Stolen cryptocurrency was sent to domain registrars as payment to create fake cryptocurrency investment domains and to Meta as payment for Facebook advertisements that promoted fraudulent cryptocurrency investment opportunities.

Unknown threat actors have compromised Microsoft Exchange Servers accessible from the internet, injecting keylogging code into the Outlook on the Web (OWA) login pages used by government agencies and private companies worldwide.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Linux kernel vulnerability, CVE-2023-0386, to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.

A threat actor using the alias “Often9” has surfaced on a known cybercrime forum, claiming to have acquired a trove of 428 million unique TikTok user records.

LexisNexis Risk Solutions has disclosed that a data breach at one of its third-party software development providers has compromised the personal information of more than 364,000 people.

A colossal cybersecurity breach has sent shockwaves through the digital world, exposing the login credentials of over 184 million user accounts across major platforms, including Google, Apple, Meta (Facebook and Instagram), Microsoft, Spotify, PayPal, Netflix, and more.

Adidas, the global sportswear giant, has confirmed a cyber attack that compromised customer data, including contact information and account credentials.