Canada’s WestJet says some passenger data exposed in cybersecurity breach https://etimg.etb2bimg.com/thumb/msid-124247093,imgsize-964241,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/canadas-westjet-says-some-passenger-data-exposed-in-cybersecurity-breach.jpg Canadian carrier WestJet said on Monday the personal information of some passengers was exposed in a cybersecurity breach earlier this year, though no payment data was compromised. The airline said it detected suspicious activity on June 13 and later determined that a “sophisticated, criminal third party” had gained unauthorized ...

Self-Spreading ‘GlassWorm’ Infects VS Code Extensions in Widespread Supply Chain Attack https://firewalls.firm.in/wp-content/uploads/2025/10/code-vscode.jpg Oct 24, 2025Ravie LakshmananDevOps / Malware Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open VSX Registry and the Microsoft Extension Marketplace, underscoring how developers have become a prime target for attacks. The sophisticated threat, codenamed GlassWorm by ...

Google warns companies: Your top executives may get extortion emails https://etimg.etb2bimg.com/thumb/msid-124282446,imgsize-1789114,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/google-warns-companies-your-top-executives-may-get-extortion-emails.jpg Alphabet’s Google has warned that hackers are sending extortion emails to executives at several organizations, reports news agency Reuters. The hackers, as per the report, are claiming to have stolen sensitive data from Oracle business applications. In a statement, Google said that the messages are part of an ongoing ...

Meta Rolls Out New Tools to Protect WhatsApp and Messenger Users from Scams https://firewalls.firm.in/wp-content/uploads/2025/10/spam.jpg Oct 21, 2025Ravie LakshmananCryptocurrency / Encryption Meta on Tuesday said it’s launching new tools to protect Messenger and WhatsApp users from potential scams. To that end, the company said it’s introducing new warnings on WhatsApp when users attempt to share their screen with an unknown contact ...

FBI investigating Chinese hackers who targeted top US law and tech companies, report claims https://etimg.etb2bimg.com/thumb/msid-124404219,imgsize-30116,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/fbi-investigating-chinese-hackers-who-targeted-top-us-law-and-tech-companies-report-claims.jpg FBI is investigating a large-scale cyber espionage effort by Chinese hackers. These hackers successfully infiltrated the computer systems of one of the country’s most prominent law firms, Williams & Connolly, a report claims. The firm has reportedly notified clients that its networks were compromised as ...

North Korean Hackers Use EtherHiding to Hide Malware Inside Blockchain Smart Contracts https://firewalls.firm.in/wp-content/uploads/2025/10/hacker-blockchain.jpg Oct 16, 2025Ravie LakshmananMalware / Blockchain A threat actor with ties to the Democratic People’s Republic of Korea (aka North Korea) has been observed leveraging the EtherHiding technique to distribute malware and enable cryptocurrency theft, marking the first time a state-sponsored hacking group has embraced the method. ...

Qantas customer data released by hackers after July breach, says airline https://etimg.etb2bimg.com/thumb/msid-124516943,imgsize-29794,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/qantas-customer-data-released-by-hackers-after-july-breach-says-airline.jpg Qantas Airways said on Sunday, October 12 that it is among the companies whose customer data was published by cybercriminals following a July database breach, reports Reuters. The airline had previously confirmed that more than one million customers had sensitive details such as phone numbers, birth dates, or ...

Chinese Hackers Exploit ArcGIS Server as Backdoor for Over a Year https://firewalls.firm.in/wp-content/uploads/2025/10/chinese-hackers.jpg Oct 14, 2025Ravie LakshmananCyber Espionage / Network Security Threat actors with ties to China have been attributed to a novel campaign that compromised an ArcGIS system and turned it into a backdoor for more than a year. The activity, per ReliaQuest, is the handiwork of a Chinese state-sponsored ...

Fortinet report: Data loss rises despite stronger security and higher spending https://etimg.etb2bimg.com/thumb/msid-124407373,imgsize-14212,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/fortinet-report-data-loss-rises-despite-stronger-security-and-higher-spending.jpg The 2025 Data Security Report from Fortinet and Cybersecurity Insiders reveals that despite adopting smarter strategies and increasing budgets, data loss incidents continue to rise. While most organizations rely on some form of data loss prevention (DLP), many lack visibility into how employees interact with data—particularly across SaaS ...

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers https://firewalls.firm.in/wp-content/uploads/2025/10/nodejs-malware.jpg Oct 10, 2025Ravie LakshmananRansomware / Data Theft Cybersecurity researchers have disclosed details of an active malware campaign called Stealit that has leveraged Node.js’ Single Executable Application (SEA) feature as a way to distribute its payloads. According to Fortinet FortiGuard Labs, select iterations have also employed the open-source ...