Tech Republic Security

SEPTEMBER 24, 2024

Implementing multi-factor authentication, supplier risk-management frameworks, and staff security training could help to reduce data breaches.

Data breaches 174

Data breaches Authentication Risk Cyber Attacks 174

Malwarebytes

FEBRUARY 25, 2025

Employment screening company DISA Global Solutions has filed a data breach notification after a cyber incident on their network. DISA says a third party had access to its environment between February 9, 2024, and April 22, 2024. Enable two-factor authentication (2FA). Check the vendors advice.

Data breaches 97

Data breaches Passwords Phishing Password Management 97

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Internet 130

Internet Internet Data breaches Authentication 130

Security Affairs

NOVEMBER 2, 2024

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957 , in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn.

Firmware 123

Firmware Manufacturing IoT Healthcare 123

Malwarebytes

NOVEMBER 4, 2024

In a data breach notification filed by the Attorney General for the state of Maine, the cybersecurity incident that affected Columbus, Ohio impacted half a million people. The City of Columbus was attacked by a ransomware group on July 18, 2024. Enable two-factor authentication (2FA). Check the vendor’s advice.

Data breaches 114

Data breaches Passwords Ransomware Phishing 114

Security Affairs

DECEMBER 30, 2024

Cisco confirmed the authenticity of the 4GB of leaked data, the data was compromised in a recent security breach, marking the second leak in the incident. Cisco confirmed the authenticity of the 4GB of leaked data, which was compromised in a recent security breach, marking it as the second leak in the incident.

Data breaches 126

Data breaches Cybercrime Authentication Technology 126

Webroot

APRIL 22, 2025

If a company you do business with becomes part of a data breach, cybercriminals may have full access to your confidential information. Unfortunately, data breaches are on the rise and affecting more companies and consumers than ever. In 2024, more than 1.3 What are data breaches and how do they happen?

Data breaches 72

Data breaches Identity Theft Passwords eCommerce 72

Krebs on Security

JANUARY 7, 2025

This domain was featured in a writeup from February 2024 by the security firm Lookout , which found it was one of dozens being used by a prolific and audacious voice phishing group it dubbed “ Crypto Chameleon.” Before we get to the Apple scam in detail, we need to revisit Tony’s case. “ Annie.”

Phishing 338

Phishing Cryptocurrency Accountability Social Engineering 338

Security Affairs

NOVEMBER 5, 2024

These cameras, which feature an embedded web server allowing for direct access by web browser, are reportedly deployed in environments where reliability and privacy are crucial” CVE-2024-8956 (CVSS score of 9.1) CVE-2024-8957 (CVSS score of CVSS 7.2) CISA orders federal agencies to fix this vulnerability by November 25, 2024.

Firmware 127

Firmware Manufacturing Authentication IoT 127

Malwarebytes

JULY 19, 2024

The Identity Theft Resource Center (ITRC) tracked 1,041,312,601 data breach victims in Q2 2024, an increase of 1,170% over Q2 2023 (81,958,874 victims). Because both of these breaches were announced/updated in the second quarter of 2024 they have a huge impact on the numbers. Enable two-factor authentication (2FA).

Data breaches 126

Data breaches Passwords Identity Theft Phishing 126

Security Affairs

APRIL 15, 2024

Cisco Duo warns that a data breach involving one of its telephony suppliers exposed multifactor authentication (MFA) messages sent by the company via SMS and VOIP to its customers. ” reads the data breach notification send to the impacted individuals. date and time of the message, type of message, etc.).”

Data breaches 141

Data breaches Social Engineering Engineering Authentication 141

Malwarebytes

JUNE 1, 2024

Live Nation Entertainment has confirmed what everyone has been speculating on for the last week : Ticketmaster has suffered a data breach. In the SEC filing, Live Nation also said: On May 27, 2024, a criminal threat actor offered what it alleged to be Company user data for sale via the dark web.

Data breaches 145

Data breaches Passwords Phishing Password Management 145

Malwarebytes

APRIL 24, 2025

The tech giant may have used this data for targeted advertising, according to Blue Shield, which is one of the largest health insurers in the US. In a data breach notice on its website, Blue Shield says it had begun notifying certain members of a potential data breach that may have included elements of their protected health information.

Insurance 114

Insurance Data breaches Passwords Phishing 114

Malwarebytes

MARCH 19, 2025

Sperm donor giant California Cryobank has announced it has suffered a data breach that exposed customers’ personal information. The data breach notification states that the breach occurred on April 20, 2024 and CCB discovered it on October 4, 2024. Enable two-factor authentication (2FA).

Banking 93

Banking Data breaches Computers and Electronics Insurance 93

Malwarebytes

MAY 10, 2024

Dell is warning its customers about a data breach after a cybercriminal offered a 49 million-record database of information about Dell customers on a cybercrime forum. So, this is another big data breach that leaves us with more questions than answers. Enable two-factor authentication (2FA). Change your password.

Data breaches 142

Data breaches Passwords Phishing Big data 142

Security Affairs

JUNE 19, 2024

. “We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.” ” Earlier this week IntelBroker announced on the BreachForums cybercrime forum that they were “selling the AMD.com data breach.”

Data breaches 139

Data breaches Firmware Cybercrime Media 139

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. The company already notified impacted individuals by email on Wednesday 21 February 2024.

Data breaches 133

Data breaches Telecommunications Banking Mobile 133

Penetration Testing

APRIL 30, 2024

SonicWall has released a security patch for its Global Management System (GMS) software, addressing two vulnerabilities that could be exploited by attackers to gain unauthorized access to sensitive data (CVE-2024-29010) and bypass authentication mechanisms... The post SonicWall Patches GMS Flaws to Block Data Breaches and Bypass Attacks (..)

Data breaches 122

Data breaches Penetration Testing Authentication Software 122

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. In March 2024, more than 70,000,000 records from an unspecified division of AT&T were leaked onto Breached forum, vx-underground researchers reported.

Data breaches 145

Data breaches Telecommunications Cybercrime Hacking 145

Malwarebytes

OCTOBER 8, 2024

Money transfer company MoneyGram has notified its customers of a data breach in which it says certain customers had their personal information taken between September 20 and 22, 2024. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 122

Data breaches Identity Theft Passwords Phishing 122

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Financial Services 62

Financial Services Cybersecurity CISO Backups 62

Malwarebytes

AUGUST 27, 2024

The Texas Dow Employees Credit Union (TDECU) has filed a data breach notification , reporting that the data of 500,474 people has been accessed in an external system breach. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 117

Data breaches Passwords Phishing Password Management 117

Malwarebytes

FEBRUARY 14, 2025

Over the years Zacks has suffered a few data breaches. In 2023, data allegedly belonging to Zacks containing 8,615,098 records was leaked online. The most recent data in this database is from May 2020. This would be the 2nd (hacked back in 2020) major data breach for Zacks. Check the vendors advice.

Accountability 83

Accountability Data breaches Passwords Phishing 83

Security Affairs

MAY 13, 2024

Firstmac Limited disclosed a data breach after the new Embargo extortion group leaked over 500GB of data allegedly stolen from the company. Firstmac Limited, one of the largest non-bank lenders in Australia, disclosed a data breach. The company is notifying the impacted customers. ” continues the notice.

Data breaches 131

Data breaches Cyber Attacks Identity Theft Banking 131

Troy Hunt

APRIL 14, 2024

Data breach verification: that seems like a good place to start given the discussion in this week's video about Accor. Watch the vid for the whole thing but in summary, data allegedly taken from Accor was published to a popular hacking forum and the headlines inevitably followed.

Retail 296

Retail Authentication Data breaches Hacking 296

Thales Cloud Protection & Licensing

OCTOBER 14, 2024

2024 Thales Global Data Threat Report: Trends in Financial Services madhav Tue, 10/15/2024 - 05:17 Financial services (FinServ) firms are key players in the global economy. The report also noted that the percentage of businesses experiencing breaches in the last year has dropped significantly, from 29% in 2021 to 14% in 2024.

Financial Services 62

Financial Services Threat Reports Authentication Banking 62

The Last Watchdog

SEPTEMBER 24, 2024

The breach was initially caused by a third-party malicious actor who infiltrated NPD’s systems in December 2023. The data began leaking in April 2024, and by summer, it was being sold on the dark web for $3.5 This begs the question, did NPD have too much data? NPD reported the exposure of over 2.7 billion records.

Authentication 216

Authentication Identity Theft Banking Data breaches 216

SecureWorld News

AUGUST 15, 2024

In what could be one of the largest data breaches in history, personal information of potentially billions of individuals may have been compromised in a hack of National Public Data (NPD), a Florida-based background check company. The hackers initially offered this data for sale on the dark web for $3.5

Data breaches 109

Data breaches Identity Theft Password Management Data collection 109

Malwarebytes

OCTOBER 21, 2024

It is often used for academic research and data analysis. Earlier in October, the Internet Archive suffered from a data breach and DDoS attack. During that breach the attackers were able to steal a user authentication database containing 31 million records.

Internet 136

Internet Internet DDOS Data breaches 136

Malwarebytes

JANUARY 10, 2025

In a breach notification , the company disclosed that on October 11, 2024 it learned about an incident that disrupted the operations of some of its IT systems. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Ransomware 97

Ransomware Data breaches Passwords Phishing 97

Malwarebytes

JUNE 14, 2024

On Wednesday June 12, 2024, a well-known dark web data broker and cybercriminal acting under the name “Sp1d3r” offered a significant amount of data allegedly stolen from Truist Bank for sale. The online handle of the seller immediately raised the suspicion that this was yet another Snowflake related data breach.

Data breaches 114

Data breaches Banking Passwords Phishing 114

Malwarebytes

SEPTEMBER 10, 2024

A subsequent investigation by a third-party specialist revealed that cybercriminals had access to Slim CD’s systems for 10 months, between August 17, 2023, and June 15, 2024. However, the company said the criminals only had access to credit card and other information between June 14 and June 15, 2024. Check the vendor’s advice.

Data breaches 121

Data breaches Identity Theft Passwords Phishing 121

SecureList

DECEMBER 9, 2024

As part of Kaspersky Security Bulletin 2024, our “Story of the Year” centers on these pressing issues. We’ll begin by revisiting notable supply chain incidents from 2024, and then explore potential scenarios of more damaging cases and the ways we prepare for them. Cisco Duo supply chain data breach What happened?

Internet 111

Internet Internet Risk Social Engineering 111

Malwarebytes

JULY 2, 2024

In February 2024, Prudential Financial reported it had fallen victim to a ransomware attack. million people had been impacted by the resulting data breach. Below are some general tips on what to do after you’ve fallen victim to a data breach. Enable two-factor authentication (2FA).

Data breaches 118

Data breaches Identity Theft Passwords Phishing 118

Malwarebytes

JULY 12, 2024

AT&T says the customer data was illegally downloaded from its workspace on a third-party cloud platform. Back in March, AT&T confirmed that 73 million people had been affected in a breach that people had been speculating about for some time. Enable two-factor authentication (2FA). Check the vendor’s advice.

Data breaches 144

Data breaches Passwords Phishing Password Management 144

SecureWorld News

JULY 12, 2024

On July 12, 2024, AT&T disclosed a data security incident that occurred in 2022. The company confirmed that unauthorized individuals accessed customer data stored on a third-party cloud platform. The breach has raised concerns about the security protocols in place at both AT&T and the third-party cloud provider.

Data breaches 120

Data breaches Authentication Passwords Artificial Intelligence 120

Security Affairs

APRIL 10, 2024

AT&T confirmed that the data breach impacted 51 million former and current customers and is notifying them. AT&T revealed that the recently disclosed data breach impacts more than 51 million former and current customers and is notifying them. ” reads the data breach notification.

Data breaches 128

Data breaches Telecommunications Identity Theft Hacking 128