How Adversaries Exploit the Blind Spots in Your EASM Strategy

4 minute read

Security

How Adversaries Exploit the Blind Spots in Your EASM Strategy

Internet-facing assets like domains, servers, or networked device endpoints are where attackers look first, probing their target’s infrastructure…

byUzair Amir

November 13, 2025

Credentials and Misconfigurations Behind Most Cloud Breaches, Says AWS

3 minute read

Security

Credentials and Misconfigurations Behind Most Cloud Breaches, Says AWS

New AWS report data reveals the top four security failure points in the cloud, including vulnerability exploitation (24%)…

byDeeba Ahmed

November 5, 2025

7,000 Gov Job Seekers' PII Exposed in House Democrats' DomeWatch Data Leak

2 minute read

DomeWatch Leak Exposed Personal Data of Capitol Hill Applicants

Unsecured House Democrats' resume bank (DomeWatch) exposed 7,000 records, including PII and "top secret" clearance status, raising identity theft fears.

byDeeba Ahmed

October 27, 2025

3 minute read

Misconfigured NetcoreCloud Server Exposed 40B Records in 13.4TB of Data

A misconfigured server belonging to Indian company NetcoreCloud exposed 40 billion records and 13.4TB of data, revealing sensitive…

byWaqas

October 16, 2025

2 minute read

Invoicely Database Leak Exposes 180,000 Sensitive Records

Cybersecurity researcher Jeremiah Fowler discovered nearly 180,000 files, including PII and banking details, left exposed on an unprotected database linked to the Invoicely platform. Read about the identity theft and financial fraud risks for over 250,000 businesses worldwide.

byDeeba Ahmed

October 13, 2025

2 minute read

Rainwalk Pet Insurance Exposes 158 GB of US Customer and Pet Data

A misconfigured database belonging to a pet insurance company, "Rainwalk Pet Insurance," exposed sensitive PII and veterinary claim data. The data exposure reveals new fraud tactics, including microchip and reimbursement scams.

byDeeba Ahmed

October 6, 2025

2 minute read

US Auto Insurance Platform ClaimPix Leaked 10.7TB of Records Online

Cybersecurity researcher Jeremiah Fowler discovered a massive 10.7TB ClaimPix leak exposing 5.1M customer files, vehicle data, and Power of Attorney documents. Read the full details.

byDeeba Ahmed

September 30, 2025

2 minute read

Archer Health Data Leak Exposes 23GB of Medical Records

California-based Archer Health exposed 23GB of patient records, including SSNs, IDs, and medical files, after an unprotected database was found online.

byWaqas

September 26, 2025

2 minute read

ShadowV2 Botnet Uses Misconfigured AWS Docker for DDoS-For-Hire Service

Darktrace researchers have uncovered ShadowV2, a new botnet that operates as a DDoS-for-hire service by infecting misconfigured Docker containers on AWS cloud servers.

byDeeba Ahmed

September 24, 2025

Hello Gym Data Breach: 1.6 Million Phone Calls Exposed

2 minute read

Hello Gym Data Leak Exposes 1.6 Million Audio Files of Gym Members

An unsecured database managed by Hello Gym has exposed over 1.6 million audio recordings of gym members. Learn…

byDeeba Ahmed

September 10, 2025

The Latest

Millions of Android Powered TVs and Streaming Devices Infected by Kimwolf Botnet

Bitfinex Hack Mastermind Behind $10 Billion Theft Gets Early Release

Ledger Confirms Global-e Breach, Warns Users of Phishing Attempts

How to Avoid Phishing Incidents in 2026: A CISO Guide

Misconfiguration

DomeWatch Leak Exposed Personal Data of Capitol Hill Applicants

Invoicely Database Leak Exposes 180,000 Sensitive Records

Rainwalk Pet Insurance Exposes 158 GB of US Customer and Pet Data

US Auto Insurance Platform ClaimPix Leaked 10.7TB of Records Online

Archer Health Data Leak Exposes 23GB of Medical Records

ShadowV2 Botnet Uses Misconfigured AWS Docker for DDoS-For-Hire Service

Hello Gym Data Leak Exposes 1.6 Million Audio Files of Gym Members

Connex IT Partners with AccuKnox for Zero Trust CNAPP Security in Southeast Asia

Criminal IP and Palo Alto Networks Cortex XSOAR integrate to bring AI-driven exposure intelligence to automated incident response

INE Security Expands Across Middle East and Asia to Accelerate Cybersecurity Upskilling

Link11 Identifies Five Cybersecurity Trends Set to Shape European Defense Strategies in 2026

Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide