NordVPN Dev Server in Panama Breached via Unsecured SSH, Leaking API Keys and Jira Tokens
TL;DR
* Crimson Collective breaches Brightspeed systems, exfiltrates 1M+ customer records including PII and payment history, demands ransom
* Zestix sells corporate data stolen from 30+ firms via infostealers like RedLine, targeting cloud platforms including ShareFile and Nextcloud
* ClickFix social engineering campaign uses fake Booking.com BSOD pages to deploy .NET