Krebs on Security

DECEMBER 19, 2024

The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey. “We have been playing cat and mouse for a while with these guys,” said Matt Sciberras , chief information security officer at Invicti.

Hacking 255

Hacking Cybercrime Advertising Data breaches 255

Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment.

Cybercrime 131

Cybercrime Data breaches Technology Banking 131

Security Affairs

APRIL 6, 2025

Oracle confirms a cloud data breach, quietly informing customers while downplaying the impact of the security breach. Oracle confirms a data breach and started informing customers while downplaying the impact of the incident.

Data breaches 125

Data breaches Encryption Hacking Authentication 125

Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive alleged that an auction on the site for data stolen from 10 million customers of Mexico’s second-largest bank was fake news and harming the bank’s reputation.

Data breaches 334

Data breaches Banking Cybercrime Marketing 334

Security Affairs

APRIL 13, 2025

Cell C, one of the biggest telecom providers in South Africa confirms a data breach following a 2024 cyberattack. The company founded in 2001 offers prepaid and postpaid mobile plans, data bundles and internet services, fiber broadband, roaming and international calling, SIM-only plans and device deals.

Data breaches 127

Data breaches Unstructured Data Identity Theft Healthcare 127

Security Affairs

JUNE 19, 2025

Researchers discovered the largest data breach ever, exposing 16 billion login credentials, likely due to multiple infostealers. Researchers announced the discovery of what appears to be the largest data breach ever recorded, with an astonishing 16 billion login credentials exposed. The compilation (“rockyou2024.txt”)

Data breaches 114

Data breaches Identity Theft Passwords Hacking 114

Security Affairs

APRIL 7, 2025

In a nutshell, some criminal groups are exploiting compromised accounts belonging to law enforcement and other government agencies to illicitly forward Emergency Data Requests (EDRs) to major online platforms. By simply paying the fee, usually in cryptocurrencies, the customer will receive the sensitive material ready to be exploited.

Cybercrime 138

Cybercrime Social Engineering Accountability Government 138

Security Affairs

JUNE 4, 2025

Luxury-goods conglomerate Cartier disclosed a data breach that exposed customer information after a cyberattack. Cartier has disclosed a data breach following a cyberattack that compromised its systems, exposing customers’ personal information.

Data breaches 97

Data breaches Cyber Attacks Manufacturing Banking 97

Schneier on Security

AUGUST 19, 2021

The trove includes not only names, phone numbers, and physical addresses but also more sensitive data like social security numbers , driver’s license information, and IMEI numbers , unique identifiers tied to each mobile device.

Mobile 363

Mobile Data breaches Phishing Cybercrime 363

Security Affairs

MARCH 19, 2025

California Cryobank, the largest US sperm bank, suffered a data breach exposing customer information. The company disclosed a data breach that exposed customers’ personal information. ” reads the data breach notification letter shared with Maine Attorney General.”Out

Data breaches 108

Data breaches Banking Insurance Hacking 108

Security Affairs

FEBRUARY 4, 2025

Online food ordering and delivery platform GrubHub suffered a data breach that exposed the personal information of drivers and customers. This week the online food ordering and delivery firm GrubHub disclosed a data breach that exposed customer and driver information.

Data breaches 114

Data breaches Passwords Accountability Hacking 114

Security Affairs

JUNE 30, 2025

A ransomware attack on grocery giant Ahold Delhaize led to a data breach that affected more than 2.2 A ransomware attack on Dutch grocery giant Ahold Delhaize has led to a data breach affecting over 2.2 ” Ahold Delhaize determined that the data breach impacted 2,242,521 individuals and is notifying them. .

Data breaches 87

Data breaches eCommerce Retail Accountability 87

Security Affairs

JULY 9, 2025

Nippon Steel Solutions reported a data breach caused by hackers exploiting a zero-day vulnerability in their network equipment. Nippon Steel Solutions, a subsidiary of Japan’s Nippon Steel, disclosed a data breach, attackers exploited a zero-day vulnerability. The company provides cloud and cybersecurity services.

99

99

Security Affairs

DECEMBER 8, 2024

The investigation aimed to determine the extent of the activity, and whether individual personal information, if any, may have been accessed or acquired by an unauthorized third party. As part of the investigation, we engaged leading third-party cybersecurity experts experienced in handling these types of incidents.

Data breaches 116

Data breaches Insurance Healthcare Ransomware 116

Security Affairs

APRIL 11, 2025

Laboratory Services Cooperative discloses a data breach from October 2024 that exposed personal and medical info of 1.6 Laboratory Services Cooperative disclosed a data breach that impacted the personal and medical information of 1.6 “The specific information involved is not the same for everyone.”

Data breaches 96

Data breaches Insurance Banking Accountability 96

Security Affairs

JULY 3, 2025

A data breach at Kelly Benefits has impacted 550,000 people, with the number of affected individuals growing as the investigation continues. Benefits and payroll solutions firm Kelly Benefits has confirmed that a recent data breach has affected 550,000 individuals.

Data breaches 106

Data breaches Accountability Hacking Ransomware 106

Malwarebytes

JUNE 30, 2025

AT&T is set to pay $177 million to customers affected by two significant data breaches. These breaches exposed sensitive personal information of millions of current and former AT&T customers. Later reports indicated this breach started in 2019. Later reports indicated this breach started in 2019.

Data breaches 113

Data breaches Cybercrime Hacking Encryption 113

Security Affairs

MAY 15, 2025

Coinbase said rogue contractors stole data on under 1% of users and demanded $20M; the data breach was disclosed in an SEC filing. On May 11, 2025, the company received a ransom demand from a threat actor claiming to have customer and internal data. ” reads the filing with SEC. The final impact remains under review.

Data breaches 85

Data breaches Banking Accountability Retail 85

Security Affairs

JANUARY 3, 2025

“Our investigation was done in consultation with outside cybersecurity professionals who regularly investigate and analyze these types of situations to help determine whether any sensitive data had been compromised because of the incident. ” reads the incident notice published by the RUMC.

Data breaches 75

Data breaches Ransomware Insurance Healthcare 75

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. — Seattle-Tacoma Intl. .”

Data breaches 95

Data breaches Ransomware Cyber Attacks Manufacturing 95

Security Affairs

JANUARY 16, 2025

The law firm Wolf Haldenstein disclosed a data breach that exposed the personal information of nearly 3.5 The law firm Wolf Haldenstein disclosed a 2023 data breach that exposed the personal information of nearly 3.5 The law firm pointed out that it has no evidence the exposed data has been misused.

Data breaches 95

Data breaches Identity Theft Consumer Protection Data collection 95

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. that provides voice, video, data, and Internet telecommunications to consumers in France. The seller also published a sample of the stolen data and some screenshots. Free S.A.S.

Cyber Attacks 125

Cyber Attacks Telecommunications Data breaches Banking 125

Security Affairs

JUNE 23, 2025

The ransomware attack that hit McLaren Health Care in 2024 exposed the personal data of 743,000 individuals. McLaren Health Care is notifying over 743,000 people of a data breach discovered on August 5, 2024. ” reads the data breach notification letter shared with the Maine Attorney General’s Office.

Data breaches 64

Data breaches Insurance Identity Theft Ransomware 64

Security Affairs

DECEMBER 29, 2024

notifies customers of credit card data breach, after threat actors hacked a third-party app from its e-commerce provider. disclosed a data breach that exposed its customers’ credit card data after threat actors hacked a third-party application from its e-commerce providerBigCommerce.

Data breaches 80

Data breaches Computers and Electronics Hacking Wireless 80

Security Affairs

OCTOBER 21, 2024

Despite being informed weeks prior, the organization’s failure to rotate exposed API keys, particularly the Zendesk token with access to over 800,000 support tickets, reflects poor incident response. Poor cyber hygiene increases the risk of further data breaches and could undermine user trust.

Internet 127

Internet Internet Data breaches Authentication 127

Security Affairs

JANUARY 27, 2025

UK telecommunications firm TalkTalk disclosed a data breach after a threat actor announced the hack on a cybercrime forum. UK telecommunications company TalkTalk confirmed a data breach after a threat actor claimed responsibility for the cyber attack on a cybercrime forum and offered for sale alleged customer data.

Data breaches 69

Data breaches Telecommunications Cybercrime Hacking 69

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 310

Data breaches Government InfoSec Passwords 310

Webroot

APRIL 22, 2025

Whether its an email address, a credit card number, or even medical records, your personal information is incredibly valuable in the wrong hands. Because whether you know it or not, many companies are collecting and storing your private data. billion people received notices that their information was exposed in a data breach.

Data breaches 72

Data breaches Identity Theft Passwords eCommerce 72

Krebs on Security

NOVEMBER 14, 2024

for stealing data on nearly 10 million customers of the Australian health insurance giant Medibank. A week after breaking the story about the 2013 data breach at Target, KrebsOnSecurity published Who’s Selling Cards from Target? “I’m also godfather of his second son.” ” Dmitri Golubov, circa 2005.

Advertising 283

Advertising Retail Cryptocurrency Cybercrime 283

SecureWorld News

MARCH 27, 2025

In today's digital world, cybercrime is a threat to our private data and security. If they are not disposed of properly, they can leak toxic chemicals and sensitive data. What is cybercrime? Cybercrime is an online criminal activity that targets computer networks and devices.

Cybercrime 81

Cybercrime Computers and Electronics Firewall Hacking 81

Krebs on Security

OCTOBER 18, 2024

Brazilian authorities reportedly have arrested a 33-year-old man on suspicion of being “ USDoD ,” a prolific cybercriminal who rose to infamy in 2022 after infiltrating the FBI’s InfraGard program and leaking contact information for 80,000 members. USDoD’s InfraGard sales thread on Breached. population.

Social Engineering 287

Social Engineering Passwords Cybercrime Mobile 287

Security Affairs

MAY 26, 2025

The company notified law enforcement and attempted to delete the stolen personal information, suggesting that the organization suffered a ransomware attack. According to the data breach notification, the company identified affected individuals by March 31, 2025. The stolen information varies by individual.

Data breaches 71

Data breaches Identity Theft Healthcare Insurance 71

Security Affairs

OCTOBER 31, 2024

Peruvian Interbank confirmed a data breach after threat actors accessed its systems and leaked stolen information online. Interbank disclosed a data breach after a threat actor claimed the hack of the organization and leaked stolen data online. ” reads the statement published by the company.

Data breaches 127

Data breaches Financial Services Hacking Mobile 127

Security Affairs

JULY 2, 2025

Qantas has also set up a dedicated support line and webpage to keep customers informed, and will provide ongoing updates through its website and social media. “We Our customers trust us with their personal information and we take that responsibility seriously. “We ” Qantas Group Chief Executive Officer Vanessa Hudson said. “We

Data breaches 64

Data breaches Social Engineering Engineering Cybercrime 64

SecureWorld News

MAY 14, 2025

The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. This year marks the 25th anniversary of the FBI's Internet Crime Complaint Center, which allows the public to report cyber-enabled crime and is a key source for information on scams and cyber threats.

Cybercrime 81

Cybercrime Scams Cryptocurrency Internet 81

Security Affairs

JUNE 25, 2025

Mainline Health Systems disclosed a data breach that impacted over 100,000 individuals. The healthcare organization disclosed a data breach that impacted 101104 individuals. ” reads the data breach notification letter shared with the Maine Attorney General’s Office.

Data breaches 66

Data breaches Healthcare Hacking Cybersecurity 66

Tech Republic Security

MAY 15, 2025

Instead of paying the $20 million ransom, Coinbase offered the same amount of money for information leading to the attackers.

Data breaches 70

Data breaches Big data Social Engineering Cryptocurrency 70