Krebs on Security

SEPTEMBER 13, 2023

The FBI responded by reverifying InfraGard members and by seizing the cybercrime forum where the data was being sold. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus , while promising to visit the same treatment on top U.S. But on Sept. But on Sept.

Cybercrime 295

Cybercrime Passwords Authentication Malware 295

Security Affairs

NOVEMBER 12, 2023

The State of Maine disclosed a data breach that impacted about 1.3 The Government organization disclosed a data breach that impacted about 1.3 The Government organization disclosed a data breach that impacted about 1.3 The security breach took place in the State between May 28, 2023, and May 29, 2023.

Data breaches 105

Data breaches Insurance Identity Theft Education 105

Security Affairs

APRIL 27, 2024

Threat actors accessed more than 19,000 online accounts on a California state platform for welfare programs. Threat actors breached over 19,000 online accounts on a California state platform dedicated to welfare programs. Your account may have been one of those accessed.” ” continues the notification.

Accountability 106

Accountability Passwords Data breaches Hacking 106

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts.

Data breaches 73

Data breaches Mobile Accountability Telecommunications 73

Security Affairs

DECEMBER 23, 2023

The LockBit ransomware claims to have hacked accountancy firm Xeinadin threatens to leak the alleged stolen data. The LockBit ransomware claims responsibility for hacking the Xeinadin accountancy firm and threatens to disclose the alleged stolen data. tb of customer data is alleged. Account balances.

Accountability 120

Accountability Ransomware Data breaches Hacking 120

Security Affairs

NOVEMBER 23, 2023

American retailer and distributor of automotive parts and accessories AutoZone discloses a data breach after a MOVEit attack. AutoZone disclosed a data breach resulting from the hack of their MOVEit Transfer installation. based organizations account for 83.9 million Genworth 2.5 million PH Tech 1.7 million “U.S.-based

Data breaches 106

Data breaches Hacking Retail Identity Theft 106

Security Affairs

NOVEMBER 23, 2023

Healthcare services provider Welltok disclosed a data breach that impacted nearly 8.5 It provides a platform that leverages data-driven insights to engage individuals in their health and well-being. The company disclosed a data breach that exposed the personal data of nearly 8.5 million patients in the U.S.

Data breaches 90

Data breaches Insurance Healthcare Hacking 90

Security Affairs

NOVEMBER 10, 2023

McLaren Health Care (McLaren) experienced a data breach that compromised the sensitive personal information of approximately 2.2 McLaren Health Care (McLaren) disclosed a data breach that occurred between late July and August. The security breach exposed the sensitive personal information of 2,192,515 people.

Data breaches 104

Data breaches Identity Theft Insurance Ransomware 104

SecureWorld News

OCTOBER 13, 2023

Securities and Exchange Commission (SEC) has initiated an investigation into Progress Software regarding the high-profile MOVEit data breach incident that unfolded earlier this year. The incident, tracked as CVE-2023-34362 , was exploited by the notorious Cl0p ransomware group , a Russian-speaking cybercrime gang.

Data breaches 101

Data breaches Software Insurance Cybercrime 101

Security Affairs

JANUARY 19, 2024

American global apparel and footwear company VF Corp revealed that the December data breach impacted 35.5 In December 2023, VF Corp announced it was the victim of a ransomware attack and was forced to take some systems down to contain the threat. million customers. In 2015, the company controlled 55% of the U.S.

Data breaches 110

Data breaches Retail Insurance Passwords 110

Security Affairs

NOVEMBER 20, 2023

The Canadian government discloses a data breach after threat actors hacked two of its contractors. “On October 19 th , 2023, Brookfield Global Relocation Services (BGRS) informed the Government of Canada of a breach involving Government of Canada information held by BGRS and SIRVA Canada systems.”

Data breaches 108

Data breaches Government Hacking Backups 108

Security Affairs

JANUARY 1, 2024

These are the Top 2023 Security Affairs cybersecurity stories … enjoy it. CYBERCRIMINALS LAUNCHED “LEAKSMAS” EVENT IN THE DARK WEB EXPOSING MASSIVE VOLUMES OF LEAKED PII AND COMPROMISED DATA Leaksmas: On Christmas Eve, multiple threat actors released substantial data leaks, Resecurity experts reported.

Cybersecurity 104

Cybersecurity Spyware Data breaches Passwords 104

SecureWorld News

MAY 3, 2023

T-Mobile has fallen victim to yet another data breach, its second one in 2023 , adding to the already long list of breaches the telecom giant has experienced in recent years. T-Mobile also recommended that customers review their account information and update their PINs to a new one of their choosing.

Data breaches 82

Data breaches Mobile Risk Identity Theft 82

Security Boulevard

JUNE 26, 2023

The end result of these types of cyber attacks are often highly public and damaging data breaches. 1 in 4 Americans reported that they would stop doing business with a company following a data breach, and 67% of consumers reported a loss of trust in an organization following a breach. What Are Data Breaches?

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Security Affairs

APRIL 21, 2023

The American Bar Association (ABA) disclosed a data breach, threat actors gained access to older credentials for 1,466,000 members. The security breach was detected on March 17, 2003 and according to the company the intrusion begun on or about March 6, 2023. The ABA has 166,000 members as of 2022.

Data breaches 88

Data breaches Passwords Education Accountability 88

Security Affairs

AUGUST 15, 2023

Researchers discovered credentials associated with cybercrime forums on roughly 120,000 computers infected with information stealers. Threat intelligence firm Hudson Rock has discovered credentials associated with cybercrime forums on roughly 120,000 computers infected with various information stealer malware.

Cybercrime 68

Cybercrime Passwords Data breaches Malware 68

Security Affairs

APRIL 11, 2023

Brands, the company that owns the KFC, Pizza Hut, and Taco Bell brands, disclosed a data breach after the January ransomware attack. On January 13, 2023, Yum! experienced a cybersecurity incident involving unauthorized access to certain of our systems on or around January 13, 2023. Brands) The post Yum!

Data breaches 92

Data breaches Identity Theft Education Ransomware 92

Security Affairs

MAY 8, 2023

Western Digital is notifying its customers of a data breach that exposed their sensitive personal information, the incident took place in March. reads the status page of the company on April 2, 2023. “We On March 26, 2023, Western Digital identified a network security incident involving Western Digital’s systems.

Data breaches 75

Data breaches Backups Ransomware Wireless 75

Security Affairs

JUNE 29, 2023

The phone monitoring app LetMeSpy disclosed a security breach, threat actors have stolen sensitive data associated with thousands of Android users, including messages, locations, call logs, e-mail addresses, and telephone numbers. According to a notice published by the company, the security incident took place on June 21, 2023.

Data breaches 75

Data breaches Spyware Hacking Accountability 75

The Hacker News

NOVEMBER 28, 2023

Account credentials, a popular initial access vector, have become a valuable commodity in cybercrime. According to the 2023 Verizon Data Breach Investigation Report, external parties were responsible for 83 percent of breaches that occurred between November 2021 and October 2022.

Phishing 90

Phishing Data breaches Cybercrime Accountability 90

Security Affairs

APRIL 12, 2023

Hyundai disclosed a data breach that impacted Italian and French car owners and clients who booked a test drive. Hyundai has suffered a data breach that impacted Italian and French car owners and customers who booked a test drive. According to the letter, financial data were not exposed.

Data breaches 91

Data breaches Media Manufacturing Education 91

Security Affairs

MARCH 28, 2023

Australian loan giant Latitude Financial Services (Latitude) revealed that a data breach its has suffered impacted 14 million customers. The data breach suffered by Latitude Financial Services (Latitude) is much more serious than initially estimated. ” reads a new update published on March 27, 2023.

Data breaches 86

Data breaches Financial Services Passwords Hacking 86

SecureList

NOVEMBER 28, 2022

Below, we present a number of key ideas about what the consumer-oriented threat landscape will look like in 2023, and describe how users could be lured into cybertraps with fake content and third-party apps. The larger the subscription base, the greater the number of fraudulent key-selling schemes and attempts at stealing accounts.

Education 121

Education Phishing Scams Social Engineering 121

Security Affairs

MAY 26, 2024

million individuals North Korea-linked Kimsuky used a new Linux backdoor in recent attacks International Press – Newsletter Cybercrime Healthcare company WebTPA discloses breach affecting 2.5 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Fix it now!

Healthcare 97

Healthcare Spyware Data breaches Banking 97

Security Affairs

APRIL 28, 2024

Hackers may have accessed thousands of accounts on the California state welfare platform Brokewell Android malware supports an extensive set of Device Takeover capabilities Experts warn of an ongoing malware campaign targeting WP-Automatic plugin Cryptocurrencies and cybercrime: A critical intermingling Kaiser Permanente data breach may have impacted (..)

Cybercrime 93

Cybercrime Spyware Data breaches Antivirus 93

Krebs on Security

AUGUST 25, 2023

Cryptocurrency lender BlockFi and the now-collapsed crypto trading platform FTX each disclosed data breaches this week thanks to a recent SIM-swapping attack targeting an employee of Kroll — the company handling both firms’ bankruptcy restructuring. ” T-Mobile has not yet responded to requests for comment.

Mobile 207

Mobile Cyber Risk Cryptocurrency Data breaches 207

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 103

VPN Cybercrime Ransomware Hacking 103

Security Affairs

NOVEMBER 29, 2023

Cloud identity and access management solutions provider Okta revealed additional threat actor activity linked to the October 2023 breach. Okta provided additional details about the October 2023 breach and revealed additional threat actor malicious activities. reads the post published by the company.

Social Engineering 102

Social Engineering Authentication Engineering Accountability 102

Security Affairs

JUNE 13, 2023

million Zacks Investment Research users was leaked on a cybercrime forum. A database containing personal information of 8,929,503 Zacks Investment Research users emerged on a popular hacking forum on June 10, 2023. At the time, the company added that it had no evidence that financial data has been exposed due to the security incident.

Data breaches 84

Data breaches Passwords Cybercrime Encryption 84

BH Consulting

JUNE 13, 2023

Target the human, swipe the cash: Verizon DBIR 2023 highlights crime trends Manage the human risk and mind your money: those are two key takeaways from Verizon’s 2023 Data Breach Investigations Report. The report contains analysis from 16,312 security incidents, of which 5,199 were confirmed breaches.

Social Engineering 52

Social Engineering Data breaches Scams DDOS 52

Security Affairs

OCTOBER 22, 2023

A threat actor is selling access to Facebook and Instagram’s Police Portal Threat actors breached Okta support system and stole customers’ data US DoJ seized domains used by North Korean IT workers to defraud businesses worldwide Alleged developer of the Ragnar Locker ransomware was arrested CISA adds Cisco IOS XE flaw to its Known Exploited (..)

Ransomware 104

Ransomware Telecommunications Data breaches Mobile 104

Security Affairs

MAY 14, 2024

The Singing River Health System revealed that the ransomware attack that hit the organization in August 2023 impacted 895,204 people. At the end of August 2023, the systems at three hospitals and other medical facilities operated by Singing River Health System (SRHS) were hit by a Rhysida ransomware attack.

Identity Theft 91

Identity Theft Ransomware Data breaches Insurance 91

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 said investigators determined the breach began on Aug. million people.

Identity Theft 238

Identity Theft Banking Cybercrime Hacking 238

Krebs on Security

JANUARY 10, 2024

Dellone says the crooks then used his phone number to break into his account at Coinbase and siphon roughly $100,000 worth of cryptocurrencies. 2023 story here about how experts now believe it’s likely hackers are cracking open some of the password vaults stolen in the 2022 data breach at LastPass. federal court.”

Cryptocurrency 286

Cryptocurrency Government Cybercrime Accountability 286

Krebs on Security

SEPTEMBER 30, 2023

According to a September 20, 2023 joint advisory from the FBI and the U.S. ” New York City-based cyber intelligence firm Flashpoint said the Snatch ransomware group was created in 2018, based on Truniger’s recruitment both on Russian language cybercrime forums and public Russian programming boards.

Ransomware 225

Ransomware Accountability Cybercrime Backups 225

Krebs on Security

NOVEMBER 28, 2023

One of the cybercrime underground’s more active sellers of Social Security numbers, background and credit reports has been pulling data from hacked accounts at the U.S. consumer data broker USinfoSearch , KrebsOnSecurity has learned. After much badgering, on Nov.

Accountability 240

Accountability Cybercrime Mobile Advertising 240

Security Affairs

AUGUST 13, 2023

Police dismantled bulletproof hosting service provider Lolek Hosted Python URL parsing function flaw can enable command execution UK govt contractor MPD FM leaks employee passport data Power Generator in South Africa hit with DroxiDat and Cobalt Strike The Evolution of API: From Commerce to Cloud Gafgyt botnet is targeting EoL Zyxel routers Charming (..)

Data breaches 86

Data breaches Artificial Intelligence Cybercrime Adware 86