Security Affairs

APRIL 14, 2023

Open-source media player software provider Kodi discloses a data breach after threat actors stole its MyBB forum database. Kodi has disclosed a data breach, threat actors have stolen the company’s MyBB forum database that contained data for over 400K users and private messages.

Data breaches 95

Data breaches Backups Passwords Accountability 95

Krebs on Security

SEPTEMBER 13, 2023

The FBI responded by reverifying InfraGard members and by seizing the cybercrime forum where the data was being sold. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus , while promising to visit the same treatment on top U.S. But on Sept.

Cybercrime 286

Cybercrime Passwords Authentication Malware 286

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. Access to the affected legacy database has also been closed.”continues

Data breaches 98

Data breaches Telecommunications Banking Mobile 98

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Also, no customer account passwords were accessed.

Retail 119

Retail Data breaches Passwords Accountability 119

Security Affairs

NOVEMBER 22, 2021

GoDaddy suffered a data breach that impacted up to 1.2 million of its managed WordPress customer accounts. GoDaddy discloses a data breach that impacted up to 1.2 million of its customers, threat actors breached the company’s Managed WordPress hosting environment. We reset both passwords.

Data breaches 126

Data breaches Passwords Accountability Phishing 126

Security Affairs

JANUARY 19, 2024

American global apparel and footwear company VF Corp revealed that the December data breach impacted 35.5 VF Corp also added that it has found no evidence that customer passwords were stolen. million customers. VF Corporation is an American global apparel and footwear company that owns 13 brands.

Data breaches 118

Data breaches Retail Insurance Passwords 118

Security Affairs

JANUARY 20, 2023

PayPal is sending out data breach notifications to thousands of users because their accounts were compromised through credential stuffing attacks. PayPal announced that 34942 customers’ accounts have been compromised between December 6 and December 8. ” said Gal.

Data breaches 92

Data breaches Identity Theft Accountability Passwords 92

Malwarebytes

JULY 25, 2022

Word is spreading of a compromise claimed to have accessed around 69 million user accounts. Data claimed to have been taken includes: Usernames Names Email address Date of birth Zip code Date of Birth Gender Country Registration email. In 2020, there were claims of ways to potentially gain access to user accounts.

Data breaches 75

Data breaches Accountability Passwords Password Management 75

Security Affairs

FEBRUARY 7, 2021

The website, and publisher of books, courses and articles for web developers, SitePoint discloses a data breach that impacted 1M users. The company has disclosed a data breach and notified its users via email. ” reads the data breach notification share by El Reg. Pierluigi Paganini.

Data breaches 102

Data breaches Passwords Cybercrime Accountability 102

Hot for Security

FEBRUARY 9, 2021

billion user login combinations, was posted on a cybercrime forum last week. The mother of all data leaks, dubbed “Compilation of Many Breaches” (COMB) by its uploader, includes unique email and password combinations from more than 250 previous data breaches, such as Netflix, LinkedIn and Exploit.in.

Passwords 119

Passwords Data breaches Accountability Password Management 119

Security Affairs

JANUARY 25, 2023

Zacks Investment Research (Zacks) disclosed a data breach, the security may have exposed the data of 820K customers. Zacks Investment Research (Zacks) disclosed a data breach, the security incident may have affected the personal information of its 820,000 customers. ” reads the notice of data breach.

Data breaches 89

Data breaches Passwords Accountability Hacking 89

Security Affairs

APRIL 21, 2023

The American Bar Association (ABA) disclosed a data breach, threat actors gained access to older credentials for 1,466,000 members. According to BleepingComputer, 1,466,000 members were impacted by this breach. The bad news is that many members used a default password assigned by the platform and never changed it over the time.

Data breaches 93

Data breaches Passwords Education Accountability 93

Security Affairs

JANUARY 30, 2023

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. UK sports fashion chain JD Sports disclosed a data breach that exposed customer data from orders placed between November 2018 and October 2020.

Data breaches 94

Data breaches Retail Passwords Scams 94

Identity IQ

MARCH 2, 2021

If you’re still under the impression that hacking is restricted to hoodie-wearing individuals in darkened rooms, then you might be vastly underestimating the scale the data breach problem. . Last year alone more than 300 million consumers were impacted by data breaches, according to the Identity Theft Resource Center.

Data breaches 98

Data breaches Identity Theft Cybercrime Data collection 98

Security Affairs

DECEMBER 1, 2022

Data breaches can be devastating for organizations, these are 3 of the worst incidents that could have been prevented. Data breaches can be devastating for organizations and even entire countries. Eliminating the risk of a data breach is nearly impossible, but some things can be done to reduce it significantly.

Data breaches 98

Data breaches Passwords Social Engineering Encryption 98

Security Affairs

MAY 29, 2021

The FBI is going to share compromised passwords discovered during investigations with Have I Been Pwned (HIBP)’s ‘Pwned Passwords’ service. The Pwned Passwords service allows users to search for known compromised passwords and discover how many times they have been found in past data breaches.

Passwords 113

Passwords Data breaches Cybercrime Hacking 113

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. The attack against Neiman Marcus Group took place in May 2020, as a result of the attack, threat actors had access to customers’ information, including payment card data. Approximately 4.6

Data breaches 96

Data breaches Retail Passwords Accountability 96

Security Affairs

JANUARY 3, 2021

Data from major cyber security firms revealed that tens of billion records have been exposed in data breaches exposed in 2020. Below the list of top data breaches that took place in the last 12 months: May 2020 – CAM4 adult cam site leaked 11B database records including emails, private chats.

Data breaches 135

Data breaches Cybercrime Hacking Passwords 135

Security Affairs

MARCH 10, 2023

CPNI is information related to the telecommunications services purchased by the customers, including the number of lines for each account or the wireless plan to which customers are subscribed. ” reads a data breach communication sent by the company to the impacted customers. credit card data) or sensitive data (i.e. .”​

Data breaches 93

Data breaches Hacking Wireless Telecommunications 93

Security Affairs

MARCH 6, 2021

A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January. Since January, a series of mysterious cyberattacks that resulted in the hack of popular Russian-language cybercrime forums. The notice also included a PDF file allegedly containing data of forum users (i.e.

Cybercrime 145

Cybercrime DDOS Hacking Passwords 145

Krebs on Security

MARCH 13, 2019

[ NASDAQ: SZMK ] says it is investigating a security incident in which a hacker was reselling access to a user account with the ability to modify ads and analytics for a number of big-name advertisers. He acknowledged that the purloined account had the ability to add or modify the advertising creatives that get run on customer ad campaigns.

Accountability 214

Accountability Passwords Advertising Penetration Testing 214

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In 2017, crooks launched a phishing campaign against universities to compromise.edu accounts. ” reads the alert published by the FBI.

Cybercrime 135

Cybercrime Education Accountability Phishing 135

Security Affairs

AUGUST 8, 2022

Communications company Twilio discloses a data breach after threat actors have stolen employee credentials in an SMS phishing attack. Communications company Twilio discloses a data breach, threat actors had access to the data of some of its customers. SecurityAffairs – hacking, data breach).

Data breaches 92

Data breaches Social Engineering Phishing Accountability 92

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The security breach was first reported by BleepingComputer that also shared a copy of the data breach notification letter sent to the impacted customers.

Data breaches 121

Data breaches Hacking Banking Financial Services 121

Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The Have I Been Pwned data breach notification service now allows victims of the RedLine malware to check if their credentials have been stolen. Pierluigi Paganini.

Accountability 136

Accountability Malware Data breaches Passwords 136

Security Affairs

MAY 8, 2023

Western Digital is notifying its customers of a data breach that exposed their sensitive personal information, the incident took place in March. The company is sending customers data breach notification letters to confirm that threat actors have stolen sensitive personal information in the March attack.

Data breaches 81

Data breaches Backups Ransomware Wireless 81

Security Affairs

AUGUST 18, 2021

Yesterday T-Mobile confirmed a data breach but announced that it was still investigating the extent of the security breach. The company announced to have started a “deep technical review of the situation across our systems to identify the nature of any data that was illegally accessed.” Pierluigi Paganini.

Data breaches 100

Data breaches Mobile Telecommunications Wireless 100

Identity IQ

MAY 7, 2021

What is Account Takeover? Account takeover, also known as ATO, is a form of identity theft in which a malicious third party gains access to or “takes over” an online account. One of the primary reasons behind this massive rise in account takeover is the relative ease with which it can be done. Account Takeover Prevention.

Accountability 105

Accountability Data breaches Passwords Social Engineering 105

Security Affairs

MARCH 28, 2023

Australian loan giant Latitude Financial Services (Latitude) revealed that a data breach its has suffered impacted 14 million customers. The data breach suffered by Latitude Financial Services (Latitude) is much more serious than initially estimated. We will never contact customers requesting their passwords.”

Data breaches 91

Data breaches Financial Services Passwords Hacking 91

The Last Watchdog

OCTOBER 24, 2022

Employee security awareness is the most important defense against data breaches. It involves regularly changing passwords and inventorying sensitive data. There are several ways you can protect your business from data breaches. Change passwords regularly. Inventory your sensitive data.

Passwords 214

Passwords Security Awareness Data breaches Cybersecurity 214

Krebs on Security

AUGUST 25, 2023

And there are indications that fraudsters may already be exploiting the stolen data in phishing attacks. Countless websites and online services use SMS text messages for both password resets and multi-factor authentication. This may require stepping through the website’s account recovery or lost password flow.

Mobile 201

Mobile Cyber Risk Cryptocurrency Data breaches 201

Security Affairs

JUNE 13, 2023

million Zacks Investment Research users was leaked on a cybercrime forum. The availability of the archive was reported by the data breach notification service Have I Been Pwned , which notified Zecks. At the time, the company added that it had no evidence that financial data has been exposed due to the security incident.

Data breaches 89

Data breaches Passwords Cybercrime Encryption 89

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. According to the company, most of the username and password combinations are available for free, and 5 billion of the above credentials are “unique.”

Cybercrime 122

Cybercrime Antivirus Marketing Accountability 122

Cytelligence

DECEMBER 11, 2023

In recent developments that have sent shockwaves through the cybersecurity community, it has come to light that over 100,000 user account credentials of ChatGPT, a popular language model developed by OpenAI, have been stolen and sold on various dark web marketplaces. The consequences of this breach are far-reaching.

Accountability 52

Accountability Data breaches Identity Theft Penetration Testing 52

Security Affairs

APRIL 6, 2022

Block disclosed a data breach related to the Cash App investing app and is notifying 8.2 The data breach involved a former employee that downloaded some unspecified reports of its Cash App Investing app that contained some U.S. The post Block discloses data breach involving Cash App potentially impacting 8.2

Data breaches 116

Data breaches Cryptocurrency Accountability Banking 116

Security Affairs

MARCH 16, 2020

Aerial Direct’s data breach notification sent to the customers revealed that an unauthorized third party had been able to access customer data on 26 February through an external backup database. ” reads the data breach notification published by the company. Pierluigi Paganini.

Data breaches 107

Data breaches Telecommunications Passwords Advertising 107

Identity IQ

JUNE 7, 2021

The recent Verizon Data Breach Investigations report shows that global cybercrime is on the rise. Cybercrime Report Data. The report showed that phishing pumped up its frequency to being present in 36% of breaches, up from 25% last year.

Cybercrime 110

Cybercrime Social Engineering Data breaches Antivirus 110