Skip to content

External Attack Surface Management

Weekly Report: New Hacking Techniques and Critical CVEs 30 Sep – 07 Oct, 2025

This week marked a critical escalation in the global cybersecurity threat landscape, with multiple zero-day vulnerabilities actively exploited in the wild, sophisticated ransomware campaigns targeting multinational corporations, and the emergence of new threat actor alliances. The period was characterized by seven major incidents spanning enterprise software vulnerabilities, gaming platform compromises, and coordinated cybercriminal operations. Key… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 30 Sep – 07 Oct, 2025

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 30 Sep – 07 Oct, 2025

The first week of October 2025 witnessed a significant escalation in cybersecurity incidents affecting major organizations across multiple sectors including aviation, insurance, automotive, gaming, telecommunications, and software industries. This week’s incidents demonstrate sophisticated attack methodologies ranging from credential stuffing campaigns to ransomware deployment and supply chain compromises. Ten major incidents impacted over 5.5 million individuals… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 30 Sep – 07 Oct, 2025

DraftKings Credential Stuffing Account Breach

Date of Incident: 2024-10-02 Overview: The DraftKings Credential Stuffing Account Breach, reported on October 7, 2025, involved attackers accessing customer accounts through credential stuffing techniques on October 2, 2024. This attack utilized automated login attempts with stolen credentials from other breaches, affecting personal details such as names, addresses, and transaction history. Although government IDs and… Read More »DraftKings Credential Stuffing Account Breach

ShinyHunters Salesforce Data Leak

Date of Incident: 2025-10-01 Overview: The ShinyHunters Salesforce Data Leak, reported on October 3, 2025, involves unauthorized access to Salesforce cloud instances due to exploited API vulnerabilities and possibly misconfigured permissions. Approximately 1 billion records from 39 companies were potentially impacted, with personal information stolen and samples leaked alongside ransom demands. The breach demonstrated automated… Read More »ShinyHunters Salesforce Data Leak

Red Hat Data Breach

Date of Incident: April 2024 Overview: The Red Hat data breach, reported in October 2025, occurred in April 2024 and involved unauthorized access to around 570GB of compressed data from 28,000 internal development repositories. The breach affected the software sector, compromising sensitive Customer Engagement Reports (CERs) that contained critical information about networks and infrastructure of… Read More »Red Hat Data Breach

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.