Deeba Ahmed

1828 posts

Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience covering cybercrime, vulnerabilities, and security events. Her expertise and in-depth analysis make her a key contributor to the platform’s trusted coverage.

2 minute read

UK Software Firm Exposed 1.1TB of Healthcare Worker Records

8M UK healthcare worker records, including IDs and financial data, exposed due to a misconfigured staff management database…

byDeeba Ahmed

April 15, 2025

3 minute read

New “Slopsquatting” Threat Emerges from AI-Generated Code Hallucinations

AI code tools often hallucinate fake packages, creating a new threat called slopsquatting that attackers can exploit in…

byDeeba Ahmed

April 15, 2025

Incomplete Patch Leaves NVIDIA and Docker Users at Risk

2 minute read

Security

Incomplete Patch Leaves NVIDIA and Docker Users at Risk

NVIDIA's incomplete security patch, combined with a Docker vulnerability, creates a serious threat for organizations using containerized environments. This article explains the risks and mitigation strategies.

byDeeba Ahmed

April 14, 2025

Lab Breach Tied to Planned Parenthood Compromises 1.6M Records

3 minute read

Security

Data Breach at Planned Parenthood Lab Partner Exposes Info of 1.6M

Data breach at Laboratory Services Cooperative (LSC) exposed the sensitive health and personal information of 1.6 million individuals…

byDeeba Ahmed

April 14, 2025

2 minute read

Russia’s Storm-2372 Hits Orgs with MFA Bypass via Device Code Phishing

Russian APT group Storm-2372 employs device code phishing to bypass Multi-Factor Authentication (MFA). Targets include government, technology, finance,…

byDeeba Ahmed

April 11, 2025

BentoML Vulnerability Allows Remote Code Execution on AI Servers

2 minute read

Security

BentoML Vulnerability Allows Remote Code Execution on AI Servers

TL;DR: A critical deserialization vulnerability (CVSS 9.8 – CVE-2025-27520) in BentoML (v1.3.8–1.4.2) lets attackers execute remote code without…

byDeeba Ahmed

April 11, 2025

2 minute read

npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers

ReversingLabs reveals a malicious npm package targeting Atomic and Exodus wallets, silently hijacking crypto transfers via software patching.

byDeeba Ahmed

April 10, 2025

2 minute read

Xanthorox AI Surfaces on Dark Web as Full Spectrum Hacking Assistant

New Xanthorox AI hacking platform spotted on dark web with modular tools, offline mode, and advanced voice, image, and code-based cyberattack features.

byDeeba Ahmed

April 7, 2025

NSA and Global Allies Declare Fast Flux a National Security Threat

3 minute read

Security

NSA and Global Allies Declare Fast Flux a National Security Threat

NSA and global cybersecurity agencies warn fast flux DNS tactic is a growing national security threat used in phishing, botnets, and ransomware.

byDeeba Ahmed

April 4, 2025

2 minute read

Hackers Exploit Stripe API for Web Skimming Card Theft on Online Stores

Cybersecurity researchers at Jscamblers have uncovered a sophisticated web-skimming campaign targeting online retailers. The campaign utilizes a legacy…

byDeeba Ahmed

April 3, 2025

The Latest

Microsoft Entra Agent ID Flaw Enabled Tenant Takeover via Privilege Escalation

Fake CAPTCHA Scam Abuses Verification Clicks to Send Costly International Texts

New ClickFix attack Hides in Native Windows Tools to Reduce Detection Risk

TeamPCP Hijacks Bitwarden CLI, Uses Dependabot to Deploy Shai-Hulud Malware

Deeba Ahmed

UK Software Firm Exposed 1.1TB of Healthcare Worker Records

New “Slopsquatting” Threat Emerges from AI-Generated Code Hallucinations

Incomplete Patch Leaves NVIDIA and Docker Users at Risk

Data Breach at Planned Parenthood Lab Partner Exposes Info of 1.6M

Russia’s Storm-2372 Hits Orgs with MFA Bypass via Device Code Phishing

BentoML Vulnerability Allows Remote Code Execution on AI Servers

npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers

Xanthorox AI Surfaces on Dark Web as Full Spectrum Hacking Assistant

NSA and Global Allies Declare Fast Flux a National Security Threat

Hackers Exploit Stripe API for Web Skimming Card Theft on Online Stores

BreachLock Named Representative Vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation

The Ungoverned Workforce: Cybersecurity Insiders Finds 92% Lack Visibility Into AI Identities

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

AI Future: The Leading International AI and Web3 Forum to Take Place in April