Pwned, which tracks data breaches. The exposed data includes email addresses, names, physical addresses, and customer support records. The breach is linked to the group ShinyHunters, known for targeting cloud-based customer systems. The incident raises concerns about the security of customer data and the potential for phishing attacks using the leaked information.
Rapid Read Rapid Read
Amtrak Data Breach Exposes Millions of Customer Records, Raising Privacy Concerns

Amtrak Data Breach Exposes Millions of Customer Records, Raising Privacy Concerns

A significant data breach involving Amtrak has surfaced, potentially affecting millions of customer accounts. The breach was reported on Have I Been Pwned, a site that tracks data breaches, indicating that customer information may be circulating online. The exposed data includes email addresses, names, physical addresses, and customer support records. The breach is linked to the hacking group ShinyHunters, known for targeting cloud-based customer systems like Salesforce. These systems store large amounts of data, making them attractive targets for attackers. The breach highlights vulnerabilities in cloud-based customer relationship management environments, where attackers exploit weak access controls and misconfigured settings to extract data.
Trendline Trendline
Dashlane Brute-Force Attack Results in Limited Encrypted Vault Downloads

Dashlane Brute-Force Attack Results in Limited Encrypted Vault Downloads

Dashlane Brute-Force Attack Results in Limited Encrypted Vault Downloads
Rapid Read Rapid Read
Massive Data Breach at New York City Health and Hospitals Exposes Sensitive Patient Information

Massive Data Breach at New York City Health and Hospitals Exposes Sensitive Patient Information

New York City Health and Hospitals (NYCHHC) has reported a significant data breach affecting over 1.8 million individuals. The breach, detected on February 2, allowed hackers to access sensitive personal, medical, and billing information, including biometric data such as fingerprints and palm prints, from November 2025 to February 2026. The breach occurred at an unspecified third-party vendor. This incident is one of the largest healthcare-related data breaches this year, highlighting vulnerabilities in the healthcare sector's data security.
Rapid Read Rapid Read
California Attorney General Sues Over 23andMe Data Breach

California Attorney General Sues Over 23andMe Data Breach

California Attorney General Rob Bonta has filed a lawsuit against the company formerly known as 23andMe, accusing it of failing to protect customer data during a 2023 breach. The breach affected nearly 7 million people, including over 850,000 Californians, exposing sensitive genetic information and health reports. Hackers accessed the data using credential stuffing, exploiting weak passwords. The lawsuit claims 23andMe misled consumers about the breach's severity and failed to safeguard personal information. The company, which filed for bankruptcy in 2025, was acquired by TTAM Research Institute. The legal challenge highlights the importance of data security in genetic testing services.