exposed
-
Blog
Over 46,000 Grafana instances exposed to account takeover bug
More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability that allows executing a malicious plugin and account takeover. The flaw is tracked as CVE-2025-4123 and impacts multiple versions of the open-source platform used for monitoring and visualizing infrastructure and application metrics. The vulnerability was discovered by bug bounty hunter Alvaro Balada and was addressed in…
Read More » -
Blog
Meta cracks down on nudify apps after being exposed
Meta is suing a company that advertised generative AI apps on its social media platforms that enable users to “nudify” people without their consent. The lawsuit against Joy Timeline comes after hundreds of ads for the digital undressing apps were discovered on Meta’s Facebook, Messenger, Instagram, and Threads platforms by a CBS News investigation published last week. “This legal action…
Read More » -
Blog
DanaBot malware operators exposed via C2 bug added in 2022
A vulnerability in the DanaBot malware operation introduced in June 2022 update led to the identification, indictment, and dismantling of their operations in a recent law enforcement action. DanaBot is a malware-as-a-service (MaaS) platform active from 2018 through 2025, used for banking fraud, credential theft, remote access, and distributed denial of service (DDoS) attacks. Zscaler’s ThreatLabz researchers who discovered the vulnerability, dubbed…
Read More » -
Blog
Criminal records, financial data exposed in cyber attack on Legal Aid Agency
The UK’s Legal Aid Agency has fallen victim to a cyber attack, with the organization confirming a “significant amount of personal data” has been exposed. In a statement confirming the incident, the government revealed it first became aware of the incident on April 23rd. A subsequent investigation showed the attack was “more extensive than originally understood”. The Legal Aid Agency,…
Read More » -
Blog
US healthcare data breaches are out of control – over 400 million patient records have been exposed in the last two years
Two new reports have highlighted the immense scale of US healthcare data breaches, with 409 million personal records exposed over the last two years. According to research from application security firm Indusface, there were 1,200 breaches in the US healthcare sector in the last 24 months, with 83% of incidents leaving patient records exposed. Texas recorded 66 data breaches, the…
Read More » -
Blog
Steam Data Breach Scare: Over 89 Million Accounts Potentially Exposed
When it comes to gaming, Steam is considered the holy grail and is incredibly popular. The platform has existed for ages and is not just known for gaming, but it’s pretty tight security standards, giving users a deep control over their accounts. Well, Steam’s incredible security streak just ended as someone has reported a massive data breach that may have…
Read More » -
Blog
LockBit ransomware gang hacked, victim negotiations exposed
The LockBit ransomware gang has suffered a data breach after its dark web affiliate panels were defaced and replaced with a message linking to a MySQL database dump. All of the ransomware gang’s admin panels now state. “Don’t do crime CRIME IS BAD xoxo from Prague,” with a link to download a “paneldb_dump.zip.” LockBit dark web site defaced with link…
Read More » -
Blog
Over 400,000 hit in massive employee benefits data breach — Social Security numbers and more exposed
A firm that focuses on employee benefits enrollment, Kelly & Associates Insurance Group, Inc. (Kelly Benefits) sent a notice to clients to alert them that thousands of them had their data exposed in a cyberattack. As reported by CyberNews, the company has confirmed, both in the client notice as well as in a filing with the Maine Attorney General’s office,…
Read More » -
Blog
More than 5 million Americans just had their personal information exposed in the Yale New Haven Health data breach – and lawsuits are already rolling in
A data breach at Yale New Haven Health (YNHHS) has exposed data belonging to millions of people – and lawsuits have already been filed. YNHHS runs more than 360 locations across Connecticut, New York, and Rhode Island, and is notifying patients that their personal data might have been affected. According to an entry on the US Department of Health and…
Read More » -
Blog
Blue Shield of California Exposed the Data of 4.7 Million People to Google
Credit: John W. McDonough / Sports Illustrated via Getty Images Blue Shield of California shared the protected health information of 4.7 million individuals with Google over a nearly three-year period, a data breach that impacts the majority of its nearly 6 million members, according to reporting from Bleeping Computer. This isn’t the only large data breach to affect a healthcare…
Read More »