Recent Cyber Attacks & Data Breaches In 2023
Security experts provide their analysis on the latest cyber attacks you need to know
Security experts provide their analysis on the latest cyber attacks you need to know
As data breaches become more pervasive in our interconnected world so must our understanding of modern day cyber attacks.
In this series, our team of certified and experienced security researchers analyze recent attacks, explain the impact, and provide mitigation steps to keep you and your organization protected.
Don’t have time to click through and read each article? No worries! We curate all of our publications into a FREE monthly newsletter – no email required (coming soon).
Recent Attacks
Popular Articles
On January 17, 2023, four vulnerabilities in Microsoft Azure services were vulnerable to server-side request forgery (SSRF) attacks. Services included Azure API Management, Azure Functions, Azure Machine Learning, and Azure Digital Twins.
On December 29, 2022, Slack became a victim to a hacker. The threat actor had also downloaded private code repositories on December 27, but neither Slack’s primary codebase nor were any customer data included in the downloaded repositories.
Data collection sale was started on 4th December 2022 containing more than 200 million Twitter profiles. The breached data was released as a 59 GB RAR archive.
A Linux backdoor malware has been discovered that has the capabilities to exploit around 30 WordPress plugins with the goal to inject malicious JavaScript code and make user redirects to harmful, malicious, phishing sites created by the attackers.
As cyber threats continue to evolve, it is important to stay informed and proactive in safeguarding against potential attacks. This report aims to provide valuable information for organizations and individuals to stay ahead of the constantly changing threat landscape.
The year 2022 saw its fair share of significant vulnerabilities that made headlines and affected a wide range of systems and devices. These vulnerabilities impacted a wide range of systems and devices, including web servers, collaboration platforms, office software, and network devices.
On November 6th, 2022, a hacker posted on a forum a 60GB CSV file containing personal information including that of the 228 million Deezer members. It is recommended to reset your passwords on the Deezer platform as well as enable two-factor authentication (2FA).
In order to get early access to Kubernetes setups, the threat actors behind the Kinsing Crypto Jacking operation have been seen taking advantage of unprotected and improperly configured PostgreSQL servers.