Security Affairs

SEPTEMBER 27, 2023

DarkBeam left an Elasticsearch and Kibana interface unprotected, exposing records from previously reported and non-reported data breaches. DarkBeam has apparently been collecting information to alert its customers in case of a data breach. Sample of leaked data. What to do if your password was leaked?

Passwords 142

Passwords Data breaches Phishing Hacking 142

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services 114

Financial Services Data breaches Identity Theft Banking 114

Security Affairs

NOVEMBER 22, 2021

GoDaddy suffered a data breach that impacted up to 1.2 GoDaddy discloses a data breach that impacted up to 1.2 million of its customers, threat actors breached the company’s Managed WordPress hosting environment. ” said Demetrius Comes, GoDaddy’s Chief Information Security Officer.

Data breaches 123

Data breaches Passwords Accountability Phishing 123

Security Affairs

JANUARY 19, 2024

American global apparel and footwear company VF Corp revealed that the December data breach impacted 35.5 ” The company pointed out that it does not store Social Security numbers and financial information in its systems. VF Corp also added that it has found no evidence that customer passwords were stolen.

Data breaches 115

Data breaches Retail Insurance Passwords 115

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. Access to the affected legacy database has also been closed.”continues

Data breaches 96

Data breaches Telecommunications Banking Mobile 96

Security Affairs

OCTOBER 2, 2023

The European Telecommunications Standards Institute (ETSI) disclosed a data breach, threat actors had access to a database of its users. ” reads the data breach notification published by the European Telecommunications Standards Institute. The vulnerability on which the attack was based has been fixed.”

Telecommunications 113

Telecommunications Data breaches Technology Cybersecurity 113

Security Affairs

JANUARY 7, 2022

The appointment scheduling service FlexBooker discloses a data breach that impacted over 3.7 Stolen data are now available for sale on multiple cybercrime forums. The threat actors claim the stolen database contains customer information, including names, emails, phone numbers, hashed passwords, and password salt.

Data breaches 141

Data breaches Accountability Passwords Cybercrime 141

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Also, no customer account passwords were accessed. million of them.

Retail 116

Retail Data breaches Passwords Accountability 116

Malwarebytes

MARCH 16, 2022

In February 2019, a threat actor was able to access millions of email addresses and passwords. According to the complaint by the FTC this was made possible because CafePress failed to implement reasonable security measures to protect the sensitive information of buyers and sellers stored on its network.

Data breaches 113

Data breaches Passwords Authentication Social Engineering 113

Security Affairs

JANUARY 11, 2021

American technology company Ubiquiti Networks is disclosed a data breach and is notifying its customers via email. American technology vendor Ubiquiti Networks suffered a data breach and is sending out notification emails to its customers asking them to change their passwords and enable 2FA for their accounts.

Data breaches 116

Data breaches Passwords Accountability IoT 116

Security Affairs

AUGUST 26, 2023

Pôle emploi, the French government employment agency suffered a data breach that impacted 10 million individuals. The French government employment agency Pôle emploi suffered a data breach and is notifying 10 million individuals impacted by the security breach.

Data breaches 89

Data breaches Government Passwords Hacking 89

Security Affairs

DECEMBER 1, 2022

Data breaches can be devastating for organizations, these are 3 of the worst incidents that could have been prevented. Data breaches can be devastating for organizations and even entire countries. Eliminating the risk of a data breach is nearly impossible, but some things can be done to reduce it significantly.

Data breaches 97

Data breaches Passwords Social Engineering Encryption 97

Security Affairs

APRIL 14, 2023

Open-source media player software provider Kodi discloses a data breach after threat actors stole its MyBB forum database. Kodi has disclosed a data breach, threat actors have stolen the company’s MyBB forum database that contained data for over 400K users and private messages.

Data breaches 95

Data breaches Backups Passwords Accountability 95

Security Affairs

APRIL 21, 2023

The American Bar Association (ABA) disclosed a data breach, threat actors gained access to older credentials for 1,466,000 members. “The investigation determined that an unauthorized third party gained access to the ABA network beginning on or about March 6, 2023 and may have acquired certain information.”

Data breaches 93

Data breaches Passwords Education Accountability 93

Security Affairs

JANUARY 30, 2023

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. UK sports fashion chain JD Sports disclosed a data breach that exposed customer data from orders placed between November 2018 and October 2020.

Data breaches 94

Data breaches Retail Passwords Scams 94

Security Affairs

JANUARY 23, 2023

The recent Mailchimp data breach has impacted multiple organizations, some of them are already notifying their customers. The popular email marketing and newsletter platform Mailchimp recently disclosed a news data breach , the incident exposed the data of 133 customers. reads the post published by TechCrunch.

Data breaches 90

Data breaches Accountability Social Engineering Small Business 90

Security Affairs

JUNE 18, 2021

The supermarket chain Wegmans US Wegmans discloses a data breach, customers information was exposed on the Internet due to a misconfiguration issue. Exposed data include customers’ names, addresses, phone numbers, birth dates, Shoppers Club numbers, as well as e-mail addresses and Wegmans.com account passwords.

Data breaches 106

Data breaches Passwords Accountability Marketing 106

Security Affairs

JANUARY 25, 2023

Zacks Investment Research (Zacks) disclosed a data breach, the security may have exposed the data of 820K customers. Zacks Investment Research (Zacks) disclosed a data breach, the security incident may have affected the personal information of its 820,000 customers.

Data breaches 90

Data breaches Passwords Accountability Hacking 90

Security Affairs

AUGUST 31, 2022

The Russian subscription-based streaming service Start discloses a data breach affecting 7.5 The Russian media streaming platform START disclosed a data breach that impacted 7.5 ” Stolen data include email addresses, phone numbers, and usernames, while financial data were not exposed. million users.

Data breaches 87

Data breaches Passwords Banking Media 87

Security Affairs

MAY 3, 2021

Which are the most common causes of a Data Breach and how to prevent It? Data breaches are highly damaging and equally embarrassing for businesses and consumers. If you look at Verizon’s 2020 Data Breach Investigations Report, you can find some of the most common causes of data breaches.

Data breaches 136

Data breaches Social Engineering Engineering Network Security 136

Security Affairs

MARCH 19, 2023

The NBA (National Basketball Association) disclosed a data breach after a third-party firm providing a newsletter service was breached. The NBA (National Basketball Association) is notifying followers of a data breach after a third-party company providing a newsletter service was breached.

Data breaches 96

Data breaches Hacking Passwords Phishing 96

Security Affairs

JANUARY 30, 2021

US wireless carrier UScellular discloses data breach, personal information of customers may have been exposed and their phone numbers ported. US wireless carrier UScellular discloses a data breach that exposed personal information of its customers. ” reads the USCellular data breach notification.

Data breaches 138

Data breaches Wireless Retail Accountability 138

Security Affairs

NOVEMBER 1, 2020

A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. The threat actor is advertising the stolen data since October 28 on a hacker forum. Only RedMart, after being informed by Bleeping computer, disclosed a security breach. million (8.1

Data breaches 145

Data breaches Accountability Advertising Passwords 145

Security Affairs

MAY 8, 2023

NextGen Healthcare suffered a data breach, the security incident exposed the personal information of approximately 1 million individuals. Healthcare solutions provider NextGen Healthcare suffered a data breach that exposed the personal information of informing approximately one million individuals.

Data breaches 90

Data breaches Healthcare Identity Theft Software 90

Security Affairs

NOVEMBER 25, 2020

million settlement in a multi-state investigation of the data breach that the company suffered in 2014. million settlement over the 2014 data breach. In 2014, Home Depot revealed that the data breach impacted 56 million customers across the US and Canada. SecurityAffairs – hacking, Data breach).

Retail 119

Retail Data breaches Penetration Testing Password Management 119

Security Affairs

FEBRUARY 7, 2021

The website, and publisher of books, courses and articles for web developers, SitePoint discloses a data breach that impacted 1M users. The company has disclosed a data breach and notified its users via email. ” reads the data breach notification share by El Reg. Pierluigi Paganini.

Data breaches 100

Data breaches Passwords Cybercrime Accountability 100

CyberSecurity Insiders

JANUARY 30, 2023

JD Sports has assured that hackers accessed no passwords related to their accounts and issued an apology for failing to protect the customer info. The post Data Breach at Britain JD Sports leaks 10 million customers appeared first on Cybersecurity Insiders.

Data breaches 109

Data breaches Retail Identity Theft Social Engineering 109

Security Affairs

AUGUST 30, 2019

Foxit Software, the company behind the Foxit PDF reader app, disclosed a data breach that exposed customers’ information, including passwords. Foxit Software, the PDF software provider behind the Foxit PDF reader app disclosed a security breach that took place recently exposing customers’ information.

Data breaches 81

Data breaches Passwords Software Identity Theft 81

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. The attack against Neiman Marcus Group took place in May 2020, as a result of the attack, threat actors had access to customers’ information, including payment card data.

Data breaches 94

Data breaches Retail Passwords Accountability 94

Security Affairs

APRIL 11, 2020

San Francisco International Airport (SFO) disclosed a data breach, its websites SFOConnect.com and SFOConstruction.com were hacked last month. In March hackers compromised two websites of San Francisco International Airport (SFO) and now it disclosed a data breach. ” continues the data breach notice.

Data breaches 141

Data breaches Hacking Telecommunications Passwords 141

Security Affairs

SEPTEMBER 23, 2019

The online education platform for developers Thinkful suffered a security breach and is notifying the incident to its customers requiring them to reset their passwords. The company is notifying the incident to its users via email and is forcing a password reset in response to the incident. . Pierluigi Paganini.

Data breaches 81

Data breaches Passwords Education Advertising 81

Security Affairs

MAY 29, 2021

The FBI is going to share compromised passwords discovered during investigations with Have I Been Pwned (HIBP)’s ‘Pwned Passwords’ service. The Pwned Passwords service allows users to search for known compromised passwords and discover how many times they have been found in past data breaches.

Passwords 111

Passwords Data breaches Cybercrime Hacking 111

Security Affairs

MAY 20, 2023

Luxottica has finally confirmed the 2021 data breach that exposed the personal information of 70 million customers. BleepingComputer first reported the news, and Luxottica confirmed that the data breach is the result of a new security incident suffered by a third-party contractor that was managing its customer data.

Data breaches 93

Data breaches Retail Hacking Ransomware 93

Security Affairs

JANUARY 20, 2023

PayPal is sending out data breach notifications to thousands of users because their accounts were compromised through credential stuffing attacks. In other words, bad actors glean lists of breached usernames and passwords and run them against desired logins until they find some that work.

Data breaches 93

Data breaches Identity Theft Accountability Passwords 93

Security Affairs

JANUARY 13, 2023

Gen Digital, formerly Symantec Corporation and NortonLifeLock, warns that hackers breached Norton Password Manager accounts. Gen Digital, formerly Symantec Corporation and NortonLifeLock, informed its customers that threat actors have breached Norton Password Manager accounts in credential-stuffing attacks.

Password Management 94

Password Management Passwords Accountability Data breaches 94

Security Affairs

AUGUST 3, 2020

Havenly, a Denver-Based company, that realized an interior designer marketplace has disclosed a data breach that impacted 1.3 The US-based interior design web site Havenly has disclosed a data breach after the known threat actor ShinyHunters has leaked for free the databases of multiple companies on a hacker forum.

Data breaches 102

Data breaches Accountability Passwords Advertising 102

Security Affairs

AUGUST 8, 2022

Communications company Twilio discloses a data breach after threat actors have stolen employee credentials in an SMS phishing attack. Communications company Twilio discloses a data breach, threat actors had access to the data of some of its customers. SecurityAffairs – hacking, data breach).

Data breaches 92

Data breaches Social Engineering Phishing Accountability 92