Skip to content

breach_cve_trends

ShinyHunters Salesforce Data Leak

Date of Incident: 2025-10-01 Overview: The ShinyHunters Salesforce Data Leak, reported on October 3, 2025, involves unauthorized access to Salesforce cloud instances due to exploited API vulnerabilities and possibly misconfigured permissions. Approximately 1 billion records from 39 companies were potentially impacted, with personal information stolen and samples leaked alongside ransom demands. The breach demonstrated automated… Read More »ShinyHunters Salesforce Data Leak

Asahi Ransomware Attack

Date of Incident: 2024-04-22 Overview: The Asahi Ransomware Attack on Asahi Group Holdings, reported on October 3, 2025, occurred on April 22, 2024, affecting its operations within the Holding Companies & Conglomerates sector. The breach led to the shutdown of factories in Japan, suspension of automated order and shipment processes, and a forced switch to… Read More »Asahi Ransomware Attack

Red Hat Data Breach

Date of Incident: April 2024 Overview: The Red Hat data breach, reported in October 2025, occurred in April 2024 and involved unauthorized access to around 570GB of compressed data from 28,000 internal development repositories. The breach affected the software sector, compromising sensitive Customer Engagement Reports (CERs) that contained critical information about networks and infrastructure of… Read More »Red Hat Data Breach

Discord Data Breach via Third-Party Customer Service Provider

Date of Incident: September 20, 2023 Overview: In a data breach disclosed on October 4, 2025, Discord experienced a security incident via a third-party customer service provider on September 20, 2023. The attack exposed partial payment data and personally identifiable information, including names, IDs, and email addresses of users who interacted with Discord’s support teams.… Read More »Discord Data Breach via Third-Party Customer Service Provider

Weekly Report: New Hacking Techniques and Critical CVEs 23 Sep – 29 Sep, 2025

The week of September 22-30, 2025 witnessed a critical escalation in cyber threats, highlighted by the active exploitation of two Cisco ASA firewall zero-day vulnerabilities (CVE-2025-20333 and CVE-2025-20362) by sophisticated state-sponsored actors. The U.S. Cybersecurity and Infrastructure Security Agency issued Emergency Directive ED 25-03, ordering federal agencies to immediately identify and mitigate potential compromises of… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 23 Sep – 29 Sep, 2025

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.