data theft
Coverage of data theft in the Nexus archive.
- Microsoft warns users of 'Crypto Clipper' malware spread via USB drives
Microsoft has warned users about 'Crypto Clipper' malware distributed through USB drives. The malware combines data theft with remote code execution, transforming a financially motivated stealer into a lightweight backdoor.
- UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign
Cybersecurity researchers revealed a data theft extortion campaign targeting U.S. organizations in professional, legal, and financial services between January and May 2026. The campaign, attributed to UNC3753, involved vishing and physical intrusions, with Google Mandiant and Google Threat Intelligence Group identifying the threat actor.
- Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
A disabled security setting in Android versions of Microsoft apps like Word, PowerPoint, and Excel allowed attackers to steal user logins and data. The vulnerability stemmed from a coding error that exposed Microsoft 365 accounts to potential takeover.
- Valve removes free game from Steam after players discover it contains malware
Valve has removed a free horror game from Steam after users discovered it contained malware designed to steal player data. The incident highlights ongoing security concerns on the platform regarding malicious content slipping through review processes.
- Police seize “First VPN” service used in ransomware, data theft attacks
Law enforcement agencies have shut down 'First VPN,' a virtual private network service that was being exploited for ransomware attacks and data theft operations. The takedown was conducted through a joint international law enforcement operation, disrupting a key tool used by cybercriminals.
- 15-year-old detained over French govt agency data breach
French authorities have detained a 15-year-old suspect in a cyberattack on France Titres (ANTS), an agency responsible for administrative documents, after data was allegedly stolen and sold. The incident highlights vulnerabilities in government data security systems.
- AI Finds 38 Security Flaws in Electronic Health Record Platform
AI discovered 38 security flaws in OpenEMR's electronic health record platform, which is used by over 100,000 healthcare providers. The vulnerabilities allowed database compromise, remote code execution, and data theft.
- New BlackFile extortion group linked to surge of vishing attacks
A new financially motivated hacking group named BlackFile has been linked to a surge of vishing attacks targeting retail and hospitality organizations since February 2026. The group is associated with data theft and extortion campaigns, exploiting these sectors to maximize financial gain.
- Trigona ransomware attacks use custom exfiltration tool to steal data
Trigona ransomware attacks are utilizing a custom command-line tool to exfiltrate data from compromised systems more efficiently. This method enhances the speed and effectiveness of data theft in recent incidents.
- Google's Vertex AI Is Over-Privileged. That's a Problem
Researchers from Palo Alto Networks discovered a critical security flaw in Google's Vertex AI, allowing attackers to exploit over-privileged AI agents for data theft and unauthorized access to restricted cloud infrastructure. The vulnerability highlights significant risks in AI-driven cloud systems.