Top Security Breaches 2025-12-16
Auto-generated 2025-12-16T09:00:56.416522+00:00 (UTC)
-
700Credit data breach impacts 5.8 million vehicle dealership customers
Source: BleepingComputer | Published: 2025-12-15T16:49:03+00:00 | Score: 17.42700Credit, a U.S.-based financial services and fintech company, will start notifying more than 5.8 million people that their personal information has been exposed in a data breach incident. […]
-
VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption
Source: The Hacker News | Published: 2025-12-15T05:33:00+00:00 | Score: 17.057
The pro-Russian hacktivist group known as CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware-as-a-service (RaaS) offering called VolkLocker that suffers from implementation lapses in test artifacts, allowing users to decrypt files without paying an extortion fee.
According to SentinelOne, VolkLocker (aka CyberVolk 2.x) emerged in August 2025 and is capable of targeting both Windows -
French Interior Ministry confirms cyberattack on email servers
Source: BleepingComputer | Published: 2025-12-15T11:06:10+00:00 | Score: 15.437The French Interior Minister confirmed on Friday that the country’s Ministry of the Interior was breached in a cyberattack that compromised e-mail servers. […]
-
Google to Shut Down Dark Web Monitoring Tool in February 2026
Source: The Hacker News | Published: 2025-12-16T06:02:00+00:00 | Score: 14.663
Google has announced that it’s discontinuing its dark web report tool in February 2026, less than two years after it was launched as a way for users to monitor if their personal information is found on the dark web.
To that end, scans for new dark web breaches will be stopped on January 15, 2026, and the feature will cease to exist effective February 16, 2026.
“While the report offered general -
SoundCloud confirms breach after member data stolen, VPN access disrupted
Source: BleepingComputer | Published: 2025-12-16T00:38:47+00:00 | Score: 14.607
Audio streaming platform SoundCloud has confirmed that outages and VPN connection issues over the past few days were caused by a security breach in which threat actors stole a database exposing users’ email addresses and profile information. […]
-
PornHub extorted after hackers steal Premium member activity data
Source: BleepingComputer | Published: 2025-12-15T21:27:07+00:00 | Score: 14.572
Adult video platform PornHub is being extorted by the ShinyHunters extortion gang after the search and watch history of its Premium members was reportedly stolen in a recent Mixpanel data breach. […]
-
A Browser Extension Risk Guide After the ShadyPanda Campaign
Source: The Hacker News | Published: 2025-12-15T11:55:00+00:00 | Score: 12.636
In early December 2025, security researchers exposed a cybercrime campaign that had quietly hijacked popular Chrome and Edge browser extensions on a massive scale.
A threat group dubbed ShadyPanda spent seven years playing the long game, publishing or acquiring harmless extensions, letting them run clean for years to build trust and gain millions of installs, then suddenly flipping them into -
Washington state orders immediate evacuations in three Seattle suburbs
Source: World news | The Guardian | Published: 2025-12-16T01:08:35+00:00 | Score: 12.218
Orders come after a levee is breached following a week of heavy rain amid a flash-flood warning Officials in Washington state ordered immediate evacuations in three south Seattle suburbs on Monday after a levee failed following a week of heavy rains. The evacuation order from King county covered homes and businesses east of the Green River in parts of Kent, Auburn and Tukwila. Continue reading…
End of report.
