PornHub has been targeted by the ShinyHunters extortion gang following a data breach at Mixpanel, a third-party analytics provider. The breach exposed the search and watch history of PornHub Premium members.

Askul Corporation, a major Japanese e-commerce company, suffered a ransomware attack by the RansomHouse group, resulting in the theft of approximately 740,000 customer records.

SoundCloud has confirmed a security breach affecting approximately 28 million accounts, which is 20% of its user base. The breach involved unauthorized access to a database containing user information.

Apple has released emergency updates to address two zero-day vulnerabilities, CVE-2025-43529 and CVE-2025-14174, which were exploited in sophisticated attacks targeting specific individuals.

Notepad++ has addressed a critical bug in its WinGUp update tool that allowed attackers to push malicious update files. It was exploited to execute unauthorized commands and exfiltrate sensitive data, posing a significant security risk to users.

DroidLock is a newly discovered Android malware that locks devices and demands a ransom. It specifically targets Spanish-speaking users and is distributed through malicious websites promoting fake applications.

Ivanti has disclosed a critical vulnerability in its Endpoint Manager (EPM) solution, tracked as CVE-2025-10573. This flaw allows remote, unauthenticated attackers to execute arbitrary JavaScript code through cross-site scripting attacks.

Microsoft has released the Windows 10 KB5071546 extended security update, addressing 57 security vulnerabilities, including three zero-day flaws. This update is mandatory and will automatically install, prompting a restart.

Two malicious VSCode extensions, Bitcoin Black and Codo AI, have been identified on Microsoft's registry. These extensions, published under the developer name 'BigBlack', are designed to infect developers' machines with information-stealing malware.

The Aisuru botnet has launched over 1,300 DDoS attacks in just three months, with Cloudflare mitigating 2,867 attacks since the beginning of the year. The botnet's most significant attack peaked at 29.7 Tbps, setting a new record.