- University of Sydney suffers data breach exposing student and staff info
by Bill Toulas on December 18, 2025 at 8:22 pmHackers gained access to an online coding repository belonging to the University of Sydney and stole files with personal information of staff and students. […]
- Clop ransomware targets Gladinet CentreStack in data theft attacksby Sergiu Gatlan on December 18, 2025 at 8:16 pm
The Clop ransomware gang is targeting Internet-exposed Gladinet CentreStack file servers in a new data theft extortion campaign. […]
- New password spraying attacks target Cisco, PAN VPN gatewaysby Bill Toulas on December 18, 2025 at 5:27 pm
An automated campaign is targeting multiple VPN platforms, with credential-based attacks being observed on Palo Alto Networks GlobalProtect and Cisco SSL VPN. […]
- US seizes E-Note crypto exchange for laundering ransomware paymentsby Bill Toulas on December 18, 2025 at 4:13 pm
Law enforcement has seized the servers and domains of the E-Note cryptocurrency exchange, allegedly used by cybercriminal groups to launder more than $70 million. […]
- NIS2 compliance: How to get passwords and MFA rightby Sponsored by Specops Software on December 18, 2025 at 3:01 pm
NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk. Specops Software explains how to align password policies and MFA with NIS2 requirements. […]
- France arrests Latvian for installing malware on Italian ferryby Sergiu Gatlan on December 18, 2025 at 1:47 pm
French authorities arrested two crew members of an Italian passenger ferry suspected of infecting the ship with malware that could have enabled them to remotely control the vessel. […]
- HPE warns of maximum severity RCE flaw in OneView softwareby Sergiu Gatlan on December 18, 2025 at 11:35 am
Hewlett Packard Enterprise (HPE) has patched a maximum-severity vulnerability in its HPE OneView software that enables attackers to execute arbitrary code remotely. […]
- Microsoft: Recent Windows updates break RemoteApp connectionsby Sergiu Gatlan on December 18, 2025 at 10:04 am
Microsoft has confirmed that recent Windows updates trigger RemoteApp connection failures on Windows 11 24H2/25H2 and Windows Server 2025 devices in Azure Virtual Desktop environments. […]
- Zeroday Cloud hacking event awards $320,0000 for 11 zero daysby Bill Toulas on December 17, 2025 at 11:09 pm
The Zeroday Cloud hacking competition in London has awarded researchers $320,000 for demonstrating critical remote code execution vulnerabilities in components used in cloud infrastructure. […]
- France arrests suspect tied to cyberattack on Interior Ministryby Lawrence Abrams on December 17, 2025 at 10:20 pm
French authorities arrested a 22-year-old suspect on Tuesday for a cyberattack that targeted France’s Ministry of the Interior earlier this month. […]
- Amazon: Ongoing cryptomining campaign uses hacked AWS accountsby Bill Toulas on December 17, 2025 at 9:48 pm
Amazon’s AWS GuardDuty security team is warning of an ongoing crypto-mining campaign that targets its Elastic Compute Cloud (EC2) and Elastic Container Service (ECS) using compromised credentials for Identity and Access Management (IAM). […]
- WhatsApp device linking abused in account hijacking attacksby Bill Toulas on December 17, 2025 at 7:14 pm
Threat actors are abusing the legitimate device-linking feature to hijack WhatsApp accounts via pairing codes in a campaign dubbed GhostPairing. […]
Bleeping Computer Cyber Security
We are an ethical website cyber security team and we perform security assessments to protect our clients.