Adobe
public
–
3 min read
Threat actors are actively exploiting CVE-2025-54236 (CVSS 9.1), a critical improper input validation vulnerability in Adobe Commerce and Magento…
Blue Cross Blue Shield of Montana
public
–
2 min read
Blue Cross Blue Shield of Montana (BCBSMT) is currently under investigation following a major data breach that exposed the personal…
NTT Data (via Vectorform subsidiary)
public
–
4 min read
The cybercrime group Coinbase Cartel targeted NTT Data, a Japanese IT services giant, by exploiting vulnerabilities in its US subsidiary…
Injured Workers Pharmacy, LLC (IWP)
public
–
3 min read
In 2023, Injured Workers Pharmacy (IWP) suffered a data breach exposing personally identifiable information (PII) of patients, including names, medical…
OYO Las Vegas (under Highgate Hotels Inc. management)
public
–
3 min read
The OYO Las Vegas hotel-casino suffered a cyberattack between January 8–11, 2025, exposing personal and financial data of ~4,…
Maryland Department of Information Technology (DoIT)
public
–
3 min read
Maryland launched a Vulnerability Disclosure Program (VDP) to encourage ethical hackers to report security flaws in state systems before malicious…
Farmers Insurance Exchange
public
–
3 min read
The New York Department of Financial Services (DFS) fined Farmers Insurance Exchange $2.8 million for inadequate cybersecurity controls that…
F5
public
–
3 min read
F5, a U.S. technology company providing foundational security and performance solutions for government networks and critical infrastructure, suffered a…
AT&T
public
–
3 min read
AT&T experienced two distinct cyber incidents leading to a $177 million settlement. The first breach exposed sensitive personal…
Aussie Fluid Power (AFP)
public
–
2 min read
Australian hydraulics and processing company Aussie Fluid Power (AFP) suffered a cybersecurity breach attributed to the Anubis ransomware group, which…
WatchGuard Technologies
public
–
3 min read
A critical vulnerability (CVE-2025-9242, CVSS 9.3) in WatchGuard Firebox network security appliances exposes 75,835+ devices globally, primarily in…
Unnamed Major Government Agency (Central Data Hub)
public
–
3 min read
A decade-long cyber intrusion (2015–2025) by state-sponsored actors compromised a central government data hub, granting persistent access to sensitive…