Author: LeakNews

Email Bombing, ‘Vishing’ Tactics Abound in Microsoft 365 Attacks
Summary: Sophos X-Ops’ Managed Detection and Response (MDR) warns of ransomware attacks that utilize email bombing and vishing tactics through Microsoft Office 365. These attacks are attributed to two threat groups, STAC5143 and STAC5777, which have been active in recent months. The researchers emphasize the need for organizations to enhance their security measures and employee awareness to combat these evolving threats.…
Read More
HPE Investigates After Alleged Data Breach
Summary: Hewlett Packard Enterprise (HPE) is investigating claims made by the cyberattack group IntelBroker, which alleges it has stolen data from HPE’s network. The group claims to have accessed sensitive information, including source code and user data, and has a history of targeting major organizations. HPE is currently assessing the validity of these claims and has activated its cyber-response protocols.…
Read More
Mirai Botnet Spinoffs Unleash Global Wave of DDoS Attacks
Summary: Recent spinoffs of the Mirai botnet are causing a surge in distributed denial-of-service (DDoS) attacks worldwide, particularly targeting IoT devices. The Murdoc botnet, which exploits vulnerabilities in specific devices, and another botnet combining Mirai and Bashlite malware, are both contributing to this ongoing threat. Researchers emphasize the importance of robust defenses against these evolving cyberattacks.…
Read More
Tablas Island Electric Cooperative, Inc. (TIELCO) Suffers Data Breach, Employee and Customer Information Exposed
Summary: The Tablas Island Electric Cooperative, Inc. (TIELCO) in Romblon, Philippines, has experienced a significant data breach that exposed sensitive employee and customer information. The breach, attributed to the threat actor known as “Lootz” from Deathnote Hackers, raises serious concerns about the security of TIELCO’s critical infrastructure and billing systems.…
Read More
Students, Educators Impacted by PowerSchool Data Breach
Summary: PowerSchool, a California-based education technology company, has reported a data breach that compromised personal information of students and educators. The breach, identified on December 28, 2024, affected its Student Information System (SIS) and involved unauthorized access through its customer support portal. Affected individuals will receive notifications and two years of free identity theft protection services.…
Read More
HPE investigates breach as hacker claims to steal source code
Summary: Hewlett Packard Enterprise (HPE) is currently investigating claims made by the threat actor IntelBroker, who alleges to have stolen sensitive documents from HPE’s developer environments. Although HPE has not found evidence of a breach, they are actively assessing the validity of these claims. The incident raises concerns given IntelBroker’s history of high-profile breaches and HPE’s previous security incidents.…
Read More
Treasury Levels Sanctions Tied to a Massive Hack of Telecom Companies and Breach of Its Own Network
Summary: The U.S. Treasury Department has announced sanctions against a Chinese hacker and a cybersecurity company linked to a significant cyber breach affecting American telecommunications and the Treasury’s own network. The sanctions target Yin Kecheng, affiliated with China’s Ministry of State Security, and Sichuan Juxinhe Network Technology Co.…
Read More