Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive alleged that an auction on the site for data stolen from 10 million customers of Mexico’s second-largest bank was fake news and harming the bank’s reputation.

Data breaches 328

Data breaches Banking Cybercrime Marketing 328

Security Affairs

MARCH 19, 2025

California Cryobank, the largest US sperm bank, suffered a data breach exposing customer information. The company disclosed a data breach that exposed customers’ personal information. ” reads the data breach notification letter shared with Maine Attorney General.”Out

Data breaches 110

Data breaches Banking Insurance Hacking 110

Krebs on Security

JANUARY 19, 2023

T-Mobile today disclosed a data breach affecting tens of millions of customer accounts, its second major data exposure in as many years. APIs are essentially instructions that allow applications to access data and interact with web databases. Image: customink.com In a filing today with the U.S.

Mobile 339

Mobile Accountability Data breaches Identity Theft 339

Security Affairs

APRIL 11, 2025

Laboratory Services Cooperative discloses a data breach from October 2024 that exposed personal and medical info of 1.6 Laboratory Services Cooperative disclosed a data breach that impacted the personal and medical information of 1.6 ” reads the notice of data breach. million individuals.

Data breaches 98

Data breaches Insurance Banking Accountability 98

Security Affairs

MAY 15, 2025

Coinbase confirmed rogue contractors stole customer data and demanded a $20M ransom in a breach reported to the SEC. Coinbase said rogue contractors stole data on under 1% of users and demanded $20M; the data breach was disclosed in an SEC filing. “Criminals targeted our customer support agents overseas.

Data breaches 87

Data breaches Banking Accountability Retail 87

Security Affairs

DECEMBER 8, 2024

“Additionally, Anna Jaques reminds its employees and patients to remain vigilant in reviewing financial account statements on a regular basis for any fraudulent activity. .” reads a statement published on the hospital’s website.

Data breaches 119

Data breaches Insurance Healthcare Ransomware 119

Security Affairs

OCTOBER 28, 2024

Free disclosed a cyber attack over the weekend after a threat actor attempted to sell the stolen data on a popular cybercrime forum. The threat actors had access to the internal management tool and gained access to some subscribers’ personal data. The seller also published a sample of the stolen data and some screenshots.

Cyber Attacks 128

Cyber Attacks Telecommunications Data breaches Banking 128

Adam Levin

JULY 15, 2020

The discovery of a database for sale on the dark web suggests the 2019 data breach of MGM Resorts was significantly larger than initially reported. Access to the database was made available on a dark web cybercrime marketplace for roughly $3,000. The records themselves were aggregated from previous data breaches and leaks.

Data breaches 198

Data breaches Cybercrime Accountability Technology 198

Security Affairs

JANUARY 3, 2025

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,data breach) Emergency care and patient admissions remained unaffected during the incident. RUMC offered 12 months of free credit monitoring to those individuals with compromised Social Security numbers.

Data breaches 78

Data breaches Ransomware Insurance Healthcare 78

Security Affairs

JANUARY 16, 2025

The law firm Wolf Haldenstein disclosed a data breach that exposed the personal information of nearly 3.5 The law firm Wolf Haldenstein disclosed a 2023 data breach that exposed the personal information of nearly 3.5 The law firm pointed out that it has no evidence the exposed data has been misused.

Data breaches 98

Data breaches Identity Theft Consumer Protection Data collection 98

Security Affairs

DECEMBER 29, 2024

notifies customers of credit card data breach, after threat actors hacked a third-party app from its e-commerce provider. disclosed a data breach that exposed its customers’ credit card data after threat actors hacked a third-party application from its e-commerce providerBigCommerce.

Data breaches 84

Data breaches Computers and Electronics Hacking Wireless 84

Krebs on Security

AUGUST 6, 2020

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S.

Accountability 363

Accountability Identity Theft Hacking Insurance 363

Webroot

APRIL 22, 2025

If a company you do business with becomes part of a data breach, cybercriminals may have full access to your confidential information. Unfortunately, data breaches are on the rise and affecting more companies and consumers than ever. billion people received notices that their information was exposed in a data breach.

Data breaches 72

Data breaches Identity Theft Passwords eCommerce 72

Krebs on Security

NOVEMBER 14, 2024

Shefel claims the true mastermind behind the Target and other retail breaches was Dmitri Golubov , an infamous Ukrainian hacker known as the co-founder of Carderplanet, among the earliest Russian-language cybercrime forums focused on payment card fraud. “I’m also godfather of his second son.” Image: U.S.

Advertising 274

Advertising Retail Cryptocurrency Cybercrime 274

Krebs on Security

MARCH 13, 2019

[ NASDAQ: SZMK ] says it is investigating a security incident in which a hacker was reselling access to a user account with the ability to modify ads and analytics for a number of big-name advertisers. He acknowledged that the purloined account had the ability to add or modify the advertising creatives that get run on customer ad campaigns.

Accountability 266

Accountability Passwords Advertising Penetration Testing 266

Krebs on Security

JULY 22, 2019

The New York Times reported earlier today that it was thought to be the largest settlement ever paid by a company over a data breach, but that statement doesn’t appear anywhere in their current story. “Had the bill been in effect prior to the 2017 Equifax breach, the company would have had to pay at least $1.5

Data breaches 279

Data breaches Identity Theft Banking Cybercrime 279

Security Affairs

MAY 15, 2025

Nova Scotia Power confirmed a data breach involving the theft of sensitive customer data after the April cybersecurity incident. This week, the company disclosed a data breach after the April security incident and revealed that threat actors stole sensitive customer data. Nova Scotia Power Inc.

Data breaches 74

Data breaches Energy and Utilities Insurance Accountability 74

Security Affairs

OCTOBER 20, 2024

CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent attack Omni Family Health data breach impacts 468,344 individuals Iran-linked actors target critical infrastructure organizations macOS HM Surf flaw in TCC allows bypass Safari privacy settings Two Sudanese (..)

Data breaches 120

Data breaches Cybercrime Cyber Insurance Marketing 120

Security Affairs

AUGUST 20, 2024

Toyota has confirmed a data breach after a threat actor leaked 240GB of data stolen from its infrastructure on a cybercrime forum. Toyota disclosed a data breach after a threat actor leaked an archive of 240GB of data stolen from its systems on a cybercrime forum, BleepingComputer reported.

Data breaches 120

Data breaches Cybercrime Financial Services Hacking 120

Security Affairs

JUNE 10, 2025

Attackers compromised a system account and used it to unlawfully access and download crash reports. “On May 12, 2025, TxDOT identified unusual activity in the Crash Reporting Information System (CRIS) originating from a system account.” ” reads the data breach notification letter.

Data breaches 66

Data breaches Insurance Accountability Hacking 66

Security Affairs

APRIL 15, 2025

Hertz Corporation disclosed a data breach after customer data was stolen via Cleo zero-day exploits in late 2024, affecting Hertz, Thrifty, and Dollar brands. Car rental giant Hertz Corporation disclosed a data breach that impacted its Hertz, Thrifty, and Dollar brands.

Data breaches 66

Data breaches Ransomware Software Hacking 66

Krebs on Security

SEPTEMBER 13, 2023

The FBI responded by reverifying InfraGard members and by seizing the cybercrime forum where the data was being sold. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus , while promising to visit the same treatment on top U.S. But on Sept. But on Sept.

Cybercrime 344

Cybercrime Passwords Authentication Malware 344

Security Affairs

MAY 5, 2025

Kelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed. Benefits and payroll solutions firm Kelly & Associates Insurance Group, aka Kelly Benefits, announced that the impact of a recently disclosed data breach is much bigger than initially estimated.

Data breaches 68

Data breaches Insurance Hacking Accountability 68

The Last Watchdog

FEBRUARY 4, 2025

Identity security vendors have focused narrowly on securing corporate accounts, leaving organizations vulnerable to cybercriminals exploiting the broader identity exposures of employees, consumers, and suppliers. The impact of these exposures is evident: nearly a quarter of data breaches resulted from compromised identity data.

Cybercrime 124

Cybercrime Phishing Accountability Malware 124

Security Affairs

MARCH 20, 2025

A data breach at the Pennsylvania State Education Association exposed the personal information of over 500,000 individuals. The Pennsylvania State Education Association (PSEA) suffered a data breach that impacted 517,487 individuals. ” reads the data breach notification.

Education 66

Education Data breaches Identity Theft Insurance 66

Security Affairs

OCTOBER 13, 2024

CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog Three new Ivanti CSA zero-day actively exploited in attacks Ukrainian national pleads guilty in U.S.

Data breaches 119

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 119

SecureWorld News

MAY 14, 2025

The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. Upon notification, the Recovery Asset Team immediately initiated the process to freeze the fraudulent recipient bank account. The report highlights a staggering $16.6 billion in losses.

Cybercrime 72

Cybercrime Scams Cryptocurrency Internet 72

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. USDoD’s InfraGard sales thread on Breached. Department of Defense.

Hacking 363

Hacking Cybercrime Energy and Utilities Accountability 363

Security Affairs

DECEMBER 17, 2024

Texas Tech University reports a data breach affecting 1.4 million, exposing personal, health, and financial data from its health sciences centers. Texas Tech University disclosed a data breach that impacted over 1.4 million individuals following a cyber attack.

Data breaches 60

Data breaches Insurance Ransomware Cyber Attacks 60

SecureWorld News

MARCH 27, 2025

In today's digital world, cybercrime is a threat to our private data and security. If they are not disposed of properly, they can leak toxic chemicals and sensitive data. What is cybercrime? Cybercrime is an online criminal activity that targets computer networks and devices. It's time to change it.

Cybercrime 72

Cybercrime Computers and Electronics Firewall Hacking 72

Security Affairs

OCTOBER 16, 2024

Among them, it was possible to identify tax registration, email addresses, registered domains, IP addresses, social media accounts, telephone number and city. The link between Luan’s hacktivism and cybercrime was established due to his bad Operational security (opsec).

Data breaches 129

Data breaches Media Cybercrime Accountability 129

Security Affairs

OCTOBER 7, 2024

238,000 Comcast customers were impacted by the FBCS data breach following the February ransomware attack, Comcast reports. Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. reads the notice of data breach.

Data breaches 134

Data breaches Telecommunications Accountability Ransomware 134

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking 344

Hacking Cybercrime Phishing Passwords 344

Security Affairs

AUGUST 17, 2024

Background check service National Public Data confirms a data breach that exploded millions of social security numbers and other sensitive information. The organization recommends the impacted individuals closely monitor their financial accounts and report any unauthorized activity to their financial institution.

Data breaches 143

Data breaches Hacking Accountability Cybersecurity 143

Security Affairs

MAY 13, 2025

This week, a cyber update published by the company on its website confirmed the data breach: “To proactively manage the incident, we immediately took steps to protect our systems and engaged leading cyber security experts. The personal data could include contact details, date of birth and online order history.

Data breaches 62

Data breaches Cyber Attacks Passwords Social Engineering 62

Security Affairs

SEPTEMBER 6, 2024

Car rental giant Avis disclosed a data breach that impacted one of its business applications in August compromising customers’ personal information. Car rental company Avis notified customers impacted in an Augus data breach. ” reads the data breach notification letter sent to the impacted individuals.

Data breaches 133

Data breaches Identity Theft Hacking Cybersecurity 133

Malwarebytes

MAY 10, 2024

Dell is warning its customers about a data breach after a cybercriminal offered a 49 million-record database of information about Dell customers on a cybercrime forum. So, this is another big data breach that leaves us with more questions than answers. Check the vendor’s advice. Change your password.

Data breaches 142

Data breaches Passwords Phishing Big data 142