Date of Incident: October 2025 Overview: In October 2025, Substack experienced a data breach where unauthorized access led to the theft of 697,313 user records, involving email addresses, phone numbers, and internal metadata. Credentials and financial information remained secure, but the exposed personal data heightened the risk of phishing attacks. The breach exploited exposed APIs… Read More »Substack Data Breach
Date of Incident: January 2024 Overview: The Betterment Data Breach, reported in February 2026, occurred in January 2024, impacting the finance sector. Hackers exploited social engineering tactics to steal personal information from 1.4 million accounts, including emails, names, and geographic data. Despite the data exposure, customer accounts, passwords, and login details remained secure. Attackers sent… Read More »Betterment Data Breach
Date of Incident: December 2024 Overview: In December 2024, Coinbase experienced an insider breach where a contractor improperly accessed sensitive customer data belonging to about 30 users. The breach involved unauthorized use of support tools to obtain personal information, including email addresses, names, dates of birth, phone numbers, KYC details, and cryptocurrency wallet data. The… Read More »Coinbase Insider Breach December 2024
This week witnessed a critical surge in zero-day exploitation, mass-scale data breaches, and advanced persistence techniques targeting enterprise infrastructure across multiple verticals. Five confirmed critical vulnerabilities entered active exploitation phase, with 13 KEV (Known Exploited Vulnerability) additions recorded by CISA. The threat landscape reflects a strategic shift from encryption-based ransomware toward data exfiltration and extortion… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 27 Jan- 2 Feb 2026
This week saw three critical attack vectors converge: network perimeter takeover via Fortinet CVE-2026-24858, state-sponsored Office zero-day exploitation by APT28, and antivirus supply chain compromise through eScan’s update infrastructure. Attackers demonstrated unprecedented speed—weaponizing fresh vulnerabilities within 72 hours and leveraging trusted security software distribution channels for malware delivery. Key Metrics: 3 critical vulnerabilities actively exploited… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 27 Jan – 2 Feb 2026