HackRead

On December 23, 2024, CloudSEK's TRIAD team revealed critical security vulnerabilities in Postman Workspaces, with over 30,000 publicly accessible workspaces leaking sensitive data, such as API keys, access tokens, and administrator credentials.

Cybersecurity researcher Jeremiah Fowler uncovered a 1.2TB misconfigured database from Builder.ai, exposing over 3 million records without authentication or passwords.

The Play ransomware group has claimed responsibility for a data breach at Krispy Kreme, threatening to release sensitive internal company data within two days. Known for its double-extortion model, the group exfiltrates and encrypts data, pressuring victims to meet ransom demands or face public exposure of stolen information.

As cryptocurrency adoption grows, so do scams targeting investors and traders. Common threats include phishing, malware, Ponzi schemes, fake wallets, and pump-and-dump frauds. Scammers exploit trust and technical vulnerabilities, often using advanced tactics like deepfakes, fake apps, and AI-generated phishing campaigns.

The ransomware group Cicada3301 has claimed responsibility for breaching Concession Peugeot, a French automotive dealership, stealing 35GB of sensitive data, including invoices, internal communications, and passport copies.

In 2025, certain professions face heightened cybersecurity risks due to the nature of their work. IT professionals are exposed through frequent interactions with compromised systems and malware, which attackers exploit to access larger networks.

A significant healthcare data breach occurred when cybersecurity researcher Jeremiah Fowler uncovered an unprotected database belonging to Care1, a Canadian provider of AI-powered software for optometrists.

The Black Basta ransomware group has refined its social engineering tactics, launching a global campaign that combines sophisticated techniques with advanced tools to breach organizations.

DroidBot, a newly discovered Android spyware, is posing significant threats to financial institutions and individuals across Europe. Identified in mid-2024 by Cleafy Labs, DroidBot operates as Malware-as-a-Service (MaaS), enabling cybercriminals to rent its capabilities without technical expertise.

Europol and international law enforcement dismantled the Manson Market cybercrime platform, disrupting phishing networks and seizing stolen data.

Chinese state-sponsored hackers, attributed to groups Daggerfly and Crimson Palace, infiltrated a major U.S. company's network for at least four months in 2024, likely stealing sensitive email data.

SpyLoan apps have surged by 75% globally between Q2 and Q3 of 2024, targeting unsuspecting users with fake loan offers. Researchers identified 15 malicious apps on Google Play, downloaded over 8 million times, exploiting users through excessive permissions and sensitive data harvesting.