Russians hacked US courts, say investigators
Russia is after secret files in the US court system, according to reports this week-and its hackers appear to have reached at least some of them. Last week, news broke of a successful cyberattack against the decades-old US court filing system. Called Case Management/Electronic Case Files (CM/ECF), courts use the system to file and maintain documentation for legal cases around the country, which in turn can be accessed through a public portal called PACER. READ MORE...
Italian hotels breached en masse since June, government confirms
Italy's digital agency (AGID) says a cybercriminal's claims concerning a spate of data thefts affecting various hotels across the country are genuine. The miscreant, operating under the alias of mydocs, claims to have gained access to the booking systems used by Italian hotels and stolen thousands of guests' sensitive ID documents between June and August. AGID said on Wednesday the total number of affected hotels has risen to ten, a number that could go up further in the coming days. READ MORE...
Pennsylvania attorney general's email, site down after cyberattack
The Office of the Pennsylvania Attorney General has announced that a recent cyberattack has taken down its systems, including landline phone lines and email accounts. As Attorney General Dave Sunday revealed on social media on Monday, the office staff is currently working to restore affected services and investigate the incident with the help of law enforcement authorities. "The network that hosts the Office of Attorney General's systems is currently down," Sunday said. READ MORE...
Norwegian Police Say Pro-Russian Hackers Were Likely Behind Suspected Sabotage at a Dam
Russian hackers are likely behind suspected sabotage at a dam in Norway in April that affected water flows, police officials told Norwegian media on Wednesday. The director of the Norwegian Police Security Service, Beate Gangås, said cyberattacks are increasingly being carried out against Western nations to stoke fear and unrest. The Associated Press has plotted more than 70 incidents on a map tracking a campaign of disruption across Europe blamed on Russia. READ MORE...
Fortinet SIEM issue coincides with spike in brute-force traffic against company's SSL VPNs
Fortinet warned customers in an advisory Tuesday of a critical vulnerability in FortiSIEM, its security information and event management software, adding that "practical exploit code" for the defect exists in the wild. The OS command injection vulnerability, CVE-2025-25256, has an initial CVSS score of 9.8 and could allow unauthenticated attackers to escalate privileges and execute code or commands. Active exploitation hasn't been observed. READ MORE...
Xerox patches critical vulnerability in FreeFlow Core application
Xerox has issued a security upgrade for critical and high-severity vulnerabilities in its FreeFlow Core product that researchers said could have allowed an attacker to remotely execute code. Xerox FreeFlow Core is a print orchestration platform that handles prepress automation workflows, and it is often used by organizations that require large print operations, including packaging companies, marketing campaigns, universities and government agencies. READ MORE...
What the LockBit 4.0 Leak Reveals About RaaS Groups
For years, LockBit has been viewed as the gold standard in ransomware - a sleek, professional, and ruthlessly efficient criminal syndicate with the polish of a Silicon Valley startup. But the recent leak of LockBit's 4.0 affiliate panel shattered that illusion, exposing a chaotic, backbiting, and wildly inconsistent operation behind the scenes. If you've been picturing ransomware groups as disciplined criminal organizations, they are far more fragmented and unpredictable because of it. READ MORE...
North Korea Attacks South Koreans With Ransomware
A prominent North Korean threat group has debuted a new campaign with an infostealer, backdoor, and ransomware, in attacks against targets in South Korea. Very broadly speaking, each major cyber power has certain characteristics that distinguish it from the pack. Russia, for example, has historically been the most effective in disinformation campaigns. Israeli bad actors develop the most sinister spyware. READ MORE...
For $40, you can buy stolen police and government email accounts
Active police and government email accounts are being sold on the dark web for as little as $40, giving cybercriminals a direct line into systems and services that rely on institutional trust. According to new research from Abnormal AI, the accounts come from agencies in the United States, United Kingdom, Germany, India, and Brazil, and are being traded on underground forums. Unlike spoofed or dormant addresses, these accounts are functional and still in use by legitimate agencies. READ MORE...
CISA Warns of Attacks Exploiting N-able Vulnerabilities
The cybersecurity agency CISA is warning organizations that use the N-central remote monitoring and management (RMM) product from N-able about two recently patched vulnerabilities being exploited in the wild. N-central is designed to provide management, automation, and orchestration capabilities to MSPs and IT teams. N-able informed customers on August 13 that a new version of the product, 2025.3, includes a "critical security fix" for two vulnerabilities. READ MORE...
- ...in 1935, President Franklin D. Roosevelt signs into law the Social Security Act.
- ...in 1945, an official announcement of Japan's unconditional surrender to the Allies is made public to the Japanese people.
- ...in 1994, terrorist Illich Ramirez Sanchez, long known as Carlos the Jackal, is captured in Sudan by French intelligence agents.
- ...in 2003, a major outage knocked out power across the eastern United States and parts of Canada.
