Skip to main content

Tag: data theft

101 articles

Business setting with laptop on desk, papers and supplies nearby, and CRM system on screen.

Microsoft Tracks ShinyHunters' Salesforce Data Theft Via OAuth Flaws

Microsoft uncovered a sneaky year-long operation by the ShinyHunters extortion group, who exploited trust in Salesforce's OAuth system to steal sensitive data, using clever vishing tactics to trick employees into granting access to a malicious app. The attackers posed as IT support, convincing victims to authorize a fake Data Loader tool that allowed them to make API calls and search for valuable credentials.

Analyst 207
Dutch National Police officer stands in formal briefing room with agency emblem and cityscape in background.

Dutch Police Expose Suspects in Odido Hacking Case

The Dutch National Police have cracked the Odido hacking case, revealing that suspects impersonated an IT employee in a phone call with customer service, tricking the company into divulging sensitive info through phishing. This clever ruse led to a massive data theft in February.

Analyst 207
Browser window with muted notification bar on a computer screen in a quiet indoor setting.

Opera GX Flaw Enables Silent Mod Installs to Steal User Data

Researchers have discovered a security flaw in Opera GX that allows for silent mod installs, potentially putting user data at risk, and surprisingly, this vulnerability can be exploited with just a single page visit. This alarming issue enables malicious mods to be installed without user consent, highlighting a concerning gap in the browser's security.

Analyst 207
Developer workspace with laptop, monitor, and notes, overlooking cityscape through window.

North Korea-Linked npm Packages Target Developers with Stealthy Data Theft

Malicious npm packages, linked to North Korean threat actors, are impersonating popular tools to trick developers into handing over sensitive data. These sneaky packages masquerade as legitimate polyfill tools, making them hard to spot during a quick review.

Analyst 207
Person interacting with laptop in modern workspace with blurred background.

BioShocking Attack Exploits AI Browsers for Data Theft

Researchers have uncovered a chilling new attack, dubbed BioShocking, that exploits AI browsers to steal sensitive data by cleverly tricking them into treating real actions as fictional. This ingenious technique uses a simple game to condition AI agents into accepting fake actions as valid, putting even the most secure systems at risk.

Analyst 207
Hospital corridor with people in background, medical device and laptop on table.

Novo Nordisk Discloses Cyberattack, Patient Data Stolen

Novo Nordisk revealed that a cyberattack has compromised patient data, specifically information related to clinical-trial participants, though assured that the data is not directly linked to patients by name or other identifiers. The company is working with outside experts to investigate and contain the breach.

Analyst 207
Rows of computer servers and database systems in a brightly-lit, empty office or server room.

Oracle Discloses Zero-Day Flaw in PeopleSoft Exploited in Data Theft Attacks

A critical zero-day flaw in Oracle PeopleSoft, known as CVE-2026-35273, has been exploited by hackers to steal sensitive data from over 100 organizations, with a staggering 300 instances affected. Oracle has issued emergency mitigations and is working on a patch to address this highly vulnerable issue.

Analyst 207
Modern office space with scattered papers and an open file cabinet, hinting at disruption.

Ransomware Attacks Shift to Data Theft Tactics

Ransomware attacks have taken a sinister turn, with a growing number of hackers ditching decryption keys and instead using stolen data to extort their victims. In fact, a recent report found that a whopping 87% of ransomware claims now involve data theft, with encryption becoming a thing of the past.

Analyst 207
Rows of computer servers and equipment in a brightly-lit server room with a single out-of-focus laptop screen in the…

ShinyHunters Targets Oracle PeopleSoft Servers in Widespread Data Theft Attacks

ShinyHunters, a notorious extortion group, has launched a massive data theft campaign targeting Oracle PeopleSoft servers, compromising over 300 instances across 100+ organizations, with a significant impact on the education sector. The attackers have brazenly claimed responsibility, boasting of their exploits in a chilling conversation with BleepingComputer.

Analyst 207
Blurred computer workstation and file cabinet in a brightly-lit office interior, with a cityscape visible through the window.

Mandiant Exposes UNC3753's US Law Firm Data Heist Tactics

Beware of UNC3753, a notorious group that's been stealing sensitive data from US law firms and other professional services, using clever vishing tactics and lightning-fast intrusions to extort their victims. In some cases, they can go from initial contact to data theft in under an hour.

Analyst 207
Laptop on a cluttered office desk with papers and supplies nearby.

China-Linked TA4922 Expands Phishing Attacks Globally

Meet TA4922, a China-linked group rapidly expanding its phishing attacks worldwide, with a financially motivated agenda to infiltrate and exploit victim environments for data theft, fraud, and more. This threat actor is now targeting organizations globally, from the UK to Germany, Italy, and South Africa.

Analyst 207
Industrial control room with rows of systems, networking equipment, and monitoring stations under fluorescent lighting.

CISA Warns of Data Theft Bug in NSA-Built OT Networking Tool

A critical vulnerability, CVE-2026-6807, has been discovered in an NSA-built networking tool that could allow hackers to steal sensitive information by exploiting an XML parsing weakness. If left unpatched, this flaw could lead to devastating data breaches.

Analyst 207
Darkened room with shattered computer screen, scattered papers, and broken phone, with a silhouetted figure in shadows near…

Seiko USA Website Defacement Exposes Customer Data Theft Claim

When a corporate website is hijacked like a ransomed storefront, who really owns the sensitive data inside? Seiko USA's recent website defacement has sparked a disturbing claim: hackers say they've stolen customer data and will leak it unless a ransom is paid.

Analyst 207
Dark illustration of magnifying glass over laptop with cityscape, ghostly figures, and red-glowing extensions hinting at…

Malicious Chrome Extensions Uncover Massive User Data Theft

Over 100 malicious Chrome extensions were secretly working together to steal user data, hijack online sessions, and inject ads into browsing experiences, all controlled by a single hidden command center. This massive data theft operation highlights the alarming risks of unchecked access to our online lives.

Analyst 207
Fractured snowflake hovers over cracked laptop screen amidst shattered glass and frosty shards, with shadowy figure looming…

Snowflake Breach Compounds as Hackers Exploit Integrator Vulnerability

A recent breach of a SaaS integration provider has led to a Snowflake data breach, with stolen authentication tokens being used to compromise the sensitive data of over a dozen companies. This devastating chain of events highlights the urgent need for robust security measures to protect against increasingly sophisticated cyber threats.

Analyst 207
CrystalRAT Malware Emerges with Advanced RAT and Data Theft Capabilities

CrystalRAT Malware Emerges with Advanced RAT and Data Theft Capabilities

Meet CrystalRAT, a powerful malware-as-a-service that's being sold on Telegram, capable of giving outsiders remote control of your computer, stealing sensitive files, recording every keystroke, and even hijacking your clipboard. This malicious tool is a nightmare come true, and its emergence poses a serious threat to online security.

Analyst 207
Phantom Stealer Emerges as Sophisticated Stealer-as-a-Service Tool

Phantom Stealer Emerges as Sophisticated Stealer-as-a-Service Tool

Imagine your entire online life being stolen and sold for just a few hundred dollars - that's the harsh reality with Phantom Stealer, a powerful and stealthy tool that's making it easy for cybercriminals to get their hands on your sensitive information. This sophisticated .NET-based stealer can harvest everything from login credentials to payment card details, putting your digital identity at risk.

Analyst 207
Critical ChatGPT Security Flaw Enabled Alarming Data Theft

Critical ChatGPT Security Flaw Enabled Alarming Data Theft

A recent security flaw in ChatGPT has raised alarming concerns about data theft, with hackers able to exploit a vulnerability using a single, carefully crafted prompt. This critical weakness highlights the urgent need for robust safeguards to protect sensitive information in AI-powered tools.

Analyst 207
Meet Rey: Exclusive Profile of Controversial Admin

Meet Rey: Exclusive Profile of Controversial Admin

Meet Rey—the pseudonymous face of Scattered LAPSUS$ Hunters—who unexpectedly lifted his veil after KrebsOnSecurity traced him to his father and secured an interview. That admission could shatter the groups anonymity and change the game for investigators, rivals and recruits.

Analyst 207
Australian Man Gets Seven Years in Stunning Harsh Sentence

Australian Man Gets Seven Years in Stunning Harsh Sentence

A Western Australia man was sentenced to seven years after weaponizing public Wi‑Fi networks to steal intimate data — a stunning verdict that spotlights how vulnerable our everyday connections are and why you should avoid sensitive activity on open networks.

Analyst 207
ransomware payments: Stunning Risky Surge to $3.6M

ransomware payments: Stunning Risky Surge to $3.6M

Ransomware payments jumped 44% to an average $3.6M in 2025 as attackers shift to fewer, higher-value strikes—forcing organizations to weigh grim pragmatism against costly downtime, data leaks, and regulatory fallout.

Analyst 207
GXC Team: Exclusive Arrest Signals Dangerous Shift

GXC Team: Exclusive Arrest Signals Dangerous Shift

Spanish police arrested a 25‑year‑old accused of leading the GXC Team, a group investigators say sold malware and AI‑enabled attack tools like commercial products. The takedown highlights how cybercrime is becoming a turnkey business—and why businesses, policymakers and everyday users need to harden defenses and push for better international cooperation.

Analyst 207
observability and threat hunting: Must-Have Critical Fixes

observability and threat hunting: Must-Have Critical Fixes

The NCSC warns many organisations are blind to attackers already inside their networks and is urging urgent improvements in observability and threat hunting. Its practical guidance shows how better telemetry, retention and detection engineering can help teams find, contain and recover from breaches faster.

Analyst 207
authentication bypass: Critical, Dangerous Exploit

authentication bypass: Critical, Dangerous Exploit

Thousands of WordPress sites are at risk after a critical authentication bypass (CVE-2025-5947, CVSS 9.8) in the Service Finder theme and bundled Bookings plugin is being actively exploited — attackers can log in as any user, including admins. If you run that theme, update or disable it now, audit for signs of compromise, and restore from clean backups if needed.

Analyst 207