Security Affairs

OCTOBER 23, 2023

The City of Philadelphia discloses a data breach that resulted from a cyber attack that took place on May 24 and that compromised City email accounts. The incident was discovered on May 24, but further investigation revealed that threat actors have had access to the compromised email accounts at least since March 2023.

Data breaches 110

Data breaches Identity Theft Accountability Scams 110

Malwarebytes

DECEMBER 18, 2023

The targeted system contained customer names, phone numbers, and email addresses among other customer account metadata, including system logs for one customer. In emails sent to MongoDB customers, MongoDB advises users to be alert about phishing and social engineering attacks that might use the leaked customer metadata to gain credibility.

Data breaches 100

Data breaches Social Engineering Phishing Authentication 100

SecureWorld News

APRIL 2, 2024

After weeks of denial, AT&T has finally acknowledged a massive data breach impacting 73 million current and former customer accounts. The telecom giant had initially claimed that a large trove of personal data leaked on the Dark Web did not originate from their systems. million former account holders."

Data breaches 81

Data breaches Identity Theft Authentication Accountability 81

Krebs on Security

JANUARY 19, 2023

T-Mobile today disclosed a data breach affecting tens of millions of customer accounts, its second major data exposure in as many years. APIs are essentially instructions that allow applications to access data and interact with web databases. .” Image: customink.com In a filing today with the U.S.

Mobile 295

Mobile Accountability Data breaches Identity Theft 295

Malwarebytes

SEPTEMBER 20, 2022

Major airline American Airlines has fallen victim to a data breach after a threat actor got access to the email accounts of several employees via a phishing attack. According to a published notice of a security incident , the data breach was discovered in July 2022. How it happened.

Data breaches 85

Data breaches Phishing Identity Theft Accountability 85

Malwarebytes

JANUARY 15, 2024

As is often the case these days, it turns out that the cyberincident was very likely a ransomware attack that included a data breach. Ransomware operators typically steal data from the compromised systems to use as extra leverage against the victim. The company has not so far specified the type of data that may have been stolen.

Data breaches 106

Data breaches Identity Theft Passwords Ransomware 106

Krebs on Security

MARCH 23, 2021

A phishing attack last week gave attackers access to email and files at the California State Controller’s Office (SCO), an agency responsible for handling more than $100 billion in public funds each year. A notice of breach posted by the California State Controller’s Office. Source: sco.ca.gov. .

Phishing 276

Phishing Data breaches Accountability Technology 276

Security Boulevard

SEPTEMBER 15, 2023

A data breach late last month of software development platform firm Retool led to the accelerated acquisition of one of its users and put a spotlight on an account synchronization feature that Google introduced earlier this year.

Data breaches 109

Data breaches Accountability Software Social Engineering 109

Bleeping Computer

JULY 27, 2021

UC San Diego Health, the academic health system of the University of California, San Diego, has disclosed a data breach after the compromise of some employees' email accounts. [.].

Data breaches 141

Data breaches Phishing Accountability 141

SC Magazine

JUNE 18, 2021

Carnival Corporation – which has been plagued by cyberattacks over the past few years – issued a breach disclosure on Thursday confirming hackers attacked email accounts and gained access to data about its customers and employees. The post Carnival discloses new data breach on email accounts appeared first on SC Media.

Data breaches 108

Data breaches Accountability Phishing Security Awareness 108

Approachable Cyber Threats

APRIL 17, 2023

Risk Level 3 Data breaches are a significant concern here in the digital age. million victims were impacted by a data breach in 2022 alone. Remember when we talked about Facebook , Marriott , easyJet , and J.Crew ’s data breaches in past years? They can even help generate secure passwords for you!

Data breaches 97

Data breaches Identity Theft Passwords Scams 97

Security Affairs

SEPTEMBER 20, 2022

American Airlines disclosed a data breach, threat actors had access to an undisclosed number of employee email accounts. American Airlines recently suffered a data breach, threat actors compromised a limited number of employee email accounts. SecurityAffairs – hacking, data breach).

Data breaches 94

Data breaches Accountability Phishing Hacking 94

Malwarebytes

NOVEMBER 7, 2023

After 1Password, BeyondTrust, and Cloudflare detected unauthorized log-in attempts to their in-house Okta administrator accounts, they reported the incidents to Okta who started an investigation. To gain access to that service account, the attacker compromised an Okta employee. 2FA that relies on a FIDO2 device can’t be phished.

Accountability 128

Accountability Passwords Data breaches Phishing 128

CyberSecurity Insiders

AUGUST 2, 2021

Florida Department of Economic Opportunity (DEO) has hit the news headlines for becoming a victim of a cyber attack that led to data breach of over 57,900 claimant accounts seeking unemployment benefits. Meanwhile, a digital advertising company named Reindeer from New York is trending on Google for accidental data exposure.

Data breaches 145

Data breaches Engineering Identity Theft Social Engineering 145

CyberSecurity Insiders

APRIL 21, 2023

ICICI Bank, an Indian bank with a business presence in over 15 countries, has become a victim of a data breach, leaking information of more than 3.8 According to sources reporting to Cybersecurity Insiders, the hackers accessed the information by exploiting a misconfigured cloud data bucket that had critical information stored on it.

Data breaches 120

Data breaches Banking Government Phishing 120

Approachable Cyber Threats

APRIL 17, 2023

Category Awareness, Guides Risk Level Data breaches are a significant concern here in the digital age. million victims were impacted by a data breach in 2022 alone. Remember when we talked about Facebook , Marriott , easyJet , and J.Crew ’s data breaches in past years?

Data breaches 98

Data breaches Identity Theft Passwords Scams 98

Security Affairs

JANUARY 22, 2024

Adaptive phishing campaigns are emerging as an increasingly sophisticated threat in the cybersecurity landscape. The phenomenon This phenomenon represents an evolution of traditional phishing tactics, as attackers seek to overcome defenses using more personalized and targeted approaches.

Phishing 109

Phishing Education Social Engineering Media 109

eSecurity Planet

AUGUST 22, 2023

With the ever-present threat of data breaches, organizations need to adopt best practices to help prevent breaches and to respond to them when they occur to limit any damage. And breaches will occur – because bad guys make a living by figuring out ways to circumvent security best practices.

Data breaches 93

Data breaches Big data Penetration Testing Cyber Attacks 93

Malwarebytes

JULY 25, 2022

Word is spreading of a compromise claimed to have accessed around 69 million user accounts. Data claimed to have been taken includes: Usernames Names Email address Date of birth Zip code Date of Birth Gender Country Registration email. In 2020, there were claims of ways to potentially gain access to user accounts.

Data breaches 82

Data breaches Accountability Passwords Password Management 82

Security Affairs

JANUARY 23, 2023

The recent Mailchimp data breach has impacted multiple organizations, some of them are already notifying their customers. The popular email marketing and newsletter platform Mailchimp recently disclosed a news data breach , the incident exposed the data of 133 customers. reads the notice published by the company.

Data breaches 87

Data breaches Accountability Social Engineering Small Business 87

Heimadal Security

APRIL 5, 2022

Threat actors managed to get access to internal customer support and account management systems at MailChimp, the email marketing company reported on Sunday. The hackers’ goal was to perform audience data theft and lead phishing cyberattacks.

Data breaches 88

Data breaches Cryptocurrency Phishing Marketing 88

Security Affairs

NOVEMBER 22, 2021

GoDaddy suffered a data breach that impacted up to 1.2 million of its managed WordPress customer accounts. GoDaddy discloses a data breach that impacted up to 1.2 million of its customers, threat actors breached the company’s Managed WordPress hosting environment. Pierluigi Paganini.

Data breaches 123

Data breaches Passwords Accountability Phishing 123

Security Affairs

JANUARY 30, 2023

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. UK sports fashion chain JD Sports disclosed a data breach that exposed customer data from orders placed between November 2018 and October 2020.

Data breaches 92

Data breaches Retail Passwords Scams 92

Malwarebytes

MARCH 21, 2023

The National Basketball Association (NBA) has notified its fans they may be affected by a data breach in a third-party service the organization uses. The email also warned about possible phishing attempts appearing to come from organizations associated with the NBA or basketball in general. Check the vendor's advice.

Data breaches 82

Data breaches Passwords Social Engineering Phishing 82

Identity IQ

JANUARY 19, 2022

5 Data Breach Trends to Anticipate This Year. In its recent annual Data Breach Industry Forecast, credit reporting agency Experian made five predictions for cybercrime and data breach trends to expect this year. Here are five data breach and cybercrime trends to anticipate this year.

Data breaches 109

Data breaches Scams Cybercrime Phishing 109

Security Affairs

AUGUST 8, 2022

Communications company Twilio discloses a data breach after threat actors have stolen employee credentials in an SMS phishing attack. Communications company Twilio discloses a data breach, threat actors had access to the data of some of its customers. SecurityAffairs – hacking, data breach).

Data breaches 90

Data breaches Social Engineering Phishing Accountability 90

CyberSecurity Insiders

APRIL 11, 2022

SuperCare Health, a California based healthcare firm that deals with patients suffering from respiratory ailments, has posted a data breach notice on its website. The post About 300,000 patient data leaked in data breach of SuperCare Health appeared first on Cybersecurity Insiders.

Data breaches 138

Data breaches Identity Theft Healthcare Phishing 138

Identity IQ

DECEMBER 20, 2023

2023: A Year of Record-Breaking Data Breaches IdentityIQ This past year has been an eye-opening year in the realm of digital security. Data breaches reached an all-time high, leaving a trail of identity theft cases. Businesses faced constant threats with phishing scams , malware , and other tactics.

Data breaches 67

Data breaches Identity Theft Cybercrime Social Engineering 67

Security Affairs

JUNE 2, 2021

What Data Was Leaked? Feedback message data contained Account id, feedback rating given, and users’ email addresses. Transaction data encompassed price, item purchased, time of purchase, payment provider, and in some cases IP address of the buyer. The AMT Games database leaked approximately 5.9

Data breaches 109

Data breaches Accountability Mobile Phishing 109

Centraleyes

APRIL 9, 2024

According to IBM’s recently released “Cost of a Data Breach” statistics report, the average financial toll of a data breach has surged to an unprecedented $4.45 Regional Disparities in Data Breach Costs The United States emerges with a significantly higher average cost of $9.4

Data breaches 52

Data breaches Cyber Insurance Insurance Ransomware 52

Malwarebytes

FEBRUARY 19, 2024

An attacker managed to compromise network administrator credentials through the account of a former employee of the organization. CISA suspects that the account details fell in the hands of the attacker through a data breach. CISA suspects that the account details fell in the hands of the attacker through a data breach.

Accountability 79

Accountability VPN Authentication Phishing 79

The Hacker News

AUGUST 9, 2022

Customer engagement platform Twilio on Monday disclosed that a "sophisticated" threat actor gained "unauthorized access" using an SMS-based phishing campaign aimed at its staff to gain information on a "limited number" of accounts.

Phishing 91

Phishing Data breaches Social Engineering Engineering 91

Hot for Security

JANUARY 29, 2021

USCellular, a Chicago-based mobile network operator, has revealed a data breach incident affecting an undisclosed number of customers. Two days later, the breach was discovered, prompting the company to reset employee passwords and remove the compromised systems from its computer network.

Data breaches 133

Data breaches Wireless Retail Malware 133

Security Affairs

APRIL 4, 2022

Threat actors gained access to internal tools of the email marketing giant MailChimp to conduct phishing attacks against crypto customers. During the weekend, multiple owners of Trezor hardware cryptocurrency wallets reported having received fake data breach notifications from Trezor, BleepingComputer first reported.

Phishing 117

Phishing Data breaches Cryptocurrency Social Engineering 117

Security Boulevard

FEBRUARY 2, 2022

Historically, account takeover (ATO) has been recognized as an attack in which cybercriminals take ownership of online accounts using stolen passwords and usernames. The post What You Need to Do Today to Protect Against Account Takeover Attacks appeared first on Blog. They use these credentials to deploy bots […].

Accountability 98

Accountability Social Engineering Data breaches Phishing 98

Hot for Security

MARCH 26, 2021

According to researchers, the leak included both new and previously breached login credentials from over 23,600 websites. Was your data exposed in the Cit0day breach? I don’t recall creating an account. Similar data dumps and collections of data breaches will undoubtedly pop up in the near future.

Data breaches 106

Data breaches Passwords Accountability Advertising 106

The Last Watchdog

AUGUST 19, 2021

Could be phished credentials. It’s too early to assess compliance to data loss regulations. Often inadvertent data breaches stem from a well-meaning employee trying to meet the needs of clients but without the technical systems to facilitate. Compromising that could make other unrelated accounts vulnerable.

Mobile 306

Mobile Data breaches Authentication Accountability 306