Victoria’s Secret, one of the largest and globally recognized lingerie and apparel retailers, has reported a security incident affecting its online services. Their official website, victoriassecret.com, along with some in-store digital services, have been temporarily taken offline as a precaution. In an official statement on the site, Victoria’s Secret explained that the suspicious activity breach

Continue Reading

Security researchers have identified a security vulnerability in how certain apps and websites access OneDrive files, which could potentially expose users’ data to broader access than intended. Risks of Excessive or Overly Broad Permissions OneDrive is Microsoft’s cloud storage service that allows users to store, sync, and share files across devices, making it a popular

Continue Reading

On May 22, 2025, Cetus Protocol disclosed that it experienced a serious security incident involving a malicious attack on its platform. The hacker’s moves involved swapping stablecoins (a type of cryptocurrency designed to keep a stable value, like USDT and USDC), transferring the funds to Ethereum, and converting them into other cryptocurrencies such as ETH.

Continue Reading

One of the world’s leading and most recognized sportswear and apparel brands, Adidas, recently confirmed via a notice on their website that an unauthorized external party gained access to certain consumer data. As soon as they became aware of the incident, they took swift action to contain it and are working with leading cybersecurity experts

Continue Reading

Encryption is at the heart of our digital security, protecting everything from online banking to private communications. The cryptographic methods we rely on today, such as RSA encryption, are built on mathematical problems so complex that even the most powerful computers can’t crack them. However, quantum computing—an emerging technology with the potential to revolutionize computing—could

Continue Reading

A significant cybersecurity operation has led to the dismantling of Lumma Stealer, a widely used infostealer malware. Coordinated by Microsoft alongside global law enforcement, the takedown targeted key elements of Lumma’s infrastructure, including its command-and-control servers, malicious domains, and online marketplaces where the malware was distributed. Active since 2022, Lumma Stealer was primarily spread through

Continue Reading

A new malicious campaign, uncovered by reasearchers at Trend Micro, is spreaking through TikTok, featuring videos that promise free software but actually lead users to download dangerous malware. This tactic shows how attackers are exploiting popular social media platforms like TikTok to deceive users. Hackers are posting TikTok videos that claim to show viewers how

Continue Reading

In a recent discovery by researches at Legit Security, vulnerabilities were found in GitLab Duo, the AI assistant integrated into GitLab (and powered by Anthropic’s Claude). The uncovered issue demonstrated how hidden code in GitLab could manipulate Duo into leaking private source code, injecting malicious HTML, and even exfiltrating confidential vulnerabilities. GitLab Duo is designed

Continue Reading