Editor's Message

Welcome to DBD. PRiSM, our Ransomware Research Portal, has been updated to include detailed analysis for UK Countries, Australian and US States, and Canadian Territories. It continues to evolve and multiple worldwide organizations now use the platform for threat intelligence and historical research. If you have yet to take a look at PRiSM, we think you will find it a useful and insightful tool. Thanks again for all your support, it is very much appreciated. Stay safe. :)



Monday, 28 August 2023

Data Breaches Digest - Week 35 2023

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 28th August and 3rd September 2023.


3rd September

5 critical cybersecurity tips to keep everyone safe

Action Fraud warn over McAfee scam emails doing the rounds

Bangladesh: Poor cyber security puts banks at peril

BitBroweser hacker transfers 236.27 ETH to eXch mixer

Children's snack recalled after its website caught serving porn

Dis-Chem facing R10 million fine after client data breach

Kazakhstan blocks US government website for phishing

Kudos to North Mississippi Health Services for fast detection and disruption of attack

LockBit ransomware gang hit the Commission des services electriques de Montréal (CSEM)

Pizza Hut Australia customer data hacked; ShinyHunters claims to have more than 1 million customers’ information

PoC Exploit Released for Critical VMware Aria's SSH Auth Bypass Vulnerability

PSNI data breach: Two men released after Terrorism Act arrests

Ransomware and Data Breaches: Impacts Continue to Grow Louder

Ransomware attacks, cyber hygiene tips

Smishing Attack: How Criminals Use Text Messages To Steal From You

South African National Defence Force (SANDF) maintains it was not hacked, claims it may be an inside operation instead

The Top 5 NFT Scams to Look out for in 2023

University of Sydney data breach impacts recent applicants

Wichita: Local Data Breaches on the Rise

Woman who was wrongly linked to the PSNI on a poster fears she has been made a target for an attack, as two men are arrested under Terrorism Act over data breach

2nd September

Afni may pay over $1.8 million in data breach lawsuit

Chinese Smishing Triad Gang Hits US Users in Extensive Cybercrime Attack

Chrome extensions can steal plaintext passwords from websites

‘Cyber attack’ forces London school to delay pupils’ return by week

Deprived youth with poor learning skills most vulnerable to email scams

Dis-Chem issued with enforcement notice

Easy-to-Follow Checklist & Tips for Secure Remote Working

Ex-newsreader Angela Rippon among BBC stars targeted by Russian cyber attack

FBI Successfully Executes Operation To Take Down Qakbot Botnet

Financial scammers reap huge amounts of cash in thefts from Eden Prairie businesses and individuals

Freecycle users told to change passwords after data breach

FTX Bankruptcy Claims Agent Kroll Faces Data Breach, Sensitive Information Leaked

Hacker Group Anonymous Sudan Targets X To Force Elon Musk's Hand On Starlink

Hackers force shutdown of 2 of the world’s most advanced telescopes

How to prevent credit card information theft while shopping online?

How to spot a scam email and what you must NOT share online: Ex-cyber criminal reveals how to avoid con artists on the Internet

HSHS, Prevea confirm systemwide outage was caused by cyber attack

International authorities seize domain host used for ransomware, arrest 5

Kerala actor suffers cyber attack for highlighting farmers' plight

Maker of ‘smart’ chastity cage left users’ emails, passwords, and locations exposed

Many Brits found to not be able to identify scam websites

New ‘YouPorn’ sextortion scam threatens to leak your sex tape

Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges

Phone services restored at Carthage Area Hospital following cyber attack

PSNI data breach: police officers arrest two men under Terrorism Act

PSNI Data Breach: Two men arrested under the Terrorism Act following search in Portadown

PSNI data breach: Two men arrested under Terrorism Act in investigation over 'linked criminality'

QakBot malware network is dismantled in major crackdown

Ransomware: The Silent Threat to Data Security

'Russia-linked hackers' target Ministry of Defence (MoD) and leak thousands of documents online relating to some of Britain's most sensitive sites in 'potentially very damaging' security breach

Snake Ransomware Endangers Your Data: How Can You Stop It?

South African National Defence Force: We were not hacked, our data was leaked by criminal syndicates

These Scammers Have Defrauded Consumers of $65 Million Worldwide

Two men arrested by officers investigating Northern Ireland police data breach

US Security Firms Issue Increased Phishing Warnings As Employees Prepare To Work From Home For Big Labor Day Weekend

Watch out: ChatGPT makes cybercriminals smarter, too

1st September

7 LinkedIn Scams to Watch Out For

15 Security Best Practices For Companies

A data breach exposed private health information of more than 200,000 Medicaid clients in Indiana

ACSO of Texas, LP Data Breach Affects 278,491 Advance America in Texas

Adobe ColdFusion Critical Vulnerabilities Exploited Despite Patches

American Hospital Association (AHA) security leader sees 'AI-fueled cyber arms race'

At some point, SNAtch Team stopped being the Snatch ransomware gang. Were journalists the last to know?

Carthage, Claxton-Hepburn hospitals target of cyber attack

Classiscam Scam-as-a-Service Raked $64.5 Million During the COVID-19 Pandemic

Cognizant / TMG Files Notice of Data Breach Impacting the Confidential Information of Over 192k People

Cyber attacks: How agents can protect themselves and their client data

Cyber softens, ransomware attacks renew concerns

Cyber threats aimed at the insurance sector: Are you prepared?

Cyberattack blinded two of the most advanced telescopes in the world

Cybercriminals use research contests to create new attack methods

Cyberinsurance Takes Longer to Obtain, Costs More

Cybersecurity Tools Are New Targets For Nation-State Hackers

Debenham High School IT system hit by cyber attack

Deepfake Scams Are Becoming So Sophisticated, They Could Start Impersonating Your Boss And Coworkers

Dick’s Sporting Goods, Walmart, DHL, and MORE: Top Scams of the Week

Disadvantaged teenagers at greater risk of falling foul of email scams

Education Sector Heavily Targeted as the School Year Begins

Ex-Independent News and Media (INM) senior executives settle alleged data breach case

Exploit released for critical VMware SSH auth bypass vulnerability

Fake Signal and Telegram apps sneak malware into thousands of Android phones — delete these right now

Fighting Back Against Synthetic Identity Fraud

Free Decryptor Available for ‘Key Group’ Ransomware

Free decryptor released for Key Group ransomware

FTX, BlockFi, Genesis bankruptcy claimant data exposed in data breach

Geek Squad Email Scam – Explained and how to avoid it

Golf club maker Callaway says 1 million affected by data breach

Golf gear giant Callaway data breach exposes info of 1.1 million

Hacker gains admin control of Sourcegraph and gives free access to the masses

Hackers Target Telescopes, Forcing Them to Pause Operations

Hackers Target Twitter (X) in Cyber Attack to Pressure Elon Musk Over Starlink in Sudan

How Ducktail capitalizes on compromised business, ad accounts

How to Respond to a Data Breach

How to Spot Phishing Attacks and Stay Safe, According to Researchers

India: Supreme Court Registry issues advisory against phishing attack

Indiana Family and Social Services Administration warns of CareSource Medicaid data breach

Indies ‘lose key selling weeks’ following software cyber attack

Information Regulator pursues Dis-Chem over data breach

It's a Zero-day? It's Malware? No! It's Username and Password

Key Steps a CIO Should Take after a Ransomware Attack

Labor Day phishing threats rise as remote workers embrace holiday mode

Lawsuit Investigation into Forever 21 Data Breach

Malware top consumer threat from May to July 2023

Managed XDR Saved an MSP from Ransomware

Marriot Criminal Investigation: Data Breaches and Their Impacts

Mason Tenders’ District Council data breach class action settlement

Minneapolis Public Schools sending cyber attack notification letters

More Okta customers trapped in Scattered Spider's web

More than 200,000 Indiana Medicaid members possibly exposed in CareSource data breach

National Safety Council (NSC) data breach exposes credentials of NASA, Tesla, DOJ, Verizon, and 2K others

Nearly 540,000 people have SSNs leaked after cyberattack on retailer Forever 21

Network disruption was ransomware incident, Chambersburg Schools confirm

New Russian malware, dubbed ‘Infamous Chisel,’ identified targeting Binance, Coinbase, and Trust wallets

New SuperBear Trojan Emerges in Targeted Phishing Attack on South Korean Activists

NHS Tayside in fresh data breach as paperwork for hundreds of patients goes missing

North Korea’s Hacker Group Deploys Malicious Version of Python Package in PyPI Repository

North Korean malicious package targets Windows

Northern Ireland: Personal details of three PSNI officers posted on bus shelter as data breach fallout continues

Notification by Pareto Phone of data breach involving some Diabetes Australia (NSW and ACT) information

Open-Source Malware SapphireStealer Expands

Orrick, Herrington & Sutcliffe Sued Over Ransomware Attack and Data Breach

Pakistan: How ‘fake’ Federal Board of Revenue (FBR) emails can steal your data

Paramount Pictures data breach exposes personal data

Payroll provider cyber-attacks

Pennsylvania school district to stay open despite ransomware attack

Pentagon Names Russian Phishing Sites Gathering Information On Ukraine's Soldiers

PepsiCo mimicked by phishing fraudsters

Phishing Beyond Email: Social Media And Mobile Threats

Protecting Personal Data in the Banking Industry: Lessons from the Farage Controversy

Protecting Your Digital Assets: How to Safeguard Your Cryptocurrency and What to Do If It’s Stolen

PSNI: Details of serving officers on Derry bus shelter poster

Ransomware attackers are targeting exposed Microsoft SQL databases

ReasonLabs Summer 2023 Trends Report Reveals Top Consumer Security Threats

Retirement consulting firm Loren D. Stark reveals 2022 cyberattack

Russian cyber actors using “Infamous Chisel” malware

Russian hackers increase attacks on western companies

Russian State-Backed 'Infamous Chisel' Android Malware Targets Ukrainian Military

Smishing Triad: China-Based Fraud Network Exposed

Sophisticated Cyber-Espionage Group Earth Estries Exposed

Sourcegraph Discloses Data Breach Following Access Token Leak

Staying on alert for after-hours cyberattacks

Step by step: Security teams, don’t run before you can walk

Students and alumni possibly affected by third party data breach

The Data Center Ransomware Attack That Costs You Everything

The Future of Dark AI Tools: What to Expect Next?

Threat Actors Targeting Microsoft SQL Servers to Deploy FreeWorld Ransomware

TIAA Hit With Second Class-Action Suit Over MOVEit Hack

Topgolf Callaway Brands hacked, over a million golfers exposed

UK’s National Cyber Security Centre (NCSC) Warns Against Cybersecurity Attacks on AI

Ukraine cops shut down suspected digital fraud scheme

Understand the fine print of your cyber insurance policies

Unraveling EternalBlue: inside the WannaCry’s enabler

What Does the Ed Tech Explosion Mean for Student Privacy?

What Is a Website Defacement Attack and How Can You Protect Your Website?

What is 'Smishing Scam' and how to avoid it

When (And How) To Hire A VCISO For Your Company's Cybersecurity Program

Why is .US Being Used to Phish So Many of Us?

31st August

3 out of 4 Cyberattacks in the Education Sector Are Associated with a Compromised On‑Premises User or Admin Account

5 Ways to Protect Your Business Against Executive Impersonation Scams

13% of employees admit to falling for phishing attacks working at home

500k Impacted by Data Breach at Fashion Retailer Forever 21

A treacherous terrain

AI chatbots pose risk for business operations, warn UK cyber authorities

Businesses grappling with volatile and complex security landscape

Chambersburg Area School District Affected by Ransomware Attack

Chevron Federal Credit Union says MOVEit Transfer hack impacted over 90k customers

Chinese spies target Android users with fake Signal, Telegram apps

Cigna Health Data Leak: 17 Billion Records Exposed

Cisco VPNs with no MFA enabled hit by ransomware groups

Classiscam 2023: Global $64.5 million scam-as-a-service operation scales to target brands in 15 MEA countries

Classiscam fraud-as-a-service expands, now targets banks and 251 brands

Classiscam Spreads: $64.5M Scheme Targets 79 Countries

Classiscam threat group leverages automation to launch phishing attacks in 79 countries

Colorado: With recent data breaches, Attorney General urges private and public sector responsibility

Cyber crooks target Airbnb for fraudulent activities

Cybersecurity threat called ‘pretty serious’

Duolingo data breach impacted close to 3 million email addresses

Earth Estries' Espionage Campaign Targets Governments and Tech Titans Across Continents

Facebook Accounts Targeted by Vietnamese Threat Groups

Falmouth dog care business suffers 'traumatic and upsetting' hacker attack

Fashion retailer Forever 21 data breach impacted +500,000 individuals

FBI: Qakbot ransomware removed from thousands of infected computers

Fitbit may face €11B fine for alleged GDPR violations

Forever 21 data breach: hackers accessed info of 500,000

Forever 21 data breach affects half a million people

Free Key Group ransomware decryptor helps victims recover data

From disaster to digital resilience

From Simple Beginnings, ‘Classiscam’ Fraud Campaigns Go Global

FTX Data Breach Update: Sensitive Information Was Leaked – Here's the Latest

G20 Summit: Agencies on alert against cyber attack by hackers in Delhi

Gamaredon hackers target Ukrainian military orgs amid counteroffensive efforts

Gaston College Notifies 191k Individuals of February 2023 Data Breach

Group-IB detects Classiscam expansion: $64.5 million scam-as-a-service operation targets 251 brands in 79 countries

GRU Blamed for Infamous Chisel Malware Targeting Ukraine's Military Phones

GRU hackers attack Ukrainian military with new Android malware

GRU hacking tools targeting Ukrainian military devices detailed by Five Eyes

Hacker Attack Against a Vital Slovakian-Hungarian Advocacy Group

Hacker Group Anonymous Sudan Shuts Down X, Demanding Elon Musk’s Starlink in Their Homeland

Hackers Exploit Adobe ColdFusion Vulnerabilities to Deploy Malware

Hackers modify open-source ‘SapphireStealer’ malware, leading to multiple variants

Hackers Target Czech Banks, Demand Ukraine Funding Cuts

How to ensure DNS records don’t become a security hazard

How to protect yourself from 'vishing' scams

How to recover from a ransomware attack

India: Chief Justice of India (CJI) Chandrachud warns of fake Supreme Court website created for phishing attacks

India: Chief Justice of India (CJI) DY Chandrachud warns lawyers, litigants about fake Supreme Court website created for phishing attacks

India: Supreme Court Registry issues advisory against phishing attack impersonating Supreme Court website

India: Supreme Court Registry Issues Warning as Scammers Exploit Its Name in Phishing Scam

India: Supreme Court warns citizens of fake website stealing confidential information; How to stay safe

India: Supreme Court’s Chief Justice Raises Alarm Over Fake Website Threat: Caution Urged Against Phishing Attacks Targeting Lawyers and Litigants

Jordan: Greater Amman Municipality (GAM) deals with Cyber attack that cut off Internet

Kroll loses clients' bankruptcy claims data to a SIM-swapping attack

Lawsuit Accuses University of Minnesota of Not Doing Enough to Prevent Data Breach

LogicMonitor customers hacked in reported ransomware attacks

Lookout Survey Highlights Mobile Phishing Risk to Employees Working Remotely Ahead of Labor Day Weekend

Major data breach leaks medical info – Here’s what to do

MalDoc in PDF Attack: Hackers Hiding Malicious Word Files within PDFs

Mass Exploitation of MOVEit Transfer Software Targets Millions

Maximus health data breach hits 110K Pima County residents

Microsoft lashes out at UN over cybercrime treaty

MOVEit Data Breach at Pension Benefit Information (PBI) Affects Over 300k Customers of Standard Insurance Company

North Carolina school districts prepare for increasing threat of cyberattacks: 'Uptick in attacks'

North Korean Hackers Deploy New Malicious Python Packages in PyPI Repository

North Korean hackers behind malicious VMConnect PyPI campaign

Numbers Don't Lie: Exposing the Harsh Truths of Cyberattacks in New Report

One month later, Ranhill still hasn’t fully recovered from cyberattack

Online shopping scammers extend global reach

Operation Duck Hunt: A cybersecurity milestone in ransomware takedown

Optus requests Deloitte cyber attack investigation not be released by Federal Court

Pension Benefit Information (PBI) Data Breach Due to MOVEit Vulnerability Affects Customers of Continental Casualty Company

Phishing as a service continues to plague business users

Phishing attack on the Supreme Court of India website, Supreme Court issues alert

Ransomware Attacks: Analyzing Recent High-Profile Incidents and Their Implications

Remote Workforce Still Vulnerable In 2023 - How Can SMEs Help Stay Secure?

Rhysida ransomware group claims major cyber attack on Maryland's Prince George's County school

Rising cyberthreats loom over Africa’s digitalization push, experts raise concerns

Romanian prosecutors, police at US demand dismantled part of Qakbot malware infrastructure

Russia’s spies using new crude malware to target Android devices in Ukraine

Russia’s ‘Turla’ Group - A Formidable Cyberespionage Adversary

Russian APT Intensifies Cyber Espionage Activities Amid Ukrainian Counter-Offensive

SapphireStealer Malware: A Gateway to Espionage and Ransomware Operations

Should you be worried? AI’s risks, dangers, and concerns

Sourcegraph website breached using leaked admin access token

Strategies to Safeguard Your Business from Online Threats

Strengthening Brand Reputation: The Urgency Of DMARC Adoption In Cybersecurity

Surge in Cybercrime: Check Point 2023 Mid-Year Security Report Reveals 48 ransomware groups have breached over 2,200 victims

The Less-Obvious Fallout From a Cyber Attack

The Lure of Subject Lines in Phishing Emails

The Massive Hack of MOVEit Transfer Software: A Clop Ransomware Attack

The power of passive OS fingerprinting for accurate IoT device identification

Trillium Community Health, tech companies sued over data breach

Trojanized Signal, Telegram apps found on Google Play, Samsung Galaxy Store

Turnkey Realty data breach $600K class action settlement

Two of The World's Most Advanced Telescopes Remain Closed Following Cyberattack

UBS Slows Digitalization After Significant Cyberattack

University of Sydney caught up in third-party data breach

What does optimal software security analysis look like?

Why Are Healthcare Data Breaches So Expensive?

Why ransomware is still a threat to your cyber clients

30th August

58% of malicious emails contained spoof content

Adaptive AI Essential to Counter Rapid AI Adoption in BEC

AI Supercharges the Battle Against Online Crime and How Defensive AI is Transforming Cybersecurity

Alert: Juniper Firewalls, Openfire, and Apache RocketMQ Under Attack from New Exploits

Allwell Behavioral Health data breach $650K class action settlement

Alogent Holdings MOVEit Data Breach Affects Personal Information of Approximately 4,543,850

AlphV group takes credit for ransomware attack on Georgia county

ChatGPT, LLMs, and the Future of Cybersecurity

China-Linked BadBazaar Android Spyware Targeting Signal and Telegram Users

China-linked hackers spy on Android users through fake messenger apps

Chinese APT Group GREF Use BadBazaar in Android Espionage

Chinese Hackers Still Exploiting Barracuda ESG Flaw

Chinese Hackers Target US, Other Governments With Barracuda Flaw

Cost of a data breach 2023: Financial industry impacts

Cost of data breach in Australia has grown 32% in 5 years

Credentials of NASA, Tesla, Department of Justice (DoJ), Verizon, and 2K others leaked by workplace safety organization

Critical Vulnerability Alert: VMware Aria Operations Networks at Risk from Remote Attacks

Crooks Using Stealers and Stolen Cookies to Hack Airbnb Accounts

CrossLock Ransomware: In-Depth Analysis, Detection, and Mitigation

Cyber attack is a risk like any other – so manage it

Cyber defense makes up majority of cybersecurity budgets

DDoS attacks rise 40% in Q2 2023, affecting banks, gaming & e-commerce

Earth Estries Targets Government, Tech for Cyberespionage

FBI Dismantles QakBot Malware, Frees 700,000 Computers, Seizes $8.6 Million

FBI-Led Global Effort Takes Down Massive Qakbot Botnet

FBI-Led Operation Duck Hunt Shuts Down QakBot Malware

Flaw Exposes WP Migration Plugin to Hacks

Forever 21 discloses data breach: 500K+ affected

France's National Commission on Informatics and Liberty (CNIL) Calls For Cybersecurity Recommendations

GDPR used by new ransom gang to extort victims

GhostSec Claim Breaching Iranian Government Surveillance Software Tool

Hackers Can Exploit Windows Container Isolation Framework to Bypass Endpoint Security

Hacking campaign bruteforces Cisco VPNs to breach networks

Health Insurance Portability and Accessibility Act (HIPAA) - What You Need to Know

How Can AI Help You Prevent Phishing Attacks?

How Cyber Attack Can Ripple a Company's Operation

How did Clop get its hands on the MOVEit zero day?

How to Address the Digital Threats That Students Face in Online Education

How to Sidestep Generative AI Cybersecurity Risks

Hundreds of thousands trafficked into cyber scamming in Southeast Asia, UN says

Insuring against cyber attacks

International extortion group claims to have confidential information in month-long cyber attack on Connecticut hospitals

iPhone and Android camera mistake that just cost someone $20,000 and it’s all over in seconds – how to avoid it

Japan Plans Counter-Cyber Attack Grid for Indo-Pacific

Lawsuit accuses University of Minnesota of not doing enough to prevent data breach

LockBit Builder Leak Leads to Flood of Ransomware Variants

M&T customers in Connecticut impacted by global data breach

Malicious npm Packages Aim to Target Developers for Source Code Theft

Managing privacy risks: what small businesses need to know

Microsoft joins opposition to current version of UN cybercrime treaty

MMRat Android Trojan Executes Remote Financial Fraud Through Accessibility Feature

Montreal electricity organization latest victim in LockBit ransomware spree

National Cyber Security Centre (NCSC) Issues Cyber Warning Over AI Chatbots

Netgear releases patches for two high-severity vulnerabilities

Network technology giant Juniper warns users about denial-of-service bugs

New Android Banking Trojan Targets Southeast Asia Region

Paramount discloses data breach following security incident

PBI data breach impacted thousands of New York Life Insurance Company's customers

Performance-Enhanced Android MMRat Scurries Onto Devices via Fake App Stores

Phishing, smishing, the security is missing!

PurFood data breach exposes personal information of 1.2 million customers

Qakbot Botnet Disrupted, Infected 700,000 Computers Globally

Report Reveals Rural Arkansas Hospitals’ Concerns About Cybersecurity

Rhysida ransomware group claims major cyber attack on Prospect Medical Holdings's network

Rising cyber incidents challenge healthcare organizations

RoundPoint Mortgage Customers Affected by Sovos Compliance MOVEit Data Breach

Secureworks identifies malicious Qakbot ransomware campaign

Securities and Exchange Commission (SEC) cyber attack regulations prompt 10 questions for CISOs

Security leaders report need to balance human and machine identities

Some M&T Bank customer information hacked in massive data breach

Tesla notifying current and former Nevada employees about data breach. What we know

The removal of Qakbot from infected computers is just the first step

Trojanized Signal and Telegram apps on Google Play delivered spyware

UK cyber agency warns of potentially fundamental flaw in AI technology

University of Michigan restores internet access, still mum on security issue

Unmasking Trickbot, One of the World’s Top Cybercrime Gangs

US preservationist nonprofit suffers a ransomware attack; gets a ransom demand worth millions

VMware Aria vulnerable to critical SSH authentication bypass flaw

VMware fixes critical vulnerability in Aria Operations for Networks (CVE-2023-34039)

What should you do and know following a cybersecurity breach?

Why Criminals Keep Reusing Leaked Ransomware Builders

With Phishing Getting Harder to Spot, How Can Users Stay Protected?

WordPress migration add-on flaw could lead to data breaches

Worker sues staffing firm over data breach that released info on 104,660 workers

29th August

80% of organizations expect ransomware spending to increase

Abnormal Security: Microsoft Tops List of Most-Impersonated Brands in Phishing Exploits

Advanced Engineering: Avoiding cyber attacks in a world with generative AI

AI In Cybersecurity: Harmful Or Helpful?

Akira Strikes Again: Jasper High School Data Breach Exposes 60GB

APIs Becoming a Favorite Attack Vector for Adversaries

Average cost of a data breach in Australia up 32%

Begin Your IoT Project With A Security-First Approach

BlackCat/AlphV Ransomware Gang Claims Seiko Data Breach, Starts Leaking Stolen Information

Blue Cross Blue Shield of Arizona Confirms Data Breach at TMG Health Affected Over 47k AZ Blue Customers

Broward County Declines Investigation into Admin Data Breach

Can You Spot Phishing Emails? Test Your Awareness With These Quizzes

Chevron Federal Credit Union Files Notice of Data Breach Affecting Over 90k Consumers

Chinese APT Flax Typhoon uses legit tools for cyber espionage

Chinese hackers accused of using Barracuda bug against federal, local US agencies

Chinese Hacking Group Exploits Barracuda Zero-Day to Target Government, Military, and Telecom

CISA Ransomware Alert Demonstrates Need to Evolve Risk Management

Cisco VPNs under attack via Akira, LockBit ransomware

Citrix NetScaler Alert: Ransomware Hackers Exploiting Critical Vulnerability

CoinsPaid reveals how job offer led to $37m hack

Concerns mount over cybersecurity treaty

Cyber Expert Warns of Growing Misinformation Threat in the Digital Age

Cyberattacks Targeting Government Agencies on the Rise

Cybersecurity Firms Release Ransomware Reports, Revealing Considerable Increase in Cyberattacks

DarkGate Malware Activity Spikes as Developer Rents Out Malware to Affiliates

Data breach at PurFoods affects 1.2 million: medical and financial data compromised

Data breach at PurFoods exposes personal and medical information of 1.2 million customers

Defending Your Inbox: The Importance Of Effective Email Spam Filtering

DreamBus malware exploits RocketMQ flaw to infect servers

Duolingo Data Breach Exposes 3 Million User Emails

Dutch cloud provider Leaseweb halts services temporarily following cyberattack

Dwell time - from when an attack starts to when it’s detected - shrinks to 8 days in 2023

E-commerce Cyber Attacks Surge in 2023: Honda’s Breach and Strategies for Safeguarding Online Platforms

Easy-to-exploit Skype vulnerability reveals users’ IP address

Edtech Sees Faces Highest Cyber Attacks

Evotec’s Earnings Hit by Cyber Attack, but Partially Compensated by Partnerships

FBI announces it has dismantled global network of hacked computers used in major fraud scheme

FBI Dismantles Global Malware Network Qakbot Used For Ransomware Attacks

FBI operation tricked thousands of computers infected by Qakbot into uninstalling the malware

FBI takes down notorious 'Qakbot' hacking network that used 700K infected computers worldwide to steal hundreds of millions from unsuspecting targets in ransomware and financial fraud attacks

FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown

Florida State Attorney Won't Investigate Sharing of Cyber Attack Details

Four in Five Cyber-Attacks Powered by Just Three Malware Loaders

FTX Customers Hit by 'Withdrawal' Phishing Mails After SIM Swap Attack

Generative AI: A Boon or a Bane for Cybersecurity?

Hackers exploit critical Juniper RCE bug chain after PoC release

Hacking gangs form cybercrime syndicate dubbed the Five Families

Hamilton Health Sciences says 8 employees fired for medical record 'snooping'

HCA data breach class action lawsuit may include 11 million; Mission patients notified

Healthcare Institutions Advised to Prepare for Extended Downtime Following Cyberattacks

Here's What Your Breach Response Plan Might Be Missing

How Hackers Abusing ChatGPT Features For Their Cybercriminal Activities - Bypass Censorship

How the FBI nuked Qakbot malware from infected Windows PCs

Hungary: DDoS cyber attacks pose major new threat to media freedom

International ransomware network that victimized over 200,000 American computers this year taken down, FBI announces

IoT Security Risks and How to Prevent Them

Iran spyware breached and exposed by GhostSec

Is the cybersecurity community’s obsession with compliance counter-productive?

IT leaders alarmed by generative AI’s SaaS security implications

Japan’s cybersecurity agency breached by suspected Chinese hackers

Japanese agency discovers malicious PDF that bypasses detection

LockBit 3.0 Ransomware Variants Surge Post Builder Leak

Louis Garneau Sport customers’ cards got skimmed

Microsoft Warns of Adversary-in-the-Middle Uptick on Phishing Platforms

Mom’s Meals says data breach affects 1.2 million customers

More UK cops' names and photos exposed in supplier breach

Moscow helping cybercriminals operate with 'near impunity'

New Android MMRat malware uses Protobuf protocol to steal your data

New Enterprise Strategy Group Study Shows Cyber Attacks are Rapidly Increasing Despite Security Perimeter and Mitigation Strategies

New Facebook phishing scam scares page owners into sharing their password

New MMRat Android Trojan Uses Fake App Stores for Bank Fraud

New Ransomware Campaign Targets Citrix NetScaler Flaw

New report quantifies hospitals’ IoT and IoMT cybersecurity risk

Pay our ransom instead of a GDPR fine, cybercrime gang tells its targets

Phishing resistant hardware, the key to email security

Phishing-as-a-Service Gets Smarter: Microsoft Sounds Alarm on AiTM Attacks

Polish stock exchange, banks knocked offline by pro-Russian hackers

Privacy-enhancing technologies shouldn’t be an afterthought for startups

PurFoods Mom's Meals Reports Data Breach Exposing Social Security Numbers of Over 1.2 Million Consumers

Qakbot: cyber crime service taken out in international operation

Qakbot botnet dismantled after infecting over 700,000 computers

Qakbot botnet disrupted, malware removed from 700,000+ victim computers

Qakbot Malware Disrupted in International Cyber Takedown

QakBot malware platform taken down by FBI

Qatar: Scholarship, shopping scams surge as students return to school

Rackspace Faces Massive Cleanup Costs After Ransomware Attack

Ransomware Attack on Danish Hosting Providers Causes Almost Complete Data Loss for Customers

Ransomware Attack Specialist Tied to Citrix NetScaler Hacks

Ransomware Gang "Rhysida" Threatens Healthcare System: Sensitive Patient Data for Sale

Ransomware group exploits Citrix NetScaler systems for initial access

Report Reveals Growing Disparity in Cyber Insurance Landscape

Security and compliance challenges remain across distributed workforces

SMEs ignore cyber security at their peril

South East Cornerstone Public School Division (SECPSD) provides update on February cybersecurity breach

Specialist print supplier at centre of Met data breach

Study finds increase in cybersecurity attacks fueled by generative AI

Suspected Met Police data breach potentially exposes sensitive officer, staff information

TD Ameritrade Hit With Class-Action Suit Over MOVEit Hack

Tesla’s Data Breach That Exposed Over 75,000 Employees Was an Inside Job

Texas Amends Data Breach Notification Law, Updates Effective September 1

The £30k Solution to a £1.5M Ransom: A Cybersecurity Cautionary Tale

The Digital Age Dilemma: Traditional Backups vs. Modern Solutions

The U.S. Is Less Prepared to Fight Cybercrime Than It Could Be

Thief loots Escrow office, steals devices loaded with user data

Three Cybersecurity Tips That Could Help Prevent A Cyberattack

Trading Paints leak affected 270k users

Two lawsuits filed against Hub over data breach

Two suspects arrested following Poland railway hack

Understanding the Zero Trust API Security Model

University of Michigan severs ties to internet after cyberattack

University of Michigan shuts down network after cyberattack

University of Michigan shuts down school’s internet connections following ‘significant’ cybersecurity incident

US government email servers hacked in Barracuda zero-day attacks

US, European agencies dismantle Qakbot network used for ransomware and scams

VIPRE Q2 Email Security Report Reveals Malspam Attacks Up, News Sectors Targeted

VNS Health Confirms Data Breach at TMG Health Resulted in Data of 103,775 Consumers Being Leaked

What Is GoodWill Ransomware and How Can You Stop It Infecting You?

What This Year’s Data Breaches Reveal About Identity

X And LinkedIn Are Working On Adding Passkey Access For A More Secure Login Approach

28th August

3 Malware Loaders are Responsible for 80% of Attacks, ReliaQuest Says

10 Million Likely Impacted by Data Breach at French Unemployment Agency

20+ Malware Statistics You Need to Know in 2023

84% of top Middle East universities are not proactively blocking fraudulent emails from reaching students, staff, and partners

270k Trading Paints log-in details for sale in data breach

A whole new generation of LockBit ransomware could be here

Advanced analytics can help detect insider threats rapidly

AI can combat Colonial Pipeline-like cyberattacks that cripple hospitals, critical services

Attacks on Citrix NetScaler systems linked to ransomware actor

Australia: Consumers demanding more protection from data breaches

Average Indian firm hit by 2,152 cyber-attacks, 20% up Year-on-Year

Balancer Drained for Almost $1M Days After Disclosing Vulnerability

Century-old technology hack brought 20 trains to a halt in Poland

Check Point 2023 Mid-Year Security Report Reveals 48 ransomware groups have breached over 2,200 victims

Check Point Finds 48 Ransomware Groups Have Breached Some 2,200 Victims in First Half of 2023

Criminal hackers 'very likely' to pose threat to national security, economy in near term

Customer data compromised in Kroll cyberattack

Customers complaining on X are latest targets of blue-tick phishing scams

Customers ‘lost all data’ after ransomware attack, says Danish cloud host

Cyber-attack on Polish railways prompts investigation

Cyberattacks on Nigerian SMEs rise to 87%

Cyberattacks Targeting E-commerce Applications

Cyberthreats are taking center field

Developers Beware: Malicious Rust Libraries Caught Transmitting OS Info to Telegram Channel

Digital Identity: 6 Tips on Managing Personal Information

Duolingo Phishing Scams

Experts demand clarity as they struggle with cloud security prioritization

Experts Uncover How Cybercriminals Could Exploit Microsoft Entra ID for Elevated Privilege

Exploit released for Juniper firewall bugs allowing RCE attacks

Exposing the Unquestionable Toll: $13M Losses in the World of SIM Swap Scams

Five ICS Security Challenges and How to Overcome Them

Five Ways Strong Cybersecurity Culture Can Thwart Human Errors

Four common password mistakes hackers love to exploit

GCHQ bosses reveal first cyber-attack and how incident changed UK and Europe

Global cybercrime treaty could be ‘disastrous for human rights,’ NGOs warn

Google Ads Crypto Scam: How to Spot Redirects That Send Users to Fake Sites

Hackers are watching your startup. Not many are prepared for the attack

Health, payment info for 1.2M people feared stolen from Purfoods in IT attack

Hospitality Staffing Solutions faces class action lawsuit following data breach

How Can You Prevent This Online Threat?

How hacker stole R600K from Eastern Cape schools

HR-Themed Scams on the Rise: Time for HR To Own a Piece of Cybersecurity?

‘Incredible concern and anger’ among Metropolitan Police after hackers breach data

India: Ahmedabad Cyber Cops Grapple To Nix Rising Confidential Corporate Data Breach Cases

India: Government Issues Alert on 'Smishing' Scam: Steps for Online Safety

Inside Grand Theft Auto 6 (GTA 6) Hacker’s Fate For Leaks: A Tale Of Cyber Crime

International ransomware gangs are evolving their techniques. The next generation of hackers will target weaknesses in cryptocurrencies

Is Your MS Office Suite A Silent Threat To Data Privacy?

KmsdBot Malware Gets an Upgrade: Now Targets IoT Devices with Enhanced Capabilities

Kroll SIM-swap attack: FTX, BlockFi and Genesis clients’ info exposed

Kroll SIM-Swapping Attack Causes Data Breach at 3 Top Crypto Firms

Malaysia: Financial sector high on list of Cyber attackers

MalDoc in PDFs: Hiding malicious Word docs in PDF files

Medically-tailored food provider, PurFoods, discloses data breach

Metropolitan Police Investigates New Suspected Data Breach

Mom’s Meals discloses data breach impacting 1.2 million people

Moscow helping cybercriminals operate with 'near impunity'

Navigating the Aftermath: Restoring Trust and Rebuilding Security after a Data Breach

Nottinghamshire Police warns gamers about cyber crime and gives expert advice from National Cyber Security Centre

Organizations Detecting Ransomware Decline as the Volume and Impact of Targeted Attacks Continue to Rise

Phishing scam: Two of gang held in Delhi

Poland Arrests 2 Suspected Hackers for Train Disruption

Pôle emploi data breach exposed data belonging to ten million users

Prince George's County Public Schools: Stolen Data In Ransomware Attack May Be Posted Online

Proof-of-Concept (PoC) for no-auth Remote Code Execution (RCE) on Juniper firewalls released

Public Sector Cybersecurity: Why State & Local Governments Are at Risk

QR Code Phishing Attacks Spread

Ransomware Attack Cleanup Costs: $10M So Far for Rackspace

Ransomware Groups are Accelerating Their Attacks with Dwell Time Falling to Just 5 Days

‘Ransomware is almost certainly the most disruptive form of cybercrime facing Canada’

Reply URL Flaw Allowed Unauthorized MS Power Platform API Access

Rhysida claims responsibility for ransomware attacks on Prospect Medical Holdings

Securing applications: 4 common cyber attack types Web Application and API Protection (WAAP) can prevent

Security Threat After Cyber Attack on London Metropolitan Police Contractor

SIM swap against Kroll staffer leads to data breach

Spain warns of LockBit Locker ransomware phishing attacks

T-Mobile SIM-swapping attack on Kroll employee caused crypto platform data breach

Telegram Bot Enables Easy Fraud for Unskilled Hackers

The Chinese Computer Connection To The 2022 Suffolk Cyber Hack

The Netherlands: Security breach at land registry exposes millions of addresses

Three Persistent Data Security Challenges Organizations Need To Address Now

UK’s Metro Bank Issues Warning Against Increase in Malware Attacks

Urgent warning for thousands of Aussies over Ubank text message claiming spending limit has been restricted

US food delivery service PurFoods discloses data breach

Virtual Patching: what is it? Your Defense Against Exploits and Threats

Watch Out for This New Phishing Scam on X/Twitter

Why API Security Is Everyone’s Business

Why hospitals should prepare for a month of downtime after cyberattack