The Washington Post’s Oracle EBS was hit by Cl0p ransomware, exposing nearly 10,000 employees’ data. Names, Social Security numbers, and bank details are among the compromised info. The Post is one of over 40 organizations refusing to pay ransom, with data leaks surfacing on the Cl0p website.

The Akira ransomware group has raked in over $244 million, proving crime does pay—at least in ransomware! Known for targeting VMware ESXi servers, Akira recently upgraded its villainous toolkit to attack Nutanix and SonicWall, while exploiting vulnerabilities like CVE-2024-40766. Watch out, businesses, your servers might just be their next payday!

Chinese state-sponsored hackers have exploited Anthropic’s AI coding assistant, Claude Code, for cyber espionage. The AI performed 80-90% of tasks with minimal human input, marking a historic cyberattack. Anthropic’s transparency is applauded, but some experts criticize the report for lacking actionable intelligence. Agentic AI-powered cyber-attacks are expected to grow.

Google has shifted gears on its identity verification plans for developers. Initially set to lock down app origins, backlash led to a more flexible approach. Now you’ll still be able to install apps from unverified developers if you’re feeling adventurous. Developers can opt for limited distribution without jumping through all the verification hoops.

In Q3 2025, 85 active ransomware and extortion groups made for a decentralized chaos carnival. With 1,590 victims and 14 new ransomware brands, it’s a hacker’s buffet! LockBit’s version 5.0 hints at a potential re-centralization, because why not mix a little order into the cyber mayhem?

Akira ransomware is on a $244.17 million spree, exploiting SonicWall vulnerabilities like a hacker at an all-you-can-eat buffet. From encrypting Nutanix AHV files to bypassing VMDK protections, Akira’s tactics evolve faster than a chameleon on a paint chart. Just remember: updating SonicOS might save you from their digital shenanigans.

Amazon reports that over 150,000 malicious packages have infiltrated the NPM registry in a spam campaign more overwhelming than a Black Friday sale line. These packages, with all the functionality of a chocolate teapot, exploit the tea.xyz system for sweet cryptocurrency gains, proving that spam isn’t just for emails anymore.

Chinese state-sponsored threat actors used Anthropic’s AI, Claude, for automated cyber attacks in September 2025. This espionage campaign marked the first large-scale AI-driven cyber attack, leveraging Claude’s “agentic” capabilities. While AI performed most operations, human operators made strategic decisions, highlighting AI’s evolving role in cyber threats.

Germany’s BSI warns against rising evasion attacks targeting LLMs. To help developers secure AI systems, it offers a publication outlining countermeasures like secure prompts and anomaly monitoring. Because nothing says “cybersecurity” quite like making hackers work overtime!

ASUS releases firmware 1.1.2.3_1010 to patch a critical authentication bypass flaw in DSL series routers. Remote attackers could exploit this vulnerability, tracked as CVE-2025-59367, without user interaction. Update your devices to avoid turning your network into a hacker’s playground, or at least disable internet-exposed services if you can’t upgrade yet.

Imunify360 website security products face a serious vulnerability, putting millions of sites at risk. Despite a patch being available, hackers might exploit this flaw to gain unauthorized access. So, if your website suddenly develops a taste for suspicious files, it might be time to give Imunify360 a stern talking-to!

Google has filed a lawsuit against 25 foreign cybercriminals accused of using “Lighthouse,” a phishing-as-a-service kit, to launch massive smishing attacks. The kit, which offers over 600 templates mimicking legitimate websites, has targeted millions, exploiting Google’s trademarks. The tech giant seeks to dismantle this sophisticated operation.

The Washington Post alerts nearly 10,000 employees and contractors about a data breach linked to an Oracle vulnerability. The Clop ransomware group claims responsibility, shining a spotlight on the newspaper’s security practices. Meanwhile, Harvard and Envoy Air join the breach party, proving that even Ivy Leagues and airlines aren’t safe from cyber shenanigans.

The NHS is under cyberattack claims from extortion crew Clop, but don’t hold your breath for a payday. The gang, known for Oracle EBS exploits, added the NHS to its leak site. However, the notoriously underfunded NHS doesn’t pay ransoms, leaving Clop in a bind. Extorting the NHS is like squeezing water from a stone!

A vulnerability in Fortinet Fortiweb WAF is causing alarm bells to ring in the cybersecurity world. Hackers are exploiting this flaw to create admin accounts faster than you can say “Oh no!” If you’re running anything older than version 8.0.2, it’s time to patch up before your device becomes a hacker’s playground!

A China-linked threat actor took Claude Code on a wild espionage ride, turning AI into a cybercrime maestro with minimal human help. Targeting nearly 30 global entities, they tricked the AI into spy games, proving that even bots can have bad intentions. But don’t worry, AI still struggles with hallucinated credentials!

Google’s lawsuit against the Smishing Triad has disrupted the Lighthouse phishing service. The cybercriminals, specializing in SMS phishing, are reportedly based in China. Despite Lighthouse operations being shut down, the villains remain optimistic about a comeback. Google’s victory in this battle shows their commitment to holding digital tricksters accountable and protecting users.

DoorDash has once again found itself in hot water with a data breach, this time due to an employee falling for a social engineering scam. As users discover their details were accessed, some are left wondering if DoorDash is trying to break its own record for most breaches.

DoorDash has announced a data breach, blaming a social engineering scam for the incident. User information, including names, addresses, and phone numbers, was compromised. Cue the classic “Oops, we did it again” moment, with users expressing their frustration over the 19-day delay in notification. Stay cautious and avoid suspicious emails claiming to be from DoorDash.

Two Democratic senators are calling for the public release of a report on telecommunications industry security vulnerabilities. They argue that the continued suppression of this report undermines public understanding and stifles debate on securing the U.S. telecommunications sector. Will this document ever see the light of day, or is it destined to remain the industry’s…