A ransomware attack in January at Frederick Health Medical Group, a major healthcare provider in Maryland, has led to a data breach affecting nearly one million patients. With almost 4,000 employees and over 25 locations, Frederick Health is one of Frederick County's largest employers. As the health system revealed in a late March notification to patients, the ransomware attack was detected on January 27, which prompted Frederick Health to notify law enforcement. READ MORE...
Mobile network operator SK Telecom, which serves approximately 34 million subscribers in South Korea, has confirmed that it suffered a cyber attack earlier this month that saw malware infiltrate its internal systems, and access data related to customers' SIM cards. The breach occurred at around 11pm local time, on the night of Saturday 19 April 2025, in what is believed to have been an attack intentionally timed to exploit a day and time when there may be less staff monitoring in place. READ MORE...
In a recent espionage campaign, the infamous North Korean threat group Lazarus targeted multiple organizations in the software, IT, finance, and telecommunications sectors in South Korea. The threat actor combined a watering hole attack strategy with an exploit for a vulnerability in a file transfer client that is required in South Korea to complete certain financial and administrative tasks. READ MORE...
Security incidents affecting the automotive and mobility industries shot up nearly 50% in the first quarter of 2025. Recent analysis from Upstream Security indicates an accelerating rate of cyber threats to vehicles and their manufacturers. Upstream researchers tracked 148 publicly disclosed incidents through the first few months of the year - a run rate that, should it continue, will well outpace the 409 incidents seen throughout the entirety of 2024. READ MORE...
Darcula, a cybercrime outfit that offers a phishing-as-a-service kit to other criminals, this week added AI capabilities to its kit that help would-be vampires spin up phishing sites in multiple languages more efficiently. Netcraft security researchers spotted the update on April 23 along with a demo video showing a cloned Google homepage and an attacker using the AI to generate a phishing form in Chinese, then add more fields and translate it into English. READ MORE...
When Google enters a particular market, it often means bad news for the incumbents. So it was with Google Forms, the tech giant's form and quiz-building tool that launched in 2008. According to one estimate, it now has a market share of nearly 50%. However, with great market share comes greater scrutiny from nefarious elements. Threat actors are past masters at abusing popular technology for their own ends. READ MORE...
Security researchers have raised concerns about a maximum severity bug in certain versions of Commvault's Command Center that enables an unauthenticated remote attacker to execute arbitrary code on affected systems. The bug, identified as CVE-2025-34028, affects versions 11.38.0 to 11.38.19 of the Windows and Linux versions of Commvault. The company has fixed the issue in version 11.38.20 of the software, which should get automatically deployed on affected systems. READ MORE...
Attackers exploited nearly a third of vulnerabilities within a day of CVE disclosure in the first quarter of 2025, VulnCheck said in a report released Thursday. The company, which focuses on vulnerability threat intelligence, identified 159 actively exploited vulnerabilities from 50 sources during the quarter. The time from CVE disclosure to evidence of exploitation in the first quarter was marginally faster than what VulnCheck observed during 2024. READ MORE...