Eduard Kovacs

Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Top US Accounting Firm Sax Discloses 2024 Data Breach Impacting 220,000

It took Sax well over a year to complete its investigation after detecting hackers on its network.

December 29, 2025

Infostealer Malware Delivered in EmEditor Supply Chain Attack

The ‘download’ button on the official EmEditor website served a malicious installer.

December 29, 2025

Hacker Claims Theft of 40 Million Condé Nast Records After Wired Data Leak

A hacker named Lovely made public 2.3 million records representing Wired subscriber information.

December 29, 2025

ServiceNow to Acquire Armis for $7.75 Billion in Cash

Rumors of a possible buyout surfaced earlier this month, with the official announcement coming just weeks after Armis announced raising $435 million.

December 23, 2025

Feds Seize Password Database Used in Massive Bank Account Takeover Scheme

The cybercriminals attempted to steal $28 million from compromised bank accounts through phishing.

December 23, 2025

3.5 Million Affected by University of Phoenix Data Breach

The University of Phoenix is one of the many victims of the recent Oracle EBS hacking campaign attributed to the Cl0p ransomware group.

December 23, 2025

ATM Hackers Using ‘Ploutus’ Malware Charged in US

The Department of Justice charged 54 individuals, including leaders and members of the Venezuelan crime syndicate Tren de Aragua.

December 22, 2025

Ukrainian Nefilim Ransomware Affiliate Pleads Guilty in US

Artem Stryzhak pleaded guilty to conspiracy to commit computer fraud after he was extradited earlier this year.

December 22, 2025

Docker Makes 1,000 Hardened Images Free and Open Source

Millions of developers can now use the secure, production-ready images made by Docker.

December 19, 2025

North Korea’s Digital Surge: $2B Stolen in Crypto as Amazon Blocks 1,800 Fake IT Workers

Data from Chainalysis and Amazon offers a glimpse into North Korea’s cyber activities surrounding cryptocurrency theft and fake IT workers.

December 19, 2025

UEFI Vulnerability in Major Motherboards Enables Early-Boot Attacks

ASRock, Asus, Gigabyte, and MSI motherboards are vulnerable to early-boot DMA attacks.

December 18, 2025

IoT Security Firm Exein Raises €100 Million

The Italian company has raised nearly $200 million in 2025 for its widely used embedded cybersecurity platform.

December 18, 2025

China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear

The critical zero-day is tracked as CVE-2025-20393 and it impacts Secure Email Gateway and Secure Email and Web Manager appliances.

December 18, 2025

NMFTA Warns of Surge and Sophistication of Cyber-Enabled Cargo Theft

The trucking industry group has released its 2026 Transportation Industry Cybersecurity Trends Report.

December 17, 2025

Auto Parts Giant LKQ Confirms Oracle EBS Breach

LKQ said the personal information of thousands of individuals was compromised as a result of the hacker attack.

December 17, 2025

700,000 Records Compromised in Askul Ransomware Attack

The e-commerce and logistics company was targeted by the RansomHouse ransomware group in October.

December 16, 2025

Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks

After years of exploiting zero-day and n-day vulnerabilities, Russian state-sponsored threat actors are shifting to misconfigured devices.

December 16, 2025

User Data Compromised in SoundCloud Hack

SoundCloud said the information of 20% of users was accessed by hackers who breached its systems.

December 16, 2025

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery

Google has also mentioned seeing React2Shell attacks conducted by Iranian threat actors.

December 15, 2025

Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw

Apple has released macOS and iOS updates to patch two WebKit zero-days exploited in an “extremely sophisticated” attack.

December 15, 2025

SECURITYWEEK NETWORK:

ICS:

Eduard Kovacs

Top US Accounting Firm Sax Discloses 2024 Data Breach Impacting 220,000

Infostealer Malware Delivered in EmEditor Supply Chain Attack

Hacker Claims Theft of 40 Million Condé Nast Records After Wired Data Leak

ServiceNow to Acquire Armis for $7.75 Billion in Cash

Feds Seize Password Database Used in Massive Bank Account Takeover Scheme

3.5 Million Affected by University of Phoenix Data Breach

ATM Hackers Using ‘Ploutus’ Malware Charged in US

Ukrainian Nefilim Ransomware Affiliate Pleads Guilty in US

Docker Makes 1,000 Hardened Images Free and Open Source

North Korea’s Digital Surge: $2B Stolen in Crypto as Amazon Blocks 1,800 Fake IT Workers

UEFI Vulnerability in Major Motherboards Enables Early-Boot Attacks

IoT Security Firm Exein Raises €100 Million

China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear

NMFTA Warns of Surge and Sophistication of Cyber-Enabled Cargo Theft

Auto Parts Giant LKQ Confirms Oracle EBS Breach

700,000 Records Compromised in Askul Ransomware Attack

Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks

User Data Compromised in SoundCloud Hack

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery

Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw

Featured

Data Breaches

French Government Messaging Platform Breached by Mysterious ‘Misere’ Hacker

Phishing

FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service

Artificial Intelligence

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Artificial Intelligence

Industry Reactions to Claude Fable 5: Feedback Friday

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Incident Response

Alert Fatigue Is Becoming a Security Threat of Its Own

Latest News

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Nation-State

Chinese Hackers Target Medical, Military, and AI Research in North America

Cybersecurity Funding

NewCore Emerges From Stealth Mode With $66 Million in Funding

Cybercrime

Ukrainian Man Pleads Guilty in US to Conti Ransomware Charges

Data Breaches

Ozempic Maker Novo Nordisk Says Hackers Breached IT Systems

Data Breaches

ShinyHunters Claims Council of Europe Hack

Phishing

FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service

Daily Briefing Newsletter