Dark Reading

NOVEMBER 9, 2022

Massachusetts Attorney General announced settlements across multiple states for damages from Experian's 2012 and 2015 breaches that violated consumer protection and notification laws.

Data breaches 74

Data breaches Consumer Protection Mobile 74

SiteLock

AUGUST 27, 2021

It’s been a busy time for data breaches in the social media world with Myspace, LinkedIn and Twitter all experiencing them. In each of these cases, the cybercriminals behind the breaches were after usernames and passwords. Peace stole data from over 360 million Myspace accounts. 29 milliseconds to crack them.

Data breaches 52

Data breaches Media Passwords Accountability 52

Security Affairs

FEBRUARY 26, 2021

Data Breach: WizCase team uncovered a massive data leak containing private information about Turkish Citizens through a misconfigured Amazon S3 bucket. Inova has been operating since 2012 and has handled thousands of cases since then. How Did the Data Breach Happen? How and Why We Discovered the Breach.

Data breaches 95

Data breaches Insurance Identity Theft Education 95

Troy Hunt

DECEMBER 20, 2017

Over the course of this week, I've been writing about "Fixing Data Breaches" which focuses on actionable steps that can be taken to reduce the prevalence and the impact of these incidents. Let's move on and talk about why this makes a lot of sense when it comes to fixing data breaches.

Data breaches 119

Data breaches Marketing Penetration Testing Government 119

Security Affairs

MAY 29, 2019

Flipboard said that most of the passwords were hashed with bcrypt, while the passworts for users that have not logged into their account since March 14, 2012, were protected with SHA-1 hashing algorithm and uniquely salted. At the time it is not clear the extent of the breach, anyway, the company forced a password reset for all its users.

Data breaches 64

Data breaches Accountability Passwords Advertising 64

CSO Magazine

APRIL 15, 2021

Yes, tons of people still use “123456” as a password, according to NordPass's 200 most common passwords of the year for 2020, which is based on analysis of passwords exposed by data breaches.

Passwords 145

Passwords Data breaches 145

Security Affairs

MAY 15, 2020

Data appears to come from past data breaches, the oldest one dates back as 2012 while the latest one dates April 2020. million phone numbers that are part of Dubsmash data breach that occurred in 2018. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1

Data breaches 102

Data breaches Advertising Passwords Hacking 102

Dark Reading

MARCH 19, 2020

The collections contained information collected by a UK research firm on data breaches from the years 2012 to 2019.

Data breaches 118

Data breaches 118

CSO Magazine

MARCH 21, 2022

Anyone who follows cybersecurity is aware of the steady drumbeat of data breaches and attacks. 2012: Court Ventures gets social-engineered. 2012: Court Ventures gets social-engineered. So, an attack needs to really stand out to earn the name "disaster." Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

Social Engineering 113

Social Engineering CSO Engineering Data breaches 113

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. Nikulin used data stolen from Linkedin to launch spear-phishing attacks against employees at other companies, including Dropbox. Source: US Defense Watch.com.

Hacking 77

Hacking Cybercrime Data breaches Advertising 77

Adam Levin

DECEMBER 18, 2018

threat of compromise… networks, systems, and facilities… are vulnerable to cyberattacks, data breaches, data loss and manipulation, and unauthorized disclosure of technical information… leaving the United States vulnerable to missile attacks that threaten the safety of U.S. The post Faulty DoD Cybersecurity Leaves U.S.

Risk 199

Risk Cybersecurity Surveillance Government 199

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to a UK security firm that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. “Our hope is to minimize harm to end users whose data.” Pierluigi Paganini.

Data breaches 99

Data breaches DNS Advertising Engineering 99

Troy Hunt

NOVEMBER 22, 2019

I've become more familiar with this sector over recent years due to the frequency with which it's been suffering data breaches that have ultimately landed in my inbox. i'm also the creator of the data breach aggregation service known as "have i been pwned".

Data breaches 361

Data breaches Technology Software Accountability 361

Security Affairs

DECEMBER 21, 2022

A company spokesman declared that there are no indications of a data breach. Thyssenkrupp is currently the target of a cyberattack — presumably by organized crime” and that “at the present time, no damage has been done, nor are there any indications that data has been stolen or modified.”

Engineering 93

Engineering Ransomware Data breaches Banking 93

Security Affairs

MARCH 10, 2023

The NetWire Remote Access Trojan (RAT) is available for sale on cybercrime forums since 2012, it allows operators to steal sensitive data from the infected systems. DomainTools further shows this email address was used to register one other domain in 2012: wwlabshosting[.]com, ” reads the press release published DoJ.

Malware 81

Malware Cybercrime Data breaches Internet 81

Adam Levin

JANUARY 15, 2020

Only families & friends can have access to baby’s moments at your control,” says the app’s description, which has been downloaded over a million times since 2012. Bithouse has yet to comment on the leak or take the leaked data offline. Every Baby’s photos, audios & videos or diaries will be stored in secured space.

Data privacy 225

Data privacy Data breaches 225

Security Affairs

NOVEMBER 7, 2022

USA) , protecting major Fortune 500 companies, the data breach may become one of the first meaningful supply chain cybersecurity incidents in the region due to an overlap between an enterprise and the government sector. Threat actors may use the stolen data to target other companies and individuals of interest. .

Government 94

Government Accountability Hacking Data breaches 94

Security Affairs

JULY 19, 2021

The oil giant employs has over $200 billion in annual revenue, and the threat actors are offering the stolen data at an initial price of $5 million. Bleeping Computer reached the company who confirmed a data breach on third-party contractors, but pointed out that the incident had no impact on Aramco’s operations.

Engineering 136

Engineering Telecommunications Wireless Data breaches 136

Troy Hunt

OCTOBER 13, 2017

This week I've been dealing with data breaches - lots of data breaches. Disqus did an awesome job of their disclosure (have we ever seen a breach as large of this disclosed within 24 hours?). SHA-1 was really starting to show its age in 2012 (there's a link to save you searching for me with no clothes).

Data breaches 107

Data breaches 107

Threatpost

OCTOBER 18, 2019

million in a settlement that stems from a breach that affected more than 24 million customers. Lawyers will get $1.6

Retail 42

Retail Data breaches Data privacy 42

SecureWorld News

MARCH 24, 2022

Now, headlines about ransomware, cyberattacks, and data breaches pour into social media feeds as steady as a river flows. SecureWorld News takes a look at some of the largest data breaches to ever occur. Top 10 most significant data breaches. Yahoo data breach (2013). Who attacked: no attacker.

Data breaches 119

Data breaches Passwords Accountability Government 119

SC Magazine

JUNE 2, 2021

A woman speaking on a mobile phone walks past a cloud computing presentation ahead of the CeBIT technology trade fair in 2012. While this raises some concerns, the Thales 2021 Data Threat Report , based on a study by 451 Research, pointed to some improvement in regulated industries. Sean Gallup/Getty Images).

Encryption 103

Encryption Data breaches Accountability Threat Detection 103

Identity IQ

NOVEMBER 16, 2021

Bushnell first joined IDIQ in 2012 as the senior vice president for product, project and development. The company offers the IdentityIQ® and MyScoreIQ® brands for identity theft and credit report monitoring and the DataBreachIQ® brand for business data breach preparation and response support.

Identity Theft 98

Identity Theft Data breaches Consumer Services Marketing 98

Krebs on Security

JUNE 25, 2019

com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile 248

Mobile Technology Manufacturing Malware 248

Security Affairs

JUNE 25, 2020

In 2012, Assange communicated directly with a leader of the hacking group LulzSec (who by then was cooperating with the FBI), and provided a list of targets for LulzSec to hack. “In 2010, Assange gained unauthorized access to a government computer system of a NATO country. ” states DoJ.

Hacking 94

Hacking Advertising Passwords Government 94

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to the security firm Keepnet Labs that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. ” wrote Security Discovery’s researcher Bob Diachenko.

Data breaches 60

Data breaches DNS Advertising Engineering 60

Security Affairs

JULY 25, 2022

“From 1 December 2012 the Revenue Agency incorporated the Territory Agency (article 23-quater of Legislative Decree 95/2012).” ” The group claims to have stolen 78GB of data, including company documents, scans, financial reports, and contracts, it plans to release screenshots of files and samples very soon.

Ransomware 98

Ransomware Government Scams Hacking 98

CyberSecurity Insiders

AUGUST 24, 2022

Interestingly, from the year 2012 to 2021, the loss is estimated to be $60 billion in cryptocurrency, and the past 16 months fetched a loss of $44 billion on a combined note…might be true! Fourth is a news piece belonging to a Digital Transformation firm Orion Innovation which has been hit by the LockBit Ransomware group.

Ransomware 107

Ransomware Digital transformation Encryption Social Engineering 107

Malwarebytes

JUNE 30, 2021

In a statement, Privacy Shark garnered from Leonna Spilman, who spoke on behalf of LinkedIn, the company claims there is really no breach: “While we’re still investigating this issue, our initial analysis indicates that the dataset includes information scraped from LinkedIn as well as information obtained from other sources.

Data breaches 145

Data breaches Accountability VPN Scams 145

SecureWorld News

DECEMBER 29, 2020

Now headlines about ransomware, cyberattacks and data breaches pour into social media feeds at a steady drumbeat. SecureWorld now takes a look at some of the largest data breaches to ever occur. Top 10 most significant data breaches. Yahoo data breach (2013). Equifax data breach (2017).

Data breaches 98

Data breaches Passwords Accountability Government 98

ForAllSecure

MARCH 11, 2021

In September 2017, Equifax faced a data breach. Nefarious actors stole customer data, including names, social security numbers, birthdates, and home addresses. The breach was made possible through stolen HVAC credentials, allowing unauthorized access through across the network and to their POS systems. See graph above.

Risk 52

Risk Retail Data breaches Software 52

Security Affairs

JANUARY 25, 2020

“On June 28, last year, a suspicious behavior was detected and investigated on a terminal in our company, and as a result of unauthorized access by a third party, data was transmitted to the outside,” reads a data breach notification published by the company.

Antivirus 126

Antivirus Hacking Advertising Media 126

ForAllSecure

MARCH 11, 2021

In September 2017, Equifax faced a data breach. Nefarious actors stole customer data, including names, social security numbers, birthdates, and home addresses. The breach was made possible through stolen HVAC credentials, allowing unauthorized access through across the network and to their POS systems. See graph above.

Risk 52

Risk Retail Data breaches Software 52

Krebs on Security

FEBRUARY 16, 2022

Asked to comment on Sheriff’s claims, the ICRC issued the following statement: “Right now, we do not have any conclusive evidence that this information from the data breach has been published or is being traded. Our cybersecurity team has looked into any reported allegation of data being available on the dark web.”

Hacking 243

Hacking Ransomware Media Accountability 243

Krebs on Security

JUNE 25, 2019

com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile 164

Mobile Technology Manufacturing Software 164

Security Affairs

FEBRUARY 7, 2020

Just last week, Japan’s Ministry of Defense announced in addition to Mitsubishi Electric and the NEC defense business division other two unnamed contractors suffered a data breach. Pasco is Japan’s largest geospatial provider and Kobe Steel is one of the major steel manufacturers.

Manufacturing 104

Manufacturing Data breaches Advertising Antivirus 104

SecureWorld News

MAY 16, 2023

The incident, which began in November 2013 and lasted until mid-April of this year, affected almost the entire customer base who signed up for its main cloud service platforms since 2012, including customers of its luxury brand Lexus.

Education 79

Education Cybersecurity Data breaches 79