An attacker can manipulate Claude via prompt injection to exfiltrate user data

GEOBOX, an operating system turning Raspberry Pis into simple anonymous cyberattack tools, is being sold on Telegram.

There was a way to run malicious code on a dev's device remotely by chaining an old vulnerability with a new one.

Thousands of emails, belonging to Roblox conference attendees, leaked on the dark web

Swedish citizens' and organizations' data exposed in a massive database left exposed on the open web.

A now-retired Roundcube platform was abused to steal information on more than a million users.

The database is now locked down.

IMDataCenter confirmed holding an unprotected database containing millions of PII records.

Unprotected beWanted database remains open, with the company yet to respond to inquiries.

The staffer had access to millions of Americans’ personal data.

Hacker associated public Trello profile data with private emails, opening the gates for spear phishing attacks.

The law enforcement agency is asking anyone with information to reach out via WhatsApp or Telegram.

Job seeker data belonging to Alltech Consulting Services left exposed in online database.

Freedman HealthCare apparently breached, but the company is yet to confirm the attack.

Along with WordPress websites, dozens of devices were also infected with cryptojackers.

Researchers found a database full of IP addresses following Leak Zone incident.

The Noname057 hacker group has been linked to recent cyberattacks against Italian banking and airport websites.

Notorious hacking group is cracking jokes and taunting Jaguar Land Rover on Telegram.

Several apps from developer M.A.D Mobile had unprotected image servers that stored private and explicit photos without password protection.

It's possible that some of the Chrome extensions act as infostealers, researchers are saying.

An unknown threat actor with an unknown malware framework, doing reconnaissance and espionage.

Collossal data breach totalling more than 465GB has exposed the details of multiple charities’ donors.

GPS data, emails, and employee credentials found publicly accessible following Moonly leak.

Attackers are exploiting a critical Wing FTP flaw which allows remote system access, although all attempts have failed so far.

2FA codes and links were stored in the open, but no one knows who had access

Someone's compiling data leaked in different breaches, with around 1.2 billion users possibly at risk

Almost two years after ANICO breach, someone is selling the stolen database online.