Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment.

Cybercrime 133

Cybercrime Data breaches Technology Banking 133

Security Affairs

APRIL 6, 2025

Oracle confirms a cloud data breach, quietly informing customers while downplaying the impact of the security breach. Oracle confirms a data breach and started informing customers while downplaying the impact of the incident.

Data breaches 127

Data breaches Encryption Hacking Authentication 127

Security Affairs

JUNE 4, 2025

Luxury-goods conglomerate Cartier disclosed a data breach that exposed customer information after a cyberattack. Cartier has disclosed a data breach following a cyberattack that compromised its systems, exposing customers’ personal information.

Data breaches 99

Data breaches Cyber Attacks Manufacturing Banking 99

Krebs on Security

DECEMBER 19, 2024

Silent Push said Araneida is being advertised by an eponymous user on multiple cybercrime forums. Araneida Scanner’s Telegram channel bragging about how customers are using the service for cybercrime. In 2022, Araneida told fellow Breached members they could be reached on Discord at the username “ Ornie#9811.”

Hacking 249

Hacking Cybercrime Advertising Data breaches 249

Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive alleged that an auction on the site for data stolen from 10 million customers of Mexico’s second-largest bank was fake news and harming the bank’s reputation.

Data breaches 328

Data breaches Banking Cybercrime Marketing 328

eSecurity Planet

MARCH 3, 2025

The business of cybercrime Cybercriminals are no longer disorganized hackers. The report emphasizes that modern cybercrime is not about deploying a single exploit but rather about orchestrating multifaceted campaigns that combine speed, stealth, and sophistication. Evolving tactics in a digital world: should you care?

Threat Reports 110

Threat Reports Cybercrime Artificial Intelligence Social Engineering 110

Security Affairs

APRIL 13, 2025

Cell C, one of the biggest telecom providers in South Africa confirms a data breach following a 2024 cyberattack. The company founded in 2001 offers prepaid and postpaid mobile plans, data bundles and internet services, fiber broadband, roaming and international calling, SIM-only plans and device deals.

Data breaches 130

Data breaches Unstructured Data Identity Theft Healthcare 130

Security Affairs

FEBRUARY 4, 2025

Online food ordering and delivery platform GrubHub suffered a data breach that exposed the personal information of drivers and customers. This week the online food ordering and delivery firm GrubHub disclosed a data breach that exposed customer and driver information.

Data breaches 116

Data breaches Passwords Accountability Hacking 116

Security Affairs

MARCH 19, 2025

California Cryobank, the largest US sperm bank, suffered a data breach exposing customer information. The company disclosed a data breach that exposed customers’ personal information. ” reads the data breach notification letter shared with Maine Attorney General.”Out

Data breaches 110

Data breaches Banking Insurance Hacking 110

Schneier on Security

AUGUST 19, 2021

It’s a big one : As first reported by Motherboard on Sunday, someone on the dark web claims to have obtained the data of 100 million from T-Mobile’s servers and is selling a portion of it on an underground forum for 6 bitcoin, about $280,000.

Mobile 363

Mobile Data breaches Phishing Cybercrime 363

Security Affairs

APRIL 7, 2025

The service may thus involve directly handling the request to the platforms, up to delivering the data to whoever commissioned the operation. By simply paying the fee, usually in cryptocurrencies, the customer will receive the sensitive material ready to be exploited.

Cybercrime 140

Cybercrime Social Engineering Accountability Government 140

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 304

Data breaches Government InfoSec Passwords 304

Security Affairs

JANUARY 27, 2025

UK telecommunications firm TalkTalk disclosed a data breach after a threat actor announced the hack on a cybercrime forum. UK telecommunications company TalkTalk confirmed a data breach after a threat actor claimed responsibility for the cyber attack on a cybercrime forum and offered for sale alleged customer data.

Data breaches 71

Data breaches Telecommunications Cybercrime Hacking 71

Security Affairs

APRIL 11, 2025

Laboratory Services Cooperative discloses a data breach from October 2024 that exposed personal and medical info of 1.6 Laboratory Services Cooperative disclosed a data breach that impacted the personal and medical information of 1.6 ” reads the notice of data breach. million individuals.

Data breaches 97

Data breaches Insurance Banking Accountability 97

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital revealed thatthe ransomware attack it suffered last year has exposed sensitive health data for over 316,000 patients. The hospital revealed that the security breach exposed sensitive health data for over 316,000 patients. On December 25, 2023, a ransomware attack hit the Anna Jaques Hospital.

Data breaches 118

Data breaches Insurance Healthcare Ransomware 118

Security Affairs

MAY 15, 2025

Coinbase confirmed rogue contractors stole customer data and demanded a $20M ransom in a breach reported to the SEC. Coinbase said rogue contractors stole data on under 1% of users and demanded $20M; the data breach was disclosed in an SEC filing. The final impact remains under review.

Data breaches 87

Data breaches Banking Accountability Retail 87

Security Affairs

JANUARY 3, 2025

A recovery team, with help from a cybersecurity firm, worked to restore systems and assess the attack’s scope, including its potential impact on patient data. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,data breach)

Data breaches 78

Data breaches Ransomware Insurance Healthcare 78

Security Affairs

JANUARY 16, 2025

The law firm Wolf Haldenstein disclosed a data breach that exposed the personal information of nearly 3.5 The law firm Wolf Haldenstein disclosed a 2023 data breach that exposed the personal information of nearly 3.5 million individuals. million individuals.

Data breaches 97

Data breaches Identity Theft Consumer Protection Data collection 97

Security Affairs

DECEMBER 29, 2024

notifies customers of credit card data breach, after threat actors hacked a third-party app from its e-commerce provider. disclosed a data breach that exposed its customers’ credit card data after threat actors hacked a third-party application from its e-commerce providerBigCommerce.

Data breaches 83

Data breaches Computers and Electronics Hacking Wireless 83

Security Affairs

MAY 26, 2025

According to the data breach notification, the company identified affected individuals by March 31, 2025. ” reads the data breach notification sent to the impacted individuals. The company notified the US Department of Health and Human Services (HHS) that the data breach impacted 235,911 individuals.

Data breaches 73

Data breaches Identity Theft Healthcare Ransomware 73

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. In August 2024, a cyber attack hit the Port of Seattle , which also operates the Seattle-Tacoma International Airport. The attack impacted websites and phone systems.

Data breaches 97

Data breaches Ransomware Cyber Attacks Manufacturing 97

Webroot

APRIL 22, 2025

If a company you do business with becomes part of a data breach, cybercriminals may have full access to your confidential information. Unfortunately, data breaches are on the rise and affecting more companies and consumers than ever. billion people received notices that their information was exposed in a data breach.

Data breaches 75

Data breaches Identity Theft Passwords eCommerce 75

Krebs on Security

NOVEMBER 14, 2024

Shefel claims the true mastermind behind the Target and other retail breaches was Dmitri Golubov , an infamous Ukrainian hacker known as the co-founder of Carderplanet, among the earliest Russian-language cybercrime forums focused on payment card fraud. “I’m also godfather of his second son.” Image: U.S.

Retail 274

Retail Advertising Cryptocurrency Cybercrime 274

Security Affairs

OCTOBER 28, 2024

Free disclosed a cyber attack over the weekend after a threat actor attempted to sell the stolen data on a popular cybercrime forum. The threat actors had access to the internal management tool and gained access to some subscribers’ personal data. The seller also published a sample of the stolen data and some screenshots.

Cyber Attacks 127

Cyber Attacks Telecommunications Data breaches Banking 127

Security Affairs

OCTOBER 21, 2024

Poor cyber hygiene increases the risk of further data breaches and could undermine user trust. The breach may have exposed personal identification documents uploaded by users for Wayback Machine page removal requests, depending on the attacker’s Zendesk API access.

Internet 130

Internet Internet Data breaches Authentication 130

Security Affairs

SEPTEMBER 12, 2024

Fortinet disclosed a data breach after a threat actor claimed the theft of 440GB of files from the company’s Microsoft Sharepoint server. 440 GB of data available on my S3 bucket.” ” reads the announcement published by Fortibitch on a cybercrime forum. Guess what? Their Azure Sharepoint got leaked.

Data breaches 142

Data breaches Cybersecurity Cybercrime Hacking 142

Security Affairs

OCTOBER 20, 2024

CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent attack Omni Family Health data breach impacts 468,344 individuals Iran-linked actors target critical infrastructure organizations macOS HM Surf flaw in TCC allows bypass Safari privacy settings Two Sudanese (..)

Data breaches 119

Data breaches Cybercrime Cyber Insurance Marketing 119

Security Affairs

APRIL 15, 2025

Hertz Corporation disclosed a data breach after customer data was stolen via Cleo zero-day exploits in late 2024, affecting Hertz, Thrifty, and Dollar brands. Car rental giant Hertz Corporation disclosed a data breach that impacted its Hertz, Thrifty, and Dollar brands.

Data breaches 66

Data breaches Ransomware Software Hacking 66

Security Affairs

JUNE 17, 2025

Zoomcar disclosed a data breach impacting 8.4M Zoomcar discovered a data breach impacting 8.4M The company is investigating the security breach and has determined that the exposed information included names, contacts, and addresses. users after attackers compromised its systems and contacted the company staff.

Data breaches 69

Data breaches Passwords Ransomware Cyber Attacks 69

Security Affairs

MAY 15, 2025

Nova Scotia Power confirmed a data breach involving the theft of sensitive customer data after the April cybersecurity incident. This week, the company disclosed a data breach after the April security incident and revealed that threat actors stole sensitive customer data. Nova Scotia Power Inc.

Data breaches 73

Data breaches Energy and Utilities Accountability Insurance 73

Security Affairs

MAY 5, 2025

Kelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed. Benefits and payroll solutions firm Kelly & Associates Insurance Group, aka Kelly Benefits, announced that the impact of a recently disclosed data breach is much bigger than initially estimated.

Data breaches 67

Data breaches Insurance Hacking Ransomware 67

Security Affairs

JANUARY 20, 2025

HPE is probing claims by the threat actor IntelBroker who is offering to sell alleged stolen source code and data from the company. Last week, the notorious threat actor IntelBroker announced on a popular cybercrime forum the sale of data allegedly stolen from HPE.

Hacking 120

Hacking Cybercrime Data breaches Information Security 120

SecureWorld News

MARCH 27, 2025

In today's digital world, cybercrime is a threat to our private data and security. If they are not disposed of properly, they can leak toxic chemicals and sensitive data. What is cybercrime? Cybercrime is an online criminal activity that targets computer networks and devices.

Cybercrime 73

Cybercrime Computers and Electronics Passwords Firewall 73

Security Affairs

MARCH 20, 2025

A data breach at the Pennsylvania State Education Association exposed the personal information of over 500,000 individuals. The Pennsylvania State Education Association (PSEA) suffered a data breach that impacted 517,487 individuals. ” reads the data breach notification.

Education 66

Education Data breaches Identity Theft Insurance 66

Security Affairs

APRIL 24, 2025

Yale New Haven Health (YNHHS) announced that threat actors stole the personal data of 5.5 Yale New Haven Health (YNHHS) disclosed a data breach that exposed personal information of 5.5 YNHHS disclosed the data breach on April 11, 2025, it added that threat actors stole sensitive patient information.

Data breaches 69

Data breaches Healthcare Cybersecurity Internet 69

Security Affairs

OCTOBER 13, 2024

CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog Three new Ivanti CSA zero-day actively exploited in attacks Ukrainian national pleads guilty in U.S.

Data breaches 118

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 118

Malwarebytes

OCTOBER 14, 2024

Last week on ThreatDown: Hands-on-keyboard (HOK) attacks: How ransomware gangs attack in real-time Ransomware insurance is funding cybercrime, says White House official 5 tools IT admins should block right now Stay safe! Update now! Our business solutions remove all remnants of ransomware and prevent you from getting reinfected.

Data breaches 132

Data breaches Surveillance Insurance DDOS 132