Stay informed on the latest cyber attacks and learn how to protect against data breaches with our information security tag focusing on victims.
Search across headline titles and summaries.
Background for this topic.
Victims in information security are individuals or organizations that have suffered harm or loss due to cybersecurity incidents such as data breaches, cyberattacks, malware infections, phishing scams, or other forms of digital exploitation. These victims can experience a wide range of negative consequences, including financial loss, identity theft, reputational damage, loss of sensitive data, and disruption of services.
In the context of information security, understanding the experiences and responses of victims is crucial for developing effective security measures, incident response plans, and awareness programs. Efforts often center on preventing future occurrences by learning from past incidents and providing support and resources to those affected. Additionally, the legal and regulatory implications for the perpetrators and the means for victims to seek redress are also an important aspect of the conversation surrounding this topic.
Weekly headline count for the current query.
Numerous organizations have been attacked via Oracle EBS zero-day CVE-2025-61882, and evidence suggests more like Schneider Electric could be on that list.
As threat actors continue to hop on the train of exploiting CVE-2025-31324, researchers are recommending that SAP administrators patch as soon as possible so that they don't fall victim next.
Cisco has confirmed that a Chinese threat actor known as Salt Typhoon gained access by likely abusing a known security flaw tracked as CVE-2018-0171, and by obtaining legitimate victim login credentials as part of a targeted campaign aimed at major U.S. telecommunications companies
In this blog entry, we discuss how an attacker took advantage of the Atlassian Confluence vulnerability CVE-2023-22527 to connect servers to the Titan Network for cryptomining purposes.
A technical analysis on how CVE-2023-22527 can be exploited by malicious actors for cryptojacking attacks that can spread across the victim’s system
CVE-2024-21412 was used to evade Microsoft Defender SmartScreen and implant victims with DarkMe
Organizations should brace for mass exploitation of CVE-2023-22515, an uber-critical security bug that opens the door to crippling supply chain attacks on downstream victims.
Snowballing PoC exploits for CVE-2023-23397 and a massive attack surface means almost business user could be a victim.