cyberfeed.io — security news aggregator

⚡ Weekly Recap: Password Manager Flaws, Apple 0-Day, Hidden AI Prompts, In-the-Wild Exploits & More

The Hacker News • 2025-08-25 • thehackernews.com

Cybersecurity today moves at the pace of global politics. A single breach can ripple across supply chains, turn a software flaw into leverage, or shift who holds the upper hand. For leaders, this means defense isn't just a matter of firewalls and patches - it's about strategy. The strongest organizations aren't the ones with the most tools, but the ones that see how cyber risks connect to business

#incident #breach

Risky Bulletin: Hackers sabotage Iranian ships at sea, again

Risky Business Media • 2025-08-25 • risky.biz

Hackers sabotage Iranian ships for a second time this year, mass cybercrime arrests across Africa, South Korea extradites a Chinese man behind celebrity hacks, and a French supermarket chain discloses a data breach.

#incident #breach

How can I find someone's reddit account only by knowing their socials (ig,fb) and phone number (not us number). Also If phone number isn't enough I may get their email somehow idk.

Blackhat Library: Hacking techniques and research • 2025-08-24 • www.reddit.com

I tried using osint tools but it didn't take me anywhere. Is there a data breach or smth submitted by /u/binarygirl101 [link] [comments]

#incident #breach

How Dealerships Can Protect Their Customers' Financial Data

Cyber Defense Magazine • 2025-08-23 • www.cyberdefensemagazine.com

Dealerships handle sensitive information, such as credit applications and personal financial records, daily. A data breach can lead to profound consequences for both the dealership and its customers. Dealerships can...

#incident #breach

New Algorithm Detects Active Hacking Groups Targeting Companies

Technical Information Security Content & Discussion • 2025-08-23 • www.reddit.com

We built an algorithm that flags when hacker groups invest significant effort to breach a company. No false positives ~25% of detections later become breach announcements For public companies, it's nearly 100% We're sharing free real-time notifications at https://deepspecter.com/risk-signal submitted by /u/Disscom [link] [comments]

#incident #breach

Orange confirms ransomware breach with 4 GB of customer data exposed on dark web

cybersecurity • 2025-08-23 • www.reddit.com

submitted by /u/Realistic_Truth_7030 [link] [comments]

#incident #ransomware #breach

How do you handle password leak reports regarding customers/users of your service/product due to customers poor security hygiene

cybersecurity • 2025-08-23 • www.reddit.com

My company runs an online product offering with several customers using our product. We also have a bug bounty program and every now and then, we receive reports of leaked credentials pertaining to our customers. These leaked credentials are due to customer's poor security (malware on their PC, same password everywhere, etc) and not a breach on our end. I'm trying to understand the right way to handle these. Would contacting customers to inform them of their password leaks be an obligation or...

#incident #malware #breach #bug-bounty

Polish electronics store Botland confirmed a breach, did anyone else get this email?

cybersecurity • 2025-08-22 • www.reddit.com

Hey, Heads up: I received an official email today (Aug 22, 2025) from Botland (botland.com.pl, a Polish electronics / maker store) confirming they had a security incident. According to their disclosure: Signs of unauthorized access were found on July 23 and Aug 3, An external audit was only completed on Aug 11, Attackers exploited a store module to gain access to some customer data, They're not sure if the data was actually exfiltrated, It's been reported to the Polish DPA (UODO) and materials...

#incident #breach

Chinese Hackers Murky, Genesis, and Glacial Panda Escalate Cloud and Telecom Espionage

The Hacker News • 2025-08-22 • thehackernews.com

Cybersecurity researchers are calling attention to malicious activity orchestrated by a China-nexus cyber espionage group known as Murky Panda that involves abusing trusted relationships in the cloud to breach enterprise networks. "The adversary has also shown considerable ability to quickly weaponize N-day and zero-day vulnerabilities and frequently achieves initial access to their targets by

#cloud #vulnerability #incident #zero-day #breach

Data Breach fix

cybersecurity • 2025-08-21 • www.reddit.com

The National Assessment Grid, which is about to conduct high-stakes exams for over 10 million students in 2hours, has just detected a possible breach in its encrypted question bank servers. There are unusual login attempts from outside IPs, and some material might already be leaked. If they shut the system down, it could cause nationwide disruption, but if they continue, the exam's integrity could be compromised. If you were on the digital response team, how would you handle this? (guys this is...

#patch-management #incident #breach

Issue 278: OWASP API Bugs at Intel, TeaForHer, & McDonald's, Optus Breach Fallout, APIs for AI Agents

API Security News • 2025-08-21 • apisecurity.io

This week, we dive into detailed reports of vulnerabilities impacting Intel, McDonald's, and the social media app TeaForHer, each with valuable lessons for API security. We also look at the latest news and rising costs from the Optus 2022 API breach. Finally, we highlight an insightful article offering practical tips for designing APIs for efficient

#vulnerability #incident #breach #api-security

What if companies stopped storing customer data at all?

cybersecurity • 2025-08-21 • www.reddit.com

Why are breaches still so common, even at companies with million-dollar security budgets? We encrypt, we deploy IAM, we roll out "zero trust"... and yet attackers keep winning. Maybe the issue isn't weak crypto or bad configs - maybe it's that we keep collecting and stockpiling too much data in the first place. In B2C especially, I've seen the math: prevention vs. breach cost. Too often, it's "cheaper" to accept the breach. Customers pay the real price (fraud, ID theft for years). So here's...

#incident #breach #zero-trust #iam

CORL & RiskRecon Partner on Healthcare Risk Intelligence

Cyber Security - AI-Tech Park • 2025-08-21 • ai-techpark.com

Healthcare remains the most targeted industry for cyberattacks, with third-party suppliers implicated in the majority of major breaches. In fact, supplier-related incidents accounted for over 55% of healthcare breaches in 2024, and the average cost of a healthcare data breach exceeded $10 million. For organizations entrusted with protected health information (PHI) and...

#incident #breach

Orange Belgium discloses data breach impacting 850,000 customers

BleepingComputer • 2025-08-21 • www.bleepingcomputer.com

Orange Belgium, a subsidiary of telecommunications giant Orange Group, disclosed on Wednesday that attackers who breached its systems in July have stolen the data of approximately 850,000 customers.

#incident #breach

In your cyber career, whats the dumbest, craziest, or most elaborate breach you have seen?

cybersecurity • 2025-08-21 • www.reddit.com

I tried to scroll around on this thread just to see if someone had posted this question. I couldn't find one. If others are curious or want to answer I think it would be very interesting. Thanks guys, its my first post here so pardon my etiquette submitted by /u/CyberAdviser [link] [comments]

#incident #breach

How do aerospace agencies handle resilience in distributed cloud systems under sophisticated cyberattacks?

cybersecurity • 2025-08-20 • www.reddit.com

I've been exploring the challenge of cloud resilience and compliance in aerospace systems . The stakes are incredibly high: downtime or a breach doesn't just mean lost data, it could mean failed missions. From your experience: How do you approach regulatory compliance across multiple cloud environments? Have you seen effective ways to simulate or anticipate compliance risks before a real incident happens? Would love to hear what strategies are working (or not working) in practice. submitted by...

#cloud #incident #breach

1.1 Million Users Data Exposed in Massive Allianz Life Data Breach

Cyber Security News • 2025-08-19 • cybersecuritynews.com

Allianz Life, a primary insurance provider, has fallen victim to a sophisticated social engineering attack that compromised the personal data of approximately 1.1 million customers in July 2025. The breach, which targeted the company's Salesforce CRM platform, represents one of the most significant insurance sector data exposures this year. The attack leveraged advanced social engineering

#security-tools #incident #breach

Oracle's Longtime Security Chief Leaves in Reorganization

cybersecurity • 2025-08-19 • www.reddit.com

Fall out from Oracle Cloud-Health breach continues. submitted by /u/Smooth-Breadfruit362 [link] [comments]

#cloud #incident #breach

NY Business Council discloses data breach affecting 47,000 people

BleepingComputer • 2025-08-19 • www.bleepingcomputer.com

The Business Council of New York State (BCNYS) has revealed that attackers who breached its network in February stole the personal, financial, and health information of over 47,000 individuals.

#incident #breach

Massive Allianz Life data breach impacts 1.1 million people

BleepingComputer • 2025-08-19 • www.bleepingcomputer.com

Hackers have stolen the personal information of 1.1 million individuals in a Salesforce data theft attack, which impacted U.S. insurance giant Allianz Life in July.

#incident #breach