Code Bug at Compliance Firm Vanta Leaks Customer Data to Other Clients

Vanta has started informing affected customers that their employee account data was incorrectly inserted into their Vanta instance and out of it into other customers’ instances.

North Carolina clinics notify 23K people of data breach; SSNs, financial and medical info leaked

Compassion Health Care (CHC), a healthcare provider in North Carolina, has disclosed a ransomware attack that compromised the personal and medical data of 23,282 individuals.

The North Face warns customers of April credential stuffing attack

The North Face has disclosed a credential stuffing attack on its website, thenorthface[.]com, that occurred on April 23, 2025. This marks the fourth credential stuffing incident since 2020.

ColoCrossing Data Breach Exposes 7,200 ColoCloud Accounts via SSO Vulnerability

In May 2025, ColoCrossing experienced a data breach affecting its ColoCloud virtual server product. The breach exposed sensitive customer data, including email addresses, names, and password hashes.

Next Step Healthcare data breach leaks patients' SSNs, medical records, and credit cards

Next Step Healthcare, a provider of nursing and rehabilitation services in Massachusetts, experienced a ransomware attack in June 2024 that compromised sensitive patient data.

DDoS incident disrupts internet for thousands in Moscow

A significant Distributed Denial-of-Service (DDoS) attack targeted Russian internet service provider ASVT, disrupting internet access for tens of thousands of residents in Moscow and surrounding areas.

Hackers give Botetourt County Schools 2 weeks to pay ransom after cyber attack

A ransomware attack attributed to the Qilin group has targeted Botetourt County Public Schools (BCPS) in Virginia. The attackers claim to have exfiltrated 315 GB of sensitive data.

Nifty.com Used as Phishing Infrastructure: How Raven Detected Abuse of Trusted Infrastructure

A sophisticated phishing campaign has been uncovered leveraging the legitimate infrastructure of Japanese ISP Nifty[.]com. This multi-wave operation bypassed traditional email defenses by exploiting trusted domains and authentication protocols.

ConnectWise Confirms Hack, “Very Small Number” of Customers Affected

ConnectWise has confirmed a cyberattack on its ScreenConnect remote access platform, attributed to a sophisticated nation-state threat actor. The breach affected a limited number of customers

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags