Date of Incident: 2024-04 Overview: The Iberia Customer Data Leak, reported on November 23, 2025, involved unauthorized access to a third-party vendor’s system supporting Iberia in April 2024. This breach exposed customer names, email addresses, and loyalty card IDs but did not compromise login credentials, passwords, or payment card information. The attack leveraged vulnerabilities and… Read More »Iberia Customer Data Leak
The week of October 14-21, 2025 witnessed a surge in sophisticated cyber attacks targeting critical infrastructure, enterprise software, and global supply chains. This period was marked by several high-impact security incidents. The sophistication and scale of these attacks underscore the evolving threat landscape, with nation-state actors leveraging supply chain vulnerabilities, zero-day exploits, and legitimate infrastructure… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 14 Oct – 21 Oct 2025
Date of Incident: October 14, 2025 Overview: On October 14, 2025, MANGO, in the retail sector, experienced a data breach due to a compromise of their marketing vendor. This incident exposed personal details such as customers’ first names, countries, postal codes, email addresses, and telephone numbers. No sensitive financial or personal ID information was compromised,… Read More »MANGO Data Breach
This week witnessed four significant cybersecurity incidents affecting major organizations across multiple sectors. The period from October 7-13, 2025, was marked by sophisticated attack campaigns targeting authentication systems, zero-day vulnerabilities, and supply chain compromises. Key Incidents: DraftKings Credential Stuffing Attack (September 2, 2025): Targeted under 30 customer accounts through automated credential reuse Kido International Nursery… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 7 Oct – 13 Oct 2025
The cybersecurity landscape during September 3-9, 2025, was dominated by several critical developments that demand immediate attention from security leaders. Most notably, a massive npm supply chain attack compromised over 18 widely-used JavaScript packages with billions of weekly downloads, while two actively exploited Android zero-day vulnerabilities (CVE-2025-38352 and CVE-2025-48543) underscored the persistent threat of mobile… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 03 Sep – 09 Sep, 2025