thecyberexpress

New VMware Vulnerability CVE-2025-41244 Actively Exploited Since October 2024

A newly listed VMware zero-day vulnerability has been actively exploited by Chinese state-sponsored threat actors for almost a year, according to security researchers. The 7.8-rated local privilege ...
thecyberexpress

Harrods Cyberattack Exposes 430,000 Customer Records in Latest Data Breach

Luxury department store Harrods recently disclosed a data breach, in which, hackers stole information linked to approximately 430,000 customer records. The Harrods data breach has prompted the ...
thecyberexpress

Student Insider Threats Driving Surge in UK School Data Breaches, ICO Warns

Over half of insider cyber incidents in UK schools are being caused by students—a trend raising alarms across education, regulation, and cybersecurity communities. The Information Commissioner’s ...
thecyberexpress

Key Scattered LAPSUS$ Hunters Hacker Arrested in the UK

UK authorities have arrested a 19-year-old UK national alleged to be a key figure in the Scattered LAPSUS$ Hunters threat collective. UK authorities arrested Thalha Jubair and a second individual on ...
thecyberexpress

APT28’s Recent Campaign Combined Steganography, Cloud C2 into a Modular Infection Chain

APT28, the long-running actor tracked as Fancy Bear, Sofacy and Sednit, used a compact but technically sophisticated campaign that researchers documented as Phantom Net Voxel. The campaign is an ...
thecyberexpress

CrowdStrike Among Those Hit in NPM Attack Campaign

More than 20 CrowdStrike NPM packages were among nearly 200 NPM packages hit by a sophisticated supply chain attack. The compromised packages were quickly removed and CrowdStrike said its Falcon ...
thecyberexpress

Qilin Remains Top Ransomware Group as New Threats Emerge

Qilin remained the top ransomware group in August, but two rapidly emerging competitors are threatening to shake up the threat landscape. Those are some of the conclusions from Cyble’s monthly ...