Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Tuesday 22 October 2024

Ransomware Operator Claims - Week 42 2024

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 14th October and 20th October 2024, kindly assisted by our partners.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels:

Monday 21 October 2024

Data Breaches Digest - Week 43 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 21st October and 27th October 2024.


22nd October

Bulk data collection on American citizens? US government wants your opinion

Data breaches against financial services drop

Employee laptop hack leaves crypto firm customers exposed

Threat actors prepare at least 1,000 new malicious domains ahead of US presidential elections

WazirX moved over $73 million crypto after data breach

Wells Fargo named in Infosys attack affecting 6 Million

21st October

50,000 Files Exposed in Nidec Ransomware Attack

225,000+ German B2B Leads Database Leaked on the Dark Web

A CISO’s guide to creating a cyber resilience toolkit

Active Directory Faces Greater Risks Than Ever in 2024

Addressing Vulnerabilities in Critical ICS Products: A Focus on Siemens, Rockwell, and Delta

AI scam targets Ripple holders and memcoin trader loses it all

AI-enabled voice phishing new threat to cybersecurity

Alleged Data Breach at PT Haleyora Power Exposes Employee Information

Anti-Bot Services Help Cybercrooks Bypass Google 'Red Page'

Australia’s New Scam Prevention Laws: What You Need to Know

Bank of Cyprus: Cyber-attack thwarted on Friday

Beast Ransomware Attacking Windows, Linux, And ESXi Systems

Biggest Education Industry Attacks in 2024

BlackSuit ransomware claims to have hacked Kansas City Hospice

Brazilian Police Caught the Hacker responsible for one of the Largest Personal Data Breaches ever

Bumblebee malware returns after recent law enforcement disruption

Caleb & Brown Client Data Leaked and Up for Sale

Canada: Texts claiming to be from the 'Ministry of Transportation' are scams

Chinese Nation-State Hackers APT41 Hit Gambling Sector for Financial Gain

Chinese Research Using Quantum System to Crack Encryption a ‘Cautionary Tale’

Cisco Confirms Security Incident After Hacker Offers to Sell Data

Cisco denies data breach exposed sensitive personal data

Community Day School (CDS) data breach spurs digital review and recommitment to student safety

Connecticut Attorney General Reaches Settlement In Webster Bank Data Breach

Critical Vulnerability at Epicor Software Corporation Exposes Sensitive Data of Over 6,300 Clients

Crypto Employee's Use of Laptop Outside of Work Cited in Data Breach Affecting 93K Transak Users

Crypto Hack: Transak Hit By Data Breach, 57,000 Users Affected

Cybersecurity in healthcare: How hackers get in and how organizations can protect themselves

Cyprus' critical infrastructure targeted by coordinated cyberattacks linked to pro-Palestine groups

Data Breach Statistics [2024] : Penalties and Fines for Major regulations

Data Resilience and Protection in the Ransomware Age

Did You Know? Email Remains First 'Go-To' for Cyber Attack

EigenLayer Twitter Account Hacked In Phishing Scam; Community Warned Of Risks

FBI Arrested Hacker Behind the Takeover of the U.S. SEC X account

FBI’s Most Wanted Hacker Arrested in Malpensa

Fidelity data breach confirmed, impacting 77K customers

Fortinet releases patches for undisclosed critical FortiManager vulnerability

Gambling in South Korea: Paradise Company warns of phishing scams

Genomics company 23andMe to pay up to $10,000 per person to victims of data breach

Hacked access tokens leveraged to breach Internet Archive anew

Hacker Advertises “Top Secret US Space Force (USSF) Military Technology Archive”

Hacker targets ESET’s Israeli partner by sending malware capable of wiping out computers

Hackers exploit Roundcube webmail flaw to steal email, credentials

Half of Organizations Have Unmanaged Long-Lived Cloud Credentials

High-risk vulnerability affecting UniFi Network Server

How Microsoft outplays scammers with clever virtual ‘honeypot’ traps

How to Meet the NCSC’s 14 Cloud Security Principles

If you’ve emailed the Internet Archive, “your data is now in the hands of some random guy”

Insurance Data Breach: Insurance Regulatory and Development Authority of India (IRDAI) Steps Up IT Security Audits

Internet Archive (Archive.org) Hacked for Second Time in a Month

Internet Archive Faces Yet Another Data Breach. Here’s What Happened

Internet archive hacked again: mass mail campaign after attack

Internet Archive hacker claims to still have access, responds to Zendesk support tickets

Internet Archive hackers sending email replies to support tickets

Internet Archive Struggles with Third Cyberattack in October

Internet Archive suffers third October cyber attack

Internet Archive was breached twice in a month

Japanese tech giant Nidec confirms 8Base data breach, company data published

Major Australian mechanic Ultra Tune suffers alleged cyber attack

Microsoft builds fake IT environments to lure hackers

Microsoft Phishing Scams Soar

MoneyGram class action claims data breach stole customer data

More of Internet Archive is back online, despite hackers infiltrating its helpdesk

Netskope Reports Possible Bumblebee Loader Resurgence

New Anti-Bot Services on the Dark Web Help Phishing Pages Bypass Google’s Red Page

New Cybersecurity Warning As 1,000 Elite Hackers Embrace AI

Nidec confirms ransomware attack leaked company data online

Over 6,000 WordPress hacked to install plugins pushing infostealers

Paystack, VasTopUp Tell Customer to ‘Wait for Court Order’ After Hacker Stole His N130,000

Radisson's Country Inn & Suites hack claim, thousands reported breached

RANEPA University Systems Hacked, Sensitive Data Leaked

Ransomware threats surge in India: 90% of Indian respondents targeted by attacks in the past year, OpenText survey reveals

Ransomware-related breach disclosed by Nidec Corporation

Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers

Russia subjected to intrusions with LockBit 3.0, Babuk ransomware

Should the CISOs role be split into two functions?

SolarWinds Help Desk software vulnerability added to CISA catalogue

South Korea: Paradise Company warns of phishing scams via mobile apps

Spate of ransomware attacks on German-speaking schools hits another in Switzerland

Stolen Access Tokens Lead to New Internet Archive Breach

The current state of ransomware risk

The Digital Battlefield: Ransomware Threats Looming Over India

The Internet Archive breach continues

The Internet Archive Has Been Breached, Again

Transak hit by data breach, 92K users exposed

Transak was hacked. Attacker takes responsibility

UAE cybercrime: Abu Dhabi study exposes six electronic blackmail tactics

UK Biobank denies claims of data breach by 'race science' group

What is Vulnerability Management? Compliance, Challenges, & Solutions

What to do if you're hit by a cyber attack

Why hasn’t Fractal ID addressed its possible data breach?

Wiper malware deployed against Israel via spoofed ESET emails

Posted by at
Labels:

Wednesday 16 October 2024

Ransomware Operator Claims - Week 41 2024

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 7th October and 13th October 2024, kindly assisted by our partners.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels:

Monday 14 October 2024

Data Breaches Digest - Week 42 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 14th October and 20th October 2024.


20th October

Al Fajer School Database Breach Exposes Over 5,500 Records

French eCommerce Site Up for Auction on Dark Web

Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials

“HM Surf” macOS Flaw Lets Attackers Access Camera and Mic – Patch Now!

Internet Archive breached again through stolen access tokens

Internet Archive Breached Again - Third Cyber Attack In October 2024

Mirai-Inspired Gorilla Botnet Hits 0.3 Million Targets Across 100 Countries

North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data

Office 365 Access for Major U.S. Energy Company on Sale

Ransomware Rising – Understanding, Preventing and Surviving Cyber Extortion

Severe flaws in E2EE cloud storage platforms used by millions

T-Space Architects Potentially Targeted by Cicada3301 in Data Broker Ransomware Attack

19th October

Bank of Cyprus fends off cyber attack

Company Falls Victim To Cyber Attack After It Unknowingly Hires North Korean Hacker. See What Happened

Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks

Hacker Took Control of Your Phone? Here's What to Do

Hackers Claim They Breached Volkswagen, Carmaker Looks Bored

Hackers extort Globe Life with stolen data

Hackers Use Fake ESET Emails to Target Israeli Firms with Wiper Malware

Microsoft creates fake Azure tenants to pull phishers into honeypots

North Korea-linked APT37 exploited Internet Explorer (IE) zero-day in a recent attack

Omni Family Health data breach impacts 468,344 individuals

Ransomware in crisis: US government wants to stop endless cycle

UK: Are Londoners keeping their email secure?

Uttarakhand cyber attack: Initial probe points to breach at Bengaluru backup centre

18th October

68% of healthcare workers experienced a supply chain attack

93% of hackers believe enterprise AI tools create a new attack vector

Admin Access to Swalekha.in for Sale on Dark Web

Adobe Products are at high risk of cyber attack says Indian government, here is what you need to do

AI-driven phishing scam puts Gmail users at risk worldwide

Alleged Bitcoin hacker searched 'signs the FBI is after you'

Alleged Hacker Didn't Help His Case With Online Searches

Analyzing a Multi-Stage Malware Attack Targeting Digital Marketing Professionals

Arrested: USDoD, Anonymous Sudan, SEC X account hacker

Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign

BianLian admits responsibility for Boston Children’s Health Physicians hack

BianLian Ransomware Gang Claims Heist of Pediatric Data

Big Pharmacy Reportedly Targeted By RansomHub Hacker Group

Boston Children’s Health Physicians Faces Data Breach, BianLian Cyber Group Claims Responsibility

Boston Children's Health Physicians told to pay up or face leak by ransomware group

Brazil arrests hacker who allegedly breached National Public Data and Airbus

Calgary Public Library cybersecurity breach blamed on ransomware

Calgary Public Library's cybersecurity breach the result of suspected ransomware attack

Casio Ransomware Recovery Remains Uncertain

Casio recovery from ransomware attack uncertain, 'no prospect of recovery yet'

Cicada3301 Ransomware: What You Need To Know

CISA confirms Veeam vulnerability is being used in ransomware attacks

Cisco takes DevHub portal offline after hacker publishes stolen data

Clayton Properties Group reports data breach following vendor cyberattack

Comcast Third-Party Data Breach Impacts Over 230K After Ransomware Hits Debt Collection Agency FBCS

Critical Vulnerability in Kubernetes Image Builder Exposes Nodes to Root Access

Crypto platform Radiant Capital says $50 million in digital coins stolen following account compromises

Cybersecurity, Windows users exposed to over 600 million cyber attacks every day

Data Breach at Birth Choice of San Marcos Caused by Cyberattack at National Diagnostic Imaging

Data Breach Shakes Greece's Elite Crime-Fighting Unit

David’s Bridal class action claims retailer responsible for data breach

Despite massive security spending, 44% of CISOs fail to detect breaches

Disney’s Data Disaster: Hackers Expose Magic Kingdom’s Secrets

EigenLayer X Account Hacked, But EIGEN Price Holds Momentum

EigenLayer (EIGEN) X Account Hacked in Phishing Scam Less Than One Month After the Token’s Launch

EigenLayer X hackers who likely stole $800K now posting dog pics

EigenLayer’s Twitter gets hacked, phishing links posted

ESET partner breached to send data wipers to Israeli orgs

FBI Arrests Alleged Hacker in Spot Bitcoin False Tweet Probe

FBI Arrests Hacker Behind SEC X Account Fake Bitcoin ETF Announcement

FBI Arrests Hacker in SEC X Breach and Fake Bitcoin ETF Post That Triggered Price Surge

FBI nabs Alabama crook who hacked SEC’s X account

Feds unmask duo running one of the most prolific hacker gangs

Fidelity Investments Data Breach Impacts 77,000 Clients

Hacker Arrested for Invading Computers & Selling Police Data

Hacker behind 2.9-billion person data breach caught - what you can do to stay safe

Hacker Hits ESET's Partner in Israel to Send Malware That Can Wipe PCs

Hacker of Stark County Criminal Justice Information Systems (CJIS) database may have accessed driver's license info of 300,000

Hacker Poses as Israeli Security Vendor to Deliver Wiper

Hacker who ‘took about an hour’ to create program to infiltrate Nike website avoids jail

Hackers reportedly impersonate cyber firm ESET to target organizations in Israel

Has Westpac been the victim of a Cyber Attack? Online banking blocked for overseas customers

Hospitality industry faces a phishing scam surge

Infostealers deployed via phony Google Meet alerts

Insurance giant Globe Life says it's being extorted by hackers

Intel, AMD CPUs on Linux impacted by newly disclosed Spectre bypass

Internet Archive and Wayback Machine Resurrect After DDoS Wave

Internet Archive restores several services after website defacement, DDoS attack

Iran-linked actors target critical infrastructure organizations

Iranian Hackers Target Microsoft 365, Citrix Systems with MFA Push Bombing

Israel Tech Transfer Network Breached, Sensitive Data Compromised

Israeli organizations targeted with wiper malware via ESET-branded emails

macOS Vulnerability Could Expose User Data, Microsoft Warns

Malaysia: Expert hacker among five nabbed for stealing, selling personal data

Microsoft: Daily Cyberattacks Surge to 600 Million

Microsoft lost some customers’ cloud security logs

Microsoft Named Most Imitated Brand in Phishing Attacks

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser

New macOS vulnerability discovered: get the patch before attackers get access

North Korean fake IT worker scheme evolves to include extortion

North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data

Novel RomCom RAT variant launched against Ukraine, Poland

Omni Family Health says data breach impacted over 450,000 patients and employees

Organizations Paying Fewer Ransoms, Building Resilience

Phishing Attacks Are Abusing Legitimate Services to Avoid Detection

Radiant Capital hacker compromised developers’ devices

Radiant Capital suffers $50 million cyberattack amid DeFi platform vulnerabilities

RansomHub becomes dominant ransomware group in Q3 2024

Reducing risk for SMEs in the cyber attack age

Refresh of RomCom malware pops up in Ukrainian, Polish organizations

RRCA Accounts Management, Inc. Reports Ransomware Attack and Data Breach

Securities and Exchange Commission (SEC) hacker’s opsec was comical - but SIM swaps are no laughing matter

Securities and Exchange Commission (SEC) X Account's Alleged Hacker Arrested Over Fake Bitcoin ETF Post

Security Alert: EigenLayer’s X Account Hacked, $800K Stolen in Phishing Scam

Security Researchers Uncover Cicada3301 Ransomware Operations and Affiliate Program

SEP Database Breached, Sensitive Data Exposed

Southeast Asia reiterates pledge to collaborate amid growing cyber threats in AI era

Tech giant Nidec confirms data breach following ransomware attack

Thailand: Call center gang arrested in Chonburi, raising concerns over data breach

The US government is getting fed up with ransomware payments fueling endless cycle of cyberattacks

U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign

US: Agents arrest alleged SIM swap hacker

US Arrest Man for Securities and Exchange Commission (SEC)’s X Account Hack

Venezuelan Government Web Domain Access for Sale on Dark Web

Vietnam’s retail sector faces rising ransomware threats

Virginia prosecutor sues alma mater Georgetown over data breach

What to do if your iPhone or Android smartphone gets stolen?

Zscaler report reveals rise in global ransomware attacks

17th October

77,000 people exposed in massive data breach

A Quarter of Cybersecurity Leaders Want to Quit

Alabama Man Arrested for Securities and Exchange Commission (SEC) Account Takeover that Manipulated Bitcoin Prices

Alabama man arrested in breach of Securities and Exchange Commission (SEC) social media account

Alleged hacker behind fake SEC Bitcoin ETF post arrested

‘Anonymous Sudan’ Hacker Charged with Attempted Homicide via Cyberattacks on Hospitals

Apparel maker Varsity Brands says data breach impacted over 65,000 customers

BianLian ransomware claims attack on Boston Children's Health Physicians

Bitfinex Hacker Deserves 5-Year Sentence for Laundering $8 Billion in Stolen Bitcoin: DOJ

Boston Children’s Health Physicians Announces Vendor Data Breach Affecting Patients and Employees

Boston Children's physician group suffers data breach

Brazil arrests USDoD hacker tied to FBI, National Public Data breaches

Brazilian police arrested the hacker who stole everyone’s Social Security Number (SSN)

BSN Sports and Varsity Spirit Parent Hit by Data Breach

Businesses paying ransomware ransoms doubles in 2024

Casio says ‘no prospect of recovery yet’ after ransomware attack

Change Healthcare Ransomware Attack Cost to Rise to $2.87bn in 2024

Check Point Research Unveils Q3 2024 Brand Phishing Trends: Microsoft Remains Most Imitated Brand as Alibaba and Adobe Enter Top 10

Cicada3301 ransomware affiliate program infiltrated by security researchers

Cicada3301 Ransomware Targets Critical Sectors in US and UK

CISA Seeks Feedback on Upcoming Product Security Flaws Guidance

CISA, FBI Release Product Security Bad Practices Catalog: A Step Towards Safer Software

ClickFix Attack: Fake Google Meet Alerts Install Malware on Windows, macOS

Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk

Critical Veeam Vulnerability CVE-2024-40711 Exploited by Ransomware Groups

Cyber pros infiltrate ransom gang: here’s how they work

Data breaches fall but AI & ransomware challenge financial services

DeFi Radiant Had $50 Million in Crуpto Stolen

Despite the Devastation, the National Public Data Breach Is Anything But Irregular

Employers beware: North Korean hackers could be posing as your latest IT hire

Expert advice to combat rising ransomware & phishing

Fake Google Meet conference errors push infostealing malware

Fake Google Meet pages deliver infostealers

Fake North Korean IT Workers Infiltrate Western Firms, Demand Ransom

FBI arrest Alabama man suspected of hacking SEC's X account

FBI arrests alleged hacker behind fake SEC bitcoin ETF X post

FBI Arrests Alleged SEC Hacker Linked to Fake Tweet Saying Bitcoin ETFs Were Approved

FBI Arrests Hacker Linked to SEC Bitcoin ETF X hack

Feds arrest man who allegedly participated in hack of the SEC’s X account, boosting Bitcoin’s price

Fidelity class action claims data breach compromised customer data

Fortinet finds phishing kits sold on the darknet to target US voters

GitHub Issues Urgent Security Advisory on Critical Vulnerability in GitHub Enterprise Server

Glimmer Of Good News On The Ransomware Front As Encryption Rates Plummet

Globe Life Faces Extortion After Hackers Steal Customer Data at a Subsidiary

Hacker accused of manipulating Bitcoin prices with a fake SEC tweet was arrested after allegedly searching 'what are some signs the FBI is after you'

Hacker allegedly behind attacks on FBI, Airbus, National Public Data arrested in Brazil

Hacker arrested for the fake SEC tweet that caused a Bitcoin price spike

Hackers are extorting Globe Life with stolen customer data

Hackers blackmail Globe Life after stealing customer data

How Far Along Is The Online Safety Bill’s Implementation?

How quickly do hackers exploit vulnerabilities? The answer may disturb you

Independent Russian news site rides out a week of DDoS incidents

Insurance giant Globe Life facing extortion attempts after data theft from subsidiary

Iran Targets Critical Infrastructure with Brute-Force Attacks

Iranian hackers set their sights on critical orgs’ passwords, CISA warns

Japan’s Nagoya Stock Exchange Hit by Cyberattack

Japan's ruling political party hit by cyberattack from alleged pro-Russian hackers

Kroger’s facial recognition plans draw increasing concern from lawmakers

Malaysia: Data breaches surge 1192% - Minister warns of national security threat

Malaysia Sees 1,192% Surge in Data Breach Cases

Maryland CEO Indicted for Defrauding Securities and Exchange Commission (SEC) with Fake Data Center Certifications

Microsoft Customers Facing 600M+ Cyber Attacks Every Day

Microsoft warns it lost some customer's security logs for a month

Microsoft warns of AI-driven cyber threats & ransomware rise

Most Australia and New Zealand IT and security leaders have fallen for a phishing attack

Native American Tribes Defend Their Very Heritage Against Ransomware

NIS 2 Compliance Deadline Arrives: What You Need to Know

NIS2 Confusion: Concerns Over Readiness as Deadline Reached

North Korea Escalates Fake IT Worker Schemes to Extort Employers

Number of Active Ransomware Groups Highest on Record

October Crypto Shock: Phishing Scams Drain $41 Million From Victims

Over 90% of phishing campaigns lead victims to malware

Phone-hacker Glenn Mulcaire loses bid to appeal against convictions

Play ransomware group claims major cyber attack on OzarksGo telecom

‘Pokémon’ Developer Game Freak Suffers Major Data Breach

Radiant Capital Hit By $50 Million Crypto Hack

Radiology practice must pay $1.85M to settle class action lawsuit stemming from cyberattack

RansomHub Overtakes LockBit as Most Prolific Ransomware Group

Ransomware Attacks Growing More Dangerous, Complex

Ransomware Attacks Tripled for Microsoft Customers Last Year

Ransomware Costs Surge for Education Sector

Ransomware Payouts Decline as Security Maturity Rises

Research observes threat activity targeting 2024 Presidential Election

Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program

Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant

September a quiet month for ransomware attacks

SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack

SolarWinds, Firefox, Windows Face Active Exploitation: CISA Issues Urgent Warning

Sophos warns of growing ‘quishing’ threat

Stormous ransomware gang claims hack of blockchain identity firm Fractal ID

Talos warns of Russian-speaking hackers attacking Ukrainian and Polish companies

The role of compromised cyber-physical devices in modern cyberattacks

Threat actors exploit zero days within 5 days, says Google’s Mandiant

Ticketmaster hit with data breach class action

Two-thirds of Attributable Malware Linked to Nation States

Two-thirds of healthcare organizations hit by ransomware

U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks

UK: GP practices impacted by major cyber attack to see local income protection

UK Intelligence Services to Shield Schools from Ransomware Attacks

Undercover North Korean IT workers now steal data, extort employers

US Charges Anonymous Sudan Members in DDoS Cybercrime Case

USDoD, the hacker allegedly behind attacks on FBI and Airbus, arrested in Brazil

Verizon Sends Out Data Breach Letters Following Leaked SSNs

Westmoreland County, Pennsylvania, Recovers $800K from Cyber Scam

What is the NIS2 Directive and Why Now?

Why companies are struggling to keep up with SaaS data protection

16th October

23andMe’s $30M Settlement Paying Out Up To $10K To Customers Impacted By Data Breach

$52 Million Marriott settlement to resolve data breach claims

70% of exploited flaws disclosed in 2023 were zero-days

ADT reports second data breach in 2 months

AI-powered scam targets 2.5 billion Gmail users in sophisticated phishing attacks

American River College: Data thieves attempt arts HomeBase data breach

Anthropic flags AI's potential to 'automate sophisticated destructive cyber attacks'

Anti-ransomware defenses improve amid rising attack volumes

Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack

Beyond ransomware: Navigating the perils of cyber extortion

Bitfinex Hacker Faces 5 Years, Prosecutors Seek to Deter Crypto Crime

Bitfinex Hacker Faces Five Years in Prison

Bitfinex Hacker Ilya Lichtenstein Should Serve 5 Years in Prison, DOJ Says

Brazil’s Polícia Federal arrested the notorious hacker USDoD

Casio Confirms Reports of Unauthorized Access and Subsequent Data Breach

China Says Volt Typhoon Is U.S. Espionage and Disinformation Campaign

Chinese Researchers Break RSA Encryption Using Quantum Computing

Chinese Threat Actor Targets OpenAI With Spear-Phishing Attacks

CISA Urges Improvements in US Software Supply Chain Transparency

CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability

Cisco confirms investigation amid data breach claims

Cisco investigates alleged data breach after hackers offer stolen data for sale

Cisco investigates data theft after offer on hacker forum

Cisco Looks into Possible Data Breach Following Alleged October 6th Cyberattack

Clayton Properties Group Announces Data Breach Following Cyberattack at Vendor Company

Coffee Lovers Warned of New Starbucks Phishing Scam

Company falls victim to cyber attack after unwittingly hiring North Korean hacker

Critical Kubernetes Image Builder flaw gives SSH root access to VMs

Cyber Attack Hits the Largest US Public Water Utility

Cyber onslaught: Microsoft reports 600 Million attacks a day, urges stricter penalties

Cyber Threats Escalating Beyond Ability to Defend, New NCSC Head Warns

Data breach at Intesa Sanpaolo under investigation

Defenders must adapt to shrinking exploitation timelines

Department of Public Safety (DPS) Data Breach Impacts Over 115,000 Texans

Ethical Hackers Embrace AI Tools Amid Rising Cyber Threats

Experts Play Down Significance of Chinese Quantum “Hack”

Fake LockBit, Real Damage: Ransomware Samples Abuse AWS S3 to Steal Data

Fidelity faces class-action lawsuit over August data breach

Fidelity hit with 2nd potential class action suit over data breach

FIDO Alliance Drafts New Protocol to Simplify Passkey Transfers Across Different Platforms

FIDO Alliance Proposes New Passkey Exchange Standard

FIDO's Frontier: Paving the Way for a Passwordless Future

Firm hacked after accidentally hiring North Korean cyber criminal

Fitzgerald, DePietro & Wojnas Issues Data Breach Letters Following June 2024 Cyberattack

From Misuse to Abuse: AI Risks and Attacks

From QR to compromise: The growing “quishing” threat

Funlab confirms ransomware attack

Game Freak data breach compromised Pokémon game source codes and beta builds

GitHub Patches Critical Flaw in Enterprise Server Allowing Unauthorized Instance Access

Hacker Charged With Seeking to Kill Using Cyberattacks on Hospitals

Hackers Abuse EDRSilencer Tool to Bypass Security and Hide Malicious Activity

Hackers target Ukraine’s potential conscripts with MeduzaStealer malware

Hacktivist group Anonymous Sudan dismantled by FBI, two arrested

Here’s how attackers are getting around phishing defenses

How to Protect Your Personal Information From Online Scammers

India Prime Target For Email, Ransomware, Malware Attacks

Iranian hackers act as brokers selling critical infrastructure access

It never gives up: why AI could be the perfect threat actor

Live Nation Hit with $5 Million Lawsuit Over Massive Ticketmaster Data Breach

MacOS bypassing VPNs and leaking traffic after update, report reveals

Malicious ads exploited Internet Explorer zero day to drop malware

Microsoft Customers Facing 600 Million Cyber Attacks Launched Every Day

Microsoft reveals ransomware attacks against its customers nearly tripled last year

Microsoft sees drop in ransomware reaching encryption phase

Microsoft Warns Nation-State Hackers, Ransomware, DDoS Attacks on the Rise

Mobile threats rising: 200 malicious Play Store apps just the tip of the iceberg

More Ransoms Being Paid and More Data Being Lost

Multi-Million Dollar Class Action Lawsuit Filed Against Live Nation Over Data Breach

NARSTCO Files Notice of Data Breach Following July 2024 Cyberattack

'Nationally significant' cyberattacks are surging, warns the UK's new cyber chief

New iPhone feature could expose employees’ personal information

North Korean Hackers Deploy Linux FASTCash Malware for ATM Cashouts

North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware

OpenText survey: rise in software supply chain attacks

Operation Toy Soldier: U.S. Indicts Russian Hackers for Cyberattacks on Ukrainan Government

Over half of tech leaders cite phishing as a top security concern

Pennsylvania food bank claimed as latest ransomware victim

Personal information for more than 115,000 Texans leaked in Department of Public Safety (DPS) data breach

Portugal: Most public entities affected by cyber attack back to normal

Proven Data Announces Advisory Amid Rising Akira Ransomware Threats

Quishing Threats Target Electric Vehicle Owners in Europe, Stealing Payment Information

Ransomware Losses Surge 68% in H1 2024

Ransomware survey reveals nearly a third of businesses suffered data loss in 2024

Ransomware threats surge with over 30 new groups this year

Ransomware Threats Surge in India: 90% of Indian Respondents Targeted by Attacks in the past year, OpenText Survey Reveals

Ransomware Threats Surge in India: OpenText Survey Reveals

Ransomware threats up in India

Remote Hiring Gone Wrong: North Korean Hacker Strikes Again

Russia's case against REvil hackers proceeds as government recommends 6.5-year sentence

SolarWinds Web Help Desk flaw is now exploited in attacks

Strengthening Kubernetes security posture with these essential steps

Sudanese brothers charged for ‘Anonymous Sudan’ attacks targeting critical infrastructure, government agencies and hospitals

Sudanese Brothers Charged for Cedars-Sinai Cyberattacks

Surge in Darknet Activity Ahead of 2024 US Election

Suspected State-Backed APT Group Compromised Air-Gapped Systems in European Government With Custom Malware Attack

Texas Tech health network cyber attack disrupts patient care in El Paso

The Insider Threat: Strategies to Safeguard Against Malicious Insiders

The latest in North Korea’s fake IT worker scheme: Extorting the employers

Ticketmaster and Live Nation hit with another class action lawsuit

U.S. Prosecutors Seek Five-Year Sentence for Bitfinex Hacker

UK Government Launches AI Safety Scheme to Tackle Deepfakes

Understand these seven password attacks and how to stop them

Unlocking the value of AI-powered identity security

US Charges Duo Behind Anonymous Sudan for Over 35,000 DDoS Attacks

US contractor pays $300K to settle accusation it didn't properly look after Medicare users' data

US disrupts Anonymous Sudan DDoS operation, indicts 2 Sudanese brothers

US prosecutors call for reduced five-year prison sentence for 2016 Bitfinex hacker Ilya Lichtenstein

US Prosecutors Seek Reduced Sentence for Bitfinex Hacker Ilya Lichtenstein

USDoD hacker behind National Public Data breach arrested in Brazil

Volkswagen downplays 8Base ransomware attack claims

Volkswagen monitoring data dump threat from 8Base ransomware crew

Walt Disney Company Facing Class Action Suit over Massive Data Breach

Wayback Machine back online, days after home entertainment-enabled attacks

What exactly’s going on with 23andMe?

Zscaler Report: Mobile, IoT, and Operational Technology (OT) Cyber Threats Surge in 2024

15th October

23andMe Data Breach: Settlement Could Pay $10,000 to Data Breach Victims

38% of organizations are at risk of critical exposures

44% of U.S. Organizations Experienced One or More Ransomware Attacks in the Last Year

53% of survey respondents admit to paying over $500,000 ransom

99% of UK Businesses Faced Cyber Attacks in the Last Year

87,000+ Fortinet devices still open to attack, are yours among them? (CVE-2024-23113)

Alleged Cisco data breach could affect Microsoft, Barclays, and SAP developer data

Alleged T-Mobile Data Breach Exposed by Threat Actor on Dark Web Forum

Android banking trojan stealing money: no antivirus software can detect it

ANY.RUN Discovers Tricky Phishing Attack Using Fake CAPTCHA

Are Password Managers Safe to Use?

Attackers deploying red teaming tool for EDR evasion

Australia Considers Mandatory Reporting of Ransom Payments

Australian entertainment company Funlab, which operates Strike Bowling and Holey Moley, targeted in ransomware attack

Australian law mandates reporting of ransomware payments

Axis Health System target of cyberattack; ransomware group demands $1.6 million

Beware: Ledger Users Targeted by Phishing Emails

British intelligence services to protect all UK schools from ransomware attacks

British Library finally restoring key services a year after cyber attack

Building Ransomware Resilience with Robust Cyber Incident Response

Calgary Libraries Hit by Cyber Attack After Launch of Tech-Forward Prototype Hub

Calgary Public Library forced to limit services after cyberattack

Casio confirms customer data compromised in ransomware attack

Casio confirms ransomware attack that compromised customer data

Central Tickets confirms data breach exposing personal information of users

Central Tickets data breach: what happened, has personal information been stolen and how to protect passwords?

Cerberus Android Banking Trojan Deployed in New Multi-Stage Malicious Campaign

Cheerleading behemoth suffers hacker attack, data exposed

China Accuses U.S. of Fabricating Volt Typhoon to Hide Its Own Hacking Campaigns

China Says Volt Typhoon Is U.S. Espionage and Disinformation Campaign

Cisco data breach: Hackers accessed source code

Cisco investigates possible data breach after IntelBroker attack

Cisco investigating data breach: what we know so far

Cisco Investigating Data Breach After Hacker Puts Data For Sale On Hacking Forum

Cisco probes alleged data breach after hacker claims sale of information

Crypto Victim Loses $1.57M in Shocking Permit Phishing Scam

Cyberattacks in global supply chain increasing

Darknet Activity Increases Ahead of 2024 Presidential Vote

Data breaches trigger increase in cyber insurance claims

EDRSilencer red team tool used in attacks to bypass security

Eight Million Users Install 200+ Malicious Apps from Google Play

Escalating Cyber Threats Demand Stronger Global Defense and Cooperation

Escalating Data Breach Disruption Pushes Costs to New Highs

Game Freak Confirms Cyberattack, Data Leaked

Game Freak Data Breach 2024: 2,600+ Employees’ Info Leaked

Generative AI in Security: Risks and Mitigation Strategies

Google Fights Back as AI-Powered Phishing Scams Surge

Hacker demands ransom from India’s largest health insurer after data leak

Hacker issues all 'easy-to-guess' passwords amid 'change now' warning

Hong Kong police bust fraud ring that used face-swapping tech for romance scams

How DDoS Botnet is used to Infect your Network?

How nation-states exploit political instability to launch cyber operations

India: Legal services firm asks government to probe Star Health data breach

India Ranks Second In APAC For Ransomware Attacks; Manufacturing Sector Hit The Hardest

India records the second highest volume of ransomware attacks in APAC

India second highest target for ransomware attacks in Asia Pacific

Indonesia’s E-Visa System Faces Data Breach, Exposing Tourists’ Personal Information

Insurer Aims to “Clawback” Business Email Compromise (BEC) Losses After £1.4m Success

Internet Archive currently read-only after attacks; may go offline again

Intesa Sanpaolo Alerts Authorities After Investigating the Employee-Orchestrated Data Breach

Intesa Sanpaolo apologizes for major data breach involving Italian Prime Minister

Iran, Russia and North Korea changed cyber attack tactics in the last year, says Microsoft

Ireland: Credit unions' urgent warning to members of potential data breach

Kohl’s class action claims retailer affected by third-party data breach

Lansing Community College (LCC) to settle data breach claims for $1.45 million

Ledger users targeted by malicious ‘clear signing’ phishing email

Live Nation Faces a Multi-Million Dollar Lawsuit Over Data Breach

Live Nation facing multi-million dollar class action lawsuit after huge Ticketmaster data breach

Live Nation Hit With Class Action Lawsuit Following Ticketmaster Data Breach

Malaysia ramps up cyber security defense to stem rising fraud and ransomware attacks

Maryville Addiction Treatment Center Announces Data Breach Stemming from Compromised Email Account

Medical billing provider Gryphon says cyber attack compromised the data of close to 400,000 patients

Microsoft says more ransomware stopped before reaching encryption

Millions at Risk: Jetpack Plugin Patches Critical Vulnerability

MoneyGram data breach allegedly caused five-day outage

Most Organizations Unprepared for Post-Quantum Threat

Nation-States Team Up with Cybercriminals for Attacks

National Australia Bank (NAB), Vodafone and Microsoft listed in alleged Cisco data breach

Nclose survey reveals rising ransomware threat to South African businesses

Nearly 400 US healthcare institutions hit with ransomware over last year

New ConfusedPilot Attack Targets AI Systems with Data Poisoning

New FIDO proposal lets you securely move passkeys across platforms

New Linux Variant of FASTCash Malware Targets Payment Switches in ATM Heists

New Malware Campaign Uses PureCrypter Loader to Deliver DarkVision RAT

New Telekopye Scam Toolkit Targeting Booking.com and Airbnb Users

Nigeria: Court ‘freezes’ 818 bank accounts indicted in N10 billion cyber-attack on Hope PSBank

Over 200 malicious apps on Google Play downloaded millions of times

Passkeys take yet another big step towards killing off passwords

Patch Now: GitLab Fixes Major Vulnerabilities in All Versions

Personal information for more than 115,000 Texans leaked in Department of Public Safety (DPS) data breach

Phishing email targets Ledger users of the crypto world

Phishing sites collect data posing as the “Freedom of Russia” Legion in Ukraine. Here’s how it works

Pokémon Developer Game Freak Suffers Major Data Breach

Ransomware and nation state-backed cyber attacks on the rise, Microsoft warns

Ransomware encryption down amid surge of attacks, Microsoft says

Ransomware Payments Are Doubling 2023 Totals

Ransomware survey by Hornetsecurity reveals nearly a third of businesses suffered data loss in 2024

Ransomware Survey Reveals Nearly a Third of Businesses Suffered Data Loss in 2024

Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates

Silicon Sickos: Data Breach of ‘AI Girlfriend’ Company Exposes Users Seeking Child Porn

Stress drives cyber pros to their limits

Taiwan visitors exposed in massive hotel booking data leak

The Rise of Zero-Day Vulnerabilities: Why Traditional Security Solutions Fall Short

Tri-City Healthcare says 2023 data breach impacted over 100,000 patients

TrickMo Banking Trojan Can Now Capture Android PINs and Unlock Patterns

US invented Volt Typhoon to hide its own cyber espionage, China says

Veeam Vulnerability Actively Exploited by Ransomware Gangs

Volkswagen Says IT Infrastructure Not Affected After Ransomware Gang Claims Data Theft

Well Chip Group Informs Of Cyber Attack To Its IT System

Wellfleet Group Provides Notice of Recent Data Breach

What We Know About the Shoe Show Data Breach

WordPress plugin Jetpack fixes nearly decade-old critical security flaw

WordPress Plugin Jetpack Patches Major Vulnerability Affecting 27 Million Sites

14th October

AI-Driven Phishing Attacks Target Gmail: How to Prevent Scammers from Taking Over Your Account

Alleged Data Breach Exposes MiPC Mexico Customer and Order Information

Aussie owner of Strike Bowling and other venues confirms ransomware attack

Australia Introduces Mandatory Ransomware Payment Reporting Law

Australian firms warned on rising spear-phishing threat

Beware of the New Gmail Scams That Are Fooling Security Pros

British Library slowly resuming service after cyber-attack

Can AI and automation properly manage the growing threats to the cybersecurity landscape?

Casio confirms customer data compromised in ransomware attack

Casio Confirms Data Breach as Ransomware Group Leaks Files

Casio confirms data breach in ransomware attack, personal data stolen

Casio Confirms Ransomware Outage and Data Breach

Casio says data potentially stolen in cyber attack

Casio says ransomware attack disrupted services, compromised customer data

Central Tickets confirms data breach after customer details exposed

Central Tickets Confirms Data Breach as Hacker Leaks Data of 1 Million Users

Central Tickets confirms data breach which exposed personal user information

CISA Urges Encryption of Cookies in F5 BIG-IP Systems

Cisco investigates breach after stolen data for sale on hacking forum

CISOs’ strategies for managing a growing attack surface

CISSP and CompTIA Security+ lead as most desired security credentials

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

DDoS Attack Takes Down World’s Largest Digital Library, Internet Archive

Fidelity Investments data breach impacted 77K customers

Fidelity Investments data breach impacts more than 77,000 customers

Fidelity Investments suffered a second data breach this year

Game Freak confirms staff data was hacked during data breach

Game Freak Data Breach Exposes Personal Information of Over 2,600 Employees

Game Freak Hit by Major Cyberattack, Leaks Include Future Pokémon Game Titles

GDPR: Data Subject Rights and Organisations’ Responsibilities

Gmail Users Beware: New AI-Driven Scam Steals Personal Data

Gmail users may be susceptible to AI-powered phishing scams, advised to stay vigilant

Gmail users targeted by AI-driven phishing attacks

Gmail users, beware of new AI scam that looks very authentic

Hacking with a BBQ Lighter: The Unlikely Method to Gain Laptop Access

Hawaii State Judiciary investigates data breach affecting 2,600 employees

How Russian cyber attack on NHS harmed patients and halved blood test capacity

How UK businesses can protect themselves from cyber attacks

Increased cyberinsurance claim sizes fueled by ransomware

India: Data Breach Alert! Government Issues Critical Warning for Google Users

India: Ransomware Attack on Uttarakhand State Data Center Disrupts Services; Authorities Initiate Probe

India’s biggest health insurer gets ransomware following data breach

Intel Broker Claims Cisco Breach, Selling Stolen Data from Major Firms

Internet Archive is back up as read-only after data breach

Internet Archive's Wayback Machine is back up after data breach - with a catch

Iran-linked hackers increasingly spy on governments in Gulf region, researchers say

Jetpack fixes critical information disclosure flaw existing since 2016

Madras High Court Petition Calls for Investigation into Star Health Insurance Data Breach

Nation-State Attackers Exploiting Ivanti CSA Flaws for Network Infiltration

National Public Data files for bankruptcy following a major data breach

National Public Data, the hacked data broker that lost millions of Social Security numbers and more, files for bankruptcy

New Cerberus Android Malware Variant Evades Security Tools

New FASTCash malware Linux variant helps steal money from ATMs

"Operation Kaerb" Takes Down Sophisticated Phishing-as-a-Service Platform “iServer”

Petition in Madras High Court seeks probe into Star Health Insurance data breach

Phishing tactics: The top attacks trends in 2024

Pokemon developer discloses breach, extent of leak remains a mystery

Pokemon developer Game Freak confirms breach after stolen data leaks online

Pokémon Developer Game Freak Suffers Data Breach

Pokémon Developer Game Freak Suffers Major Data Breach

Pokémon game developer confirms data breach exposing employee and game data

Pokémon Studio Game Freak Acknowledges Data Breach, Claims Over 2,000 Employees Are Compromised

Pokémon video game developer confirms its systems were breached by hackers

Ransomware attack compromises Casio data

Ransomware attack costs rising sharply in 2024, cyber insurer warns

Ransomware claims severity surges 68% in H1

Ransomware groups intensify pressure tactics using stolen data

Recently-patched Firefox bug exploited against Tor browser users

Robot vacuum cleaners yell racial slurs, chase pets after cyber attack

Scammers use AI to create scarily convincing phishing calls

Security gap: Hacker attacks on vacuum robots from Ecovacs

Security Systems Manufacturer STILSOFT Allegedly Breached

Skills Shortages Now a Top-Two Security Risk for SMBs

Streaming industry snooping on users on industrial scale

Supply Chain Attacks Can Exploit Entry Points in Python, npm, and Open-Source Ecosystems

Supply chain vulnerabilities are facilitating a surge in ransomware

Telekopye Scammers Target Booking.com and Airbnb Users

The biggest data breaches in 2024: 1 billion stolen records and rising

The Importance of Identity and Access Management in Safeguarding Your Enterprise

The Internet Archive is back as a read-only service after cyberattacks

Toxic Triad of Cloud Vulnerabilities Puts Businesses at Risk

TrickMo malware steals Android PINs using fake lock screen

U.S. Lawmakers, White House Move to Stem China Cyberthreat

University Medical Center (UMC) electronic health record systems restored over two weeks after ransomware attack

US Department of Defense (DoD) Tightens Cybersecurity Standards for Defense Contractors

Veeam vulnerability exploited to deploy malware via compromised VPN credentials

Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware

West Australian firm Road Distribution Services hit by Sarcoma ransomware

Wetherby Town Council: Apology over 'data breach' blunder as personal details mistakenly shared

Zero-day Flaws Exposed EV Chargers to Shutdowns and Data Theft

Posted by at
Labels:
Subscribe to: Posts (Atom)