cyber threat – Experimental News Clipping Site

Cloud Blog: Oracle E-Business Suite Zero-Day Exploited in Widespread Extortion Campaign

Oct 9, 2025

—

by

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/oracle-ebusiness-suite-zero-day-exploitation/ Source: Cloud Blog Title: Oracle E-Business Suite Zero-Day Exploited in Widespread Extortion Campaign Feedly Summary: Written by: Peter Ukhanov, Genevieve Stark, Zander Work, Ashley Pearson, Josh Murchie, Austin Larsen Introduction Beginning Sept. 29, 2025, Google Threat Intelligence Group (GTIG) and Mandiant began tracking a new, large-scale extortion campaign by a threat actor…

Slashdot: Discord Says 70,000 Users May Have Had Their Government IDs Leaked In Breach

Oct 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://yro.slashdot.org/story/25/10/08/2259252/discord-says-70000-users-may-have-had-their-government-ids-leaked-in-breach?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Discord Says 70,000 Users May Have Had Their Government IDs Leaked In Breach Feedly Summary: AI Summary and Description: Yes Summary: Discord has reported a significant data breach affecting around 70,000 users, with the potential exposure of sensitive information, including government ID photos. The incident highlights serious concerns about…

The Register: Zero-day lets nation-state spies cross-examine elite US law firm Williams & Connolly

Oct 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/09/zeroday_nationstate_us_law_firm/ Source: The Register Title: Zero-day lets nation-state spies cross-examine elite US law firm Williams & Connolly Feedly Summary: China-linked snoops crack email at DC powerhouse that represented Bill Clinton, Elizabeth Holmes Washington’s elite law firm Williams & Connolly has confirmed that attackers exploited a zero-day vulnerability to access a handful of attorney…

Krebs on Security: ShinyHunters Wage Broad Corporate Extortion Spree

Oct 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/10/shinyhunters-wage-broad-corporate-extortion-spree/ Source: Krebs on Security Title: ShinyHunters Wage Broad Corporate Extortion Spree Feedly Summary: A cybercriminal group that used voice phishing attacks to siphon more than a billion records from Salesforce customers earlier this year has launched a website that threatens to publish data stolen from dozens of Fortune 500 firms if they…

Microsoft Security Blog: Disrupting threats targeting Microsoft Teams

Oct 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/10/07/disrupting-threats-targeting-microsoft-teams/ Source: Microsoft Security Blog Title: Disrupting threats targeting Microsoft Teams Feedly Summary: Threat actors seek to abuse Microsoft Teams features and capabilities across the attack chain, underscoring the importance for defenders to proactively monitor, detect, and respond effectively. In this blog, we recommend countermeasures and optimal controls across identity, endpoints, data apps,…

The Register: Microsoft blames Medusa ransomware affiliates for GoAnywhere exploits while Fortra keeps head buried

Oct 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/06/microsoft_blames_medusa_ransomware_affiliates/ Source: The Register Title: Microsoft blames Medusa ransomware affiliates for GoAnywhere exploits while Fortra keeps head buried Feedly Summary: You can’t find anything bad if you don’t look, right? Medusa ransomware affiliates are among those exploiting a maximum-severity bug in Fortra’s GoAnywhere managed file transfer (MFT) product, according to Microsoft Threat Intelligence.……

The Register: Red Hat fesses up to GitLab breach after attackers brag of data theft

Oct 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/03/red_hat_gitlab_breach/ Source: The Register Title: Red Hat fesses up to GitLab breach after attackers brag of data theft Feedly Summary: Open source giant admits intruders broke into dedicated consulting instance, but insists core products untouched What started as cyber crew bragging has now been confirmed by Red Hat: someone gained access to its…

Slashdot: Key Cybersecurity Intelligence-Sharing Law Expires as Government Shuts Down

Oct 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://yro.slashdot.org/story/25/10/03/1441215/key-cybersecurity-intelligence-sharing-law-expires-as-government-shuts-down?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Key Cybersecurity Intelligence-Sharing Law Expires as Government Shuts Down Feedly Summary: AI Summary and Description: Yes Summary: The expiration of the Cybersecurity Information Sharing Act (CISA) highlights significant vulnerabilities for private sector organizations regarding the sharing of cyber threat intelligence, potentially elevating cybersecurity risks against U.S. critical infrastructure. This…

The Register: Oracle tells Clop-targeted EBS users to apply July patch, problem solved

Oct 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/10/03/oracle_ebs_clop_extortion/ Source: The Register Title: Oracle tells Clop-targeted EBS users to apply July patch, problem solved Feedly Summary: Researchers suggest internet-facing portals are exposing ‘thousands’ of orgs Oracle has finally broken its silence on those Clop-linked extortion emails, but only to tell customers what they already should have known: patch your damn systems.……

Slashdot: Google Says Hackers Are Sending Extortion Emails To Executives

Oct 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://tech.slashdot.org/story/25/10/02/1812256/google-says-hackers-are-sending-extortion-emails-to-executives?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Google Says Hackers Are Sending Extortion Emails To Executives Feedly Summary: AI Summary and Description: Yes Summary: Google has reported that hackers associated with the ransomware group cl0p are sending extortion emails to executives, threatening the release of stolen sensitive data from Oracle business applications. The authenticity of these…

Tag: cyber threat