Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Monday 6 November 2023

Data Breaches Digest - Week 45 2023

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 6th November and 12th November 2023.

12th November

AI vs AI: How AI is being leveraged to launch sophisticated attacks

Australia Faces Cybersecurity Threat as Ports Grapple with Ongoing Disruptions

Australian Nonprofit Cyber Security Is So Poor It Might Be Affecting Donations

Boeing confirms ransomware attack

Chess.com Faces Second Data Leak: 476,000 Scraped User Records Leaked

Courts faces cyber attack, investigation launched by parent company

Deepfakes reveal dark side of AI, call for stringent laws

DP World Australia makes 'significant progress' to restore operations after cyber attack

From All India Institute of Medical Science (AIIMS) Delhi to Indian Council of Medical Research (ICMR), data breaches haunt crores of Indians

GDPR and Email Security: What European Businesses Need to Know

Hackers swipe Booking.com, damage from attack is global

‘Hi Mum, it’s me’: how online scammers learnt to prey on our emotions

How do you know if your medical records have been hacked?

India: Digital Personal Data Protection Act (DPDP Act) - Managing data protection compliance in businesses

Indian hackers on cyber-attack spree on various countries

Iranian hackers launch malware attacks on Israel’s tech sector

LockBit ransomware leaks gigabytes of Boeing data

Michael Garron Hospital confirms some employee and clinician data stolen in cyberattack; Akira claims it stole 882,000 files

More than $100 million stolen from Poloniex crypto platform

National security at risk: Implications of personal data breaches

North Korea diversifying cybercrimes amid drop in value of cryptocurrency

Pakistan scammers rerouting cyber fraud money via India

Personal data breaches can't stop unless you pay attention to details

Pierce College cyberattack exposed 155,000 people’s data. Is the district at fault?

Preventing Cyberattacks Through Compliance

Protecting Your Digital Assets: A Comprehensive Guide to Application Security Worldwide

Qakbot Malware

Ransomware attacks dwell time drops 72% on firms' vigil

‘Serious’ Cyber Attack Halts Work at Four Australian Ports

Telecommunications Services of Trinidad and Tobago (TSTT) CEO issues statement on company data breach

The Lorenz ransomware group hit Texas-based Cogdell Memorial Hospital

The Philippines: String of Data Leak Shows How the Government is a ‘Privacy Nightmare’

The Role of Cybersecurity in Protecting Latin America’s Critical Tech Infrastructure

The State of Maine disclosed a data breach that impacted 1.3M people

Threat stats: What they tell us about the state of cybersecurity

Understanding the Importance of a Secure Web Gateway in Today’s Digital Age

Virgin Media issues urgent 'red flag' warning to customers

Why Do Criminals Use Bitcoin

11th November

10 Effective Strategies for Preventing Ransomware Attacks

Australia Ports Firm Fights To Restore Operations After Cyber Incident

Blood Bank Cybersecurity: Protecting Sensitive Data and Ensuring Patient Privacy in the Digital Age

Boeing suffers data breach by Lockbit ransomware group

Combating Cyber Threats: The Role of Global Endpoint Detection and Response in Internet Security

Companies still opting not to report cyber attacks

Cyber Attack Hits Australian Ports

Cyber attack to shut Australian ports for ‘days’

Cybercrime is on the rise: Roundup of 2023’s trends

DeFi Platform Raft Hacked for $3.3 Million, Attacker Burns Most of Stolen ETH – Here’s What Happened

DP World Australia’s port operations hit by cyber attack

Effluence Backdoor: A Lingering Menace in Atlassian Confluence Servers

Electric Ireland may have to compensate customers after this week’s data breach

Estonia: Public transport ticket sales restored after cyber attacks

Exploring the Importance of Messaging Security in Today’s Digital Business Landscape

Hackers stole personal data of over 800k Sutter Health patients in California data breach

Innovations in Perimeter Security: A New Era for Global Cybersecurity

Justin Sun’s Crypto Exchange Poloniex Exploited For $126 Million, Offers Hacker 5% Bounty

Learn How Scam-as-a-Service Automates Fraud by Unleashing a Swarm of Telegram Bots to Steal Data

Maine, Louisiana, Colorado, and Oregon Agencies Hit by Russian Cyber Consortium in Massive Data Breach

Massive data breach exposes 81 crore citizens’ Aadhaar, passport data

Microsoft Warns of Fake Skills Assessment Portals Targeting IT Job Seekers

‘Modern day bank robbery’: Still no answers 2 weeks after Toronto Public Library cyber attack

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform

Police takes down BulletProftLink large-scale phishing provider

Poloniex exchange hack likely linked to North Korea hacker Lazarus Group

QR code scams on the rise during festive celebrations; here’s how to be safe

“Sensitive data may have been exposed”: Toronto Public Library reports ransomware attack

Study Finds QR Code Phishing Is on the Rise

“Taking the chess pieces off the board” - how the 2024 threat landscape could be markedly different to anything we've seen before

The Most Alarming Vishing Statistics You Need to Know in 2023

The Role of Advanced Technology in Preventing Phishing Scams

Tri-City Medical Center Data Breach: A Cybersecurity Alert

World’s biggest bank, China’s Industrial and Commercial Bank of China (ICBC), hit by ransomware: 7 things you need to know

World's largest bank, ICBC, faces cybersecurity breach: Know all about LockBit 3.0 ransomware

10th November

1.3 Million impacted in the State of Maine data breach

6% of companies have not had a digital risk cyberattack since 2020

72% of security leaders are concerned about the adverse effects of AI

Alert: 'Effluence' Backdoor Persists Despite Patching Atlassian Confluence Servers

Amalosia (Fake Bath & Body Works), American Express, and Navy Federal Credit Union: Top Scams of the Week

An entire state's population just had its data stolen by a ransomware group

Android spyware delivered through infected news site targets Urdu speakers in Kashmir

BlackCat Ransomware Attack Disrupted Healthcare Giant Henry Schein, Terabytes of Data Stolen

BlueNoroff hackers plan new crypto-theft attacks

Boeing data published by Lockbit hacking gang

Brazen ransomware attack on US unit of Chinese banking giant has financial sector on alert

Breached? Don't panic...if you created a robust Incident Response (IR) plan

Building a cybersecurity strategy on a constrained budget

Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518

Chatham-Kent Health Alliance (CKHA) Foundation says donor information wasn't touched during cyber attack

China’s biggest lender ICBC hit by ransomware attack

China's ICBC, the world's biggest bank, hit by cyberattack that reportedly disrupted Treasury markets

Chinese multinational bank hit by ransomware

Cinfed Credit Union Files Notice of Data Breach Affecting Nearly 58k Individuals

Clop ransomware gang targets SysAid server bug

Crystal Run Healthcare Notifies Patients of “System Disruption,” Raising the Possibility of a Data Breach

Cyber Attack Disrupts Washington Department of Transportation (DOT) Website, Services

Cyber security awareness and training must be ongoing

Cybersecurity is everyone’s job

Data Breaches in Ireland Decreased by 50% in Q3 2023

Data of 800K Chess.com players scraped and released

Data protection demands AI-specific security strategies

Dolly.com pays ransom, attackers release data anyway

Downtime cost of an application DDoS attack averages $6130 per minute

Enterprises vs. The Next-Generation of Hackers – Who’s Winning the AI Race?

Five Important Considerations In Deciding If A Security Solution Is Fit For Your Organization

Hacker exposes data of over 800,000 Chess.com users

Hacker Leaks 800,000 Scraped Chess.com User Records

Hackers breach healthcare orgs via ScreenConnect remote access

Hackers Hit U.S. Arm of Chinese Bank

Hackers Launch Cyber Attack On Qatar In Retaliation For Former Navy Officer's Execution

Harris County, Texas, HHS Provider Hit With Ransomware

How to withstand the onslaught of cybersecurity threats

Increasingly sophisticated hackers threaten Israeli online shoppers

Industrial and Commercial Bank of China (ICBC) and Allen & Overy Hit By Ransomware

Industrial and Commercial Bank of China (ICBC) confirms ransomware attack on USA subsidiary

Industrial and Commercial Bank of China (ICBC) grapples with ransomware attack, prompting concerns for global financial markets

Industrial and Commercial Bank of China (ICBC) US Subsidiary Confirms Ransomware Attack; Certain Systems Disrupted

Iran-Linked Imperial Kitten Cyber Group Targeting Middle East's Tech Sectors

JeffCo Schools hacker demands money, threatens to release stolen data

Kansas Court Systems Remains Down Four Weeks After Cyberattack

Maine government notifies 1.3 million people of MOVEit data breach

McLaren Health Care breach exposes medical data of 2.3M+ individuals

McLaren Health Care says data breach impacted 2.2 million people

Microsoft and SysAid Find Clop Malware Vulnerability

Millions of Northwell Health patients potentially caught in transcription data breach

Mortgage giant Mr. Cooper says customer data exposed in breach

MOVEit Gang Targets SysAid Customers With Zero-Day Attacks

MPs Dangerously Uninformed About Facial Recognition

Mr. Cooper Admits Mortgage Customers’ Data Exposed During Payment-Blocking Cyber Attack

Mr. Cooper reports data breach in recent cyberattack

Navigating 12 Key Challenges in Cloud Data Security

New malvertising campaign targets Windows geeks

Northern Ireland: PSNI in new data breach as identity of female officer who made complaint is leaked

Northern Ireland: Two PSNI officers accept cautions as data breach charges are withdrawn

Northwell Health Data Breach Exposes Over 3 Million Patient’s Details

Once your data is stolen, you can't get it back. But there are steps you can take

Optus loses court bid to keep report into cause of cyber-attack secret

Phishing scheme targets Orange County school employees over gift cards

Q3, 2023 Sees 76% Fall in Data Breaches

Raft Suffers $3.3M Exploit That Drove Down Stablecoin 50%, but Hacker Likely Lost Money on Attack

Ransomware attack disrupts U.S. Treasury market trades

Ransomware attack on China’s biggest bank disrupts US Treasury market

Ransomware attack on China’s biggest bank may have hit US Treasury market

Ransomware gang breaches Industrial & Commercial Bank of China Ltd

Refresco Beverages Files Notice of Data Breach Impacting the Personal Information of Over 25k People

Russian Hackers Sandworm Cause Power Outage in Ukraine Amidst Missile Strikes

Russian Threat Actor “farnetwork” Linked With 5 Ransomware Strains

Same threats, different ransomware

Scotland: Council's email system 'fully functional' following 'cyber attack'

Security leaders discuss ChatGPT DDoS attack

‘Sensitive data’ may have been leaked in cyber attack, says Toronto Public Library

State of Ransomware in Retail 2023: Only 26% Surveyed Organizations Stopped Data Encryption by Cybercriminals

Stealthy Kamran Spyware Targeting Urdu-speaking Users in Gilgit-Baltistan

Strangely enough, no one wants to buy a ransomware group that has cops' attention

The New APT Group DarkCasino and the Global Surge in WinRAR 0-Day Exploits

The Philippines: Public warned of ‘spyware’ targeting unsuspecting mobile phone users

Telecommunications Services of Trinidad and Tobago (TSTT): 'Security increased after cyber attack'

Telecommunications Services of Trinidad and Tobago (TSTT) boss apologises to customers impacted by data breach

The biggest cyber security attacks in October

Top 8 Weaknesses in Multi-Factor Authentication (MFA)

U.S. Treasury Secretary Janet Yellen says ransomware attack on China's biggest bank minimally disrupted Treasury market trades

Ukraine and EU unite to smash crypto crime ring

Uniswap discredits $2 million exploit rumors as phishing scam

US arm of China’s ICBC bank hit by ransomware attack

Washington State Department of Transportation working to recover from cyberattack

What is Lockbit? The digital extortion gang on a cybercrime spree

World’s Largest Bank ICBC Discloses Crippling Ransomware Attack

York Region school board dealing with a cyber attack

Zimbabwe: New measures to mitigate cyber attacks on businesses, individuals

9th November

39% of software developers say supply chain security is essential

After trying to woo more users, ChatGPT attracted cyber attacks instead

Allen & Overy (A&O) suffers cyber attack

Allen & Overy law firm breached, LockBit takes credit

Allen & Overy suffers cyber attack impacting “small number of storage servers”

Allen & Overy suffers ‘data incident’ as ransomware group LockBit claims responsibility

Atlassian escalates its Confluence threat warning to '10'

Australia to introduce biometric passkeys for myGov login

Australian Clinical Labs’ (ACL) taken to Court over 2022 data breach

Be careful what you scan: QR scams increase by 51%

BIG-IP Vulnerability Alert: Remote Code Execution Risk

Bittrex crypto scam targets defunct platform’s ex clients

Bluewater Health says 250K patients compromised by cyber attack

British Library: Investigation launched into cyber attack which caused 'major technology outage'

Business Associate Agrees to $100,000 Settlement Following Cyber Attack

Butte School District shuts down computer network after system compromised

Canada: Hackers took social insurance numbers of 20,000 patients

ChatGPT Down? OpenAI Blames Outages on DDoS Attacks

ChatGPT down for you yesterday? OpenAI says DDoS attack was to blame

Chinese APT Posing as Cloud Services to Spy on Cambodian Government

CISA Alerts: High-Severity SLP Vulnerability Now Under Active Exploitation

Cloudflare website downed by DDoS attack claimed by Anonymous Sudan

Council investigating extent of cyber attack that affected website and systems

CRC Group Announces Data Breach Impacting Thousands of Consumer’s Personal Information

Cyberattacks decline but US remains top target

Cybersecurity expert on Toronto Library attack and what it means for you

Data Breach at Singapore’s Marina Bay Sands Resort Involves Personal Data of 665,000 Loyalty Program Members

Data Brokers Selling US Military Personnel Info for Cheap

Dolly.com pays ransom, attackers release data anyway

Electric Ireland contacts thousands of customers amid data breach fears

Enhancing Cybersecurity Measures in the Digital Business Landscape

Flagstar Bank says MOVEit Transfer breach impacted 12k more people than initially believed

Forget the spam filter: How unique phishing attempts undermine Microsoft email security

Foursquare Healthcare Reports Data Breach Affecting 10k+ Consumers

Google ads push malicious CPU-Z app from fake Windows news site

Google, Meta, Microsoft to join forces defending apps from hackers

Google Cloud’s Cybersecurity Trends to Watch in 2024 Include Generative AI-Based Attacks

Greater Rochester Independent Practice Association Inc. (GRIPA) Files Notice of Recent MOVEit Data Breach Affecting Nearly 280k Individuals

Hackers encrypt Kyocera AVX systems, personal data affected

Hackers target weak spots in Booking.com phishing scam

Harris County mental health provider targeted in suspected ransomware attack

HHS alerts health care sector to new ransomware threat

Hive Ransomware Resurfaces as Hunters International, Bitdefender Claim

Hotel Dieu Grace Healthcare (HDGH) employee data compromised in data breach

Industrial and Commercial Bank of China dealing with LockBit ransomware attack

Iran-Affiliated Group Targets Israeli Firms Amid Israel-Hamas Conflict

Iranian Charming Kitten hackers targeted Israeli organizations in October

Is your organization prepared for ransomware strikes in Azure storage?

Japan Aviation Electronics Targeted in Ransomware Attack

Jefferson County (Jeffco) Public Schools Cyber-Attack and Data Breach

KaDeWe dodges cyber attack with help from Berlin police

Kyocera AVX says ransomware attack impacted 39,000 individuals

Lego fans told to change passwords after cyberattack

Maine government says data breach affects 1.3 million residents

Major Mortgage Company Cyber Attack Could Impact Central New Yorkers

Most cybersecurity investments aren’t used to their full advantage

MOVEit hackers Cl0p exploit SysAid zero-day

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246)

MOVEit Hackers Pivot to SysAid Zero-Day in Ransomware Attacks

MuddyC2Go: New C2 Framework Iranian Hackers Using Against Israel

NATO allies express support for collective response to cyberattacks

New Kamran Spyware Targets Urdu-Speaking Users in Pakistan

New Malvertising Campaign Uses Fake Windows News Portal to Distribute Malicious Installers

New report shows 51% rise in QR code phishing for September

OpenAI confirms DDoS attacks behind ongoing ChatGPT outages

OpenAI Reveals ChatGPT Is Being DDoS-ed

Outsmarting Email Filters: Scammers’ Latest Strategies

Open-source vulnerability disclosure: Exploitable weak spots

Pacific Union College Data Breach

Payments platform Fawry crashes but company denies cyber attack or data breaches

Play ransomware gang leaks 5GB of Dallas County data following non-payment of ransom

Prolific ransomware crook spills the beans on several operations

Quishing Campaigns Spike 50% in September

Ransomed.vc gang claims to shut down after six affiliates allegedly arrested

Ransomware: The Pros and Cons of Paying Demands

Ransomware and the obligation to stop fraud

Ransomware attack on China's Industrial and Commercial Bank of China (ICBC) disrupts Treasury market trades

Ransomware attacks double in municipalities, healthcare, education

Ransomware gang behind MOVEit attacks are targeting new zero-day, Microsoft says

Ransomware Gang Claims to Have Stolen 430 GB of Internal Data in Stanford University Data Breach

Ransomware targeting casinos is on the rise, FBI warns

Robert W. Baird & Co. Notifies an Unknown Number of Consumers of Recent Data Breach Affecting Their SSNs

Russian APT Sandworm Disrupted Power in Ukraine Using Novel OT Techniques

Russian hackers switch to LOTL technique to cause power outage

Russian spies behind cyber attack on Ukraine power grid in 2022

Sandworm hackers incapacitated Ukrainian power grid amid missile strike

Security in the impending age of quantum computers

Signature Techniques of Asian APT Groups Revealed

Singapore's Marina Bay Sands resort says data breach compromised the data of 665,000 customers

Study shows data breaches decreased 84% in US during Q3

Sun Life Financial says MOVEit data breach impacted more than 212k US customers

SysAid warns customers to patch after ransomware gang caught exploiting new zero-day flaw

SysAid zero-day flaw exploited in Clop ransomware attacks

Texas Medicaid recipients may be part of massive data breach

Threat Actors Leverage File-Sharing Service and Reverse Proxies for Credential Harvesting

Tri-City Healthcare halts emergency operations after ransomware attack

Trinidad and Tobago: Protecting your identity after a data breach

UK Shoppers Lost Nearly £11m to Fraud Last Festive Season

Ukraine energy facility took unique Sandworm hit on day of missile strikes, report says

Understanding Cloud Misconfiguration: Causes, Corrections, and Prevention

US Arm Of China Mega-lender ICBC Hit By Ransomware Attack

US consulting firm Frost & Sullivan hit by 90GB data breach

Vulnerability Management Lifecycle

Waitrose shoppers issued scam warning over 'convincing' fake website for placing Christmas food orders

Washington State Department of Transportation (WSDOT): Website outage caused by 'cyber attack,' service still not restored

What are passkeys? Experience the life-changing magic of going passwordless

What is RansomEXX?

What We Can Learn from Major Cloud Cyberattacks

World’s largest commercial bank ICBC confirms ransomware attack

Zero-Day Alert: Lace Tempest Exploits SysAid IT Support Software Vulnerability

8th November

3 Phishing Education Tips for Banks to Prevent Data Breaches

90% of cybersecurity professionals work on vacation

A nasty Python package continues a trend of targeting developers

Aerospace giant Boeing investigating a cyber attack following LockBit group's data theft claims

Allied Pilots Association says a suspected ransomware attack knocked several systems offline

Arete Releases Q3 Crimeware Report Detailing Ransomware Trends and Shifts in The Cyber Threat Landscape

Australia's second largest Telco provider Optus down for millions

Beware, Developers: BlazeStealer Malware Discovered in Python Packages on PyPI

BlackCat ransomware group says it stole 35TB of sensitive data from Henry Schein's network

BlueNoroff APT Targets macOS with new RustBucket Malware Variant

Business see rise in cyber insurance costs and requirements

Chinese APT groups target dozens of Cambodian government orgs

Clarke County/Berryville Authorities investigate Data Breach

Companies have good reasons to be concerned about generative AI

Council for Scottish islands faces IT outage after ‘incident’

Cyber attack hits council computer systems at Comhairle nan Eilean Siar

Data breach at Southend City Council

Essential steps to protect your identity after a data breach

EU Rules for Digital Identities and Trust Services Face Backlash

Experts Expose Farnetwork's Ransomware-as-a-Service Business Model

FBI Warns of Emerging Ransomware Initial Access Techniques

Hacker Sean Mokler jailed for blackmailing victims

Iconic Singapore hotel caught up in major data breach

Illinois-based Cook County Health says third party vendor breach impacted over 1.2m patients

India threat landscape report highlights cybersecurity concerns

“Infamous” Cyber Attack: Russian Malware Threatens Ukrainian Military Data

Israel-Hamas Conflict Lead Cyberwar Too! 100 Hacker Groups Involved

Key Highlights from the 2023 UK Cyber Crime Landscape

Lazarus-Linked BlueNoroff APT Targeting macOS with ObjCShellz Malware

Malaysia: Cops reel in mastermind of phishing template racket

Marina Bay Sands Singapore luxury resort breached

Microsoft Warns of Election Threats in 2024

OpenAI hints at DDoS attack behind ChatGPT outage

Predator AI ChatGPT Integration Poses Risk to Cloud Services

New SecuriDropper Malware Bypasses Android 13 Restrictions, Disguised as Legitimate Applications

New York Attorney General issues $450k penalty to US Radiology after unpatched bug led to ransomware attack

Organizations spend almost 8 hours a week on security compliance

Ransomware, Extortion Claims See ‘Worrying Reurgence,’ Says Allianz

Ransomware gangs hack casinos via 3rd party gaming vendors

Researchers Uncover Undetectable Crypto Mining Technique on Azure Automation

Russian state-owned Sberbank hit by 1 million RPS DDoS attack

Russian-speaking threat actor "farnetwork" linked to 5 ransomware gangs

Russians extradited on $48M cyber fraud charges

Social media’s GDPR fines exceed $3 billion

Sumo Logic discloses potential breach via compromised AWS credential

Sumo Logic discloses security breach, advises API key resets

Suspected Ransomware Attack Western Isles Council Causes IT Disruption

The 3 key stages of ransomware attacks and useful indicators of compromise

Threat Actor Farnetwork Linked to Five Ransomware Schemes

Three-Quarters of Retail Ransomware Attacks End in Encryption

US Urges Critical Infrastructure Firms to Get “Shields Ready”

Why a New Brand of Cyberattack on Las Vegas Schools Should Worry Everyone

7th November

5 ways Small and Medium Businesses (SMBs) can protect themselves from cybersecurity breaches

7 free cyber threat maps showing attack intensity and frequency

2023 Microsoft Data Breach Statistics: A Comprehensive Overview

A major cyber attack: $3.5 Trillion Loss can occur!

AlohaCare Notifies 12,982 of Recent MOVEit-Related Data Breach

Arete Releases Q3 Crimeware Report Detailing Ransomware Trends and Shifts in The Cyber Threat Landscape

Atlassian confirms ransomware is exploiting latest Confluence bug

Black Basta ransomware group claims cyber attack on Toronto Public Library

BlueNoroff hackers backdoor Macs with new ObjCShellz malware

Boeing Confirms Cyber Attack After LockBit Ransomware Threatened to Leak Data

Cook County Health: Data breach potentially affected up to 1.2 million patients

Critical Atlassian Bug Exploited in Ransomware Attacks

Critical Flaws Discovered in Veeam ONE IT Monitoring Software – Patch Now

Curing Hospitals of Cyber Attacks: Remedies for Resilient Security

Dallas County reviewing data leaked by ransomware gang

Data Breach at Singapore's Marina Bay Sands Affects 665,000 Customers

Data Breaches Plague Philippines as Country Scrambles to Bolster Cyber Defences

Diamond Model of Intrusion Analysis: What, Why, and How to Learn

Experts Warn of Ransomware Hackers Exploiting Atlassian and Apache Flaws

Fake Ledger Live app in Microsoft Store steals $768,000 in crypto

GootBot Implant Heightens Risk of Post-Infection Ransomware

Gut instinct can protect you against scams

Hacker exploits defi protocol TheStandard.io for $264k

Hacker Leaks 35 Million Scraped LinkedIn User Records

Hackers could leak Shimano's designs to competitors, cyber security expert says

How Businesses Can Protect Themselves from Account Takeover

How can organisations minimise the cost of a data breach?

How the $41 million attack on Stake poses uncertainty to the future of crypto gambling?

IBM X-Force Discovers Gootloader Malware Variant - GootBot

India is one of the most breached countries in the world for the 3rd quarter in a row in 2023 despite the decrease in leaked accounts

Industry 4.0 sparks new era of cyber attacks

Japan Aviation Electronics says servers accessed during cyberattack

Lawsuit alleges Las Vegas plastic surgery clinic's data breach compromised patient photos, info

LEGO marketplace BrickLink down due to suspected hacking incident

LockBit group claims major ransomware attack on Mexico City's Querétaro Intercontinental Airport

LockBit Ransomware Steals 4.5 TB of Sensitive Data from Shimano

Looney Tunables bug exploited for cryptojacking

Maccabi Tel Aviv basketball team website comes under cyber attack

Major Japanese defense contractor breached by ALPHV

Marina Bay Sands discloses data breach impacting 665,000 customers

Marina Bay Sands loyalty programme suffers data breach

Marina Bay Sands reveals data breach affecting 665,000 customers

Microsegmentation proves its worth in ransomware defense

Microsoft Authenticator now blocks suspicious MFA alerts by default

Musk’s AI model Grok an easy target for malicious actors

New BlueNoroff Malware Variant Targets Cryptocurrency Exchanges

New GootLoader Malware Variant Evades Detection and Spreads Rapidly

North Korea: Kim’s cyber army has a new malware toy targeting Apple devices

North Korea's BlueNoroff Blamed for Hacking macOS Machines with ObjCShellz Malware

North Korean ‘BlueNoroff’ group targeting financial institutions with macOS malware

Offensive and Defensive AI: Let's Chat(GPT) About It

Outdated cryptographic protocols put vast amounts of network traffic at risk

PJ&A Announces Data Breach Affecting the Information of an Unknown Number of Consumers

Plumas-Sierra Telecommunications Confirms Outage was due to Cyber Attack

Pulaski County Public Schools investigating cyber attack

QR code phishing: Why it’s on the rise and how to protect your business

Ransomware, AI, and social engineering all set to be 2024's biggest security threats

Ransomware was behind Toronto Public Library attack

Retail is Losing The Ransomware Battle

Royal Mail jeopardizes users with open redirect flaw

Russia teaching students to hack infrastructure, Ukraine says

Russian insurance giant Rosgosstrakh hacked, data of Russian military intelligence agents stolen

Sensitive military personnel data available for just a few cents online, research finds

SideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government Entities

SIM Box Fraud to Drive 700% Surge in Roaming Scams

Singapore: Safeguards by banks, telcos under shared liability framework to 'materially reduce' phishing scam risks

Singapore’s Marina Bay Sands says 665,000 customers had data stolen during cyberattack

Sun Life third-party breach exposes 212K individuals

TransForm says ransomware data breach affects 267,000 patients

UK: Government has never paid a ransomware demand, minister says

UK government fails to bring forward promised cyber laws in King’s Speech

UnitedHealth’s Crystal Run impacted by ongoing cyber incident

Veeam Patches Two Critical Bugs in Veeam ONE

What Is a Zero-Font Tactic in Email Phishing Scams?

What Is Cyber Crime? What Are the Different Types of Cyber Crime?

Which Gamers are Most at Risk of a Cyber-attack?

Winter Vivern’s Roundcube Zero-Day Exploits

6th November

40-Country Pact to Refuse Ransomware Payments Includes US, EU

70% of security leaders see software supply chain as top blind spot

100,000 Torrent Site Users Exposed in Massive Data Breach

ALPHV Ransomware Group Expands Victim List: Currax Pharmaceuticals Targeted

Atlassian Confluence data-wiping vulnerability exploited

Australia: Everything you need to know about the new New South Wales (NSW) mandatory data breach notification scheme

Australia’s myGov digital ID lost $2B due to scams this year

Australian government pledges to not pay ransomware demands

Authentication Systems Decoded: The Science Behind Securing Your Digital Identity

Bitfinex suffers phishing attack, says there is ‘no loss of funds’

Boeing data leaked, attackers promise more

Boeing faces cybersecurity breach, ransomware group LockBit threatens data leak

Canada: Is personal cyber the new fire?

Canada: Windsor area hospitals report progress following cyber attack, set up hotline

Critical Atlassian Confluence bug exploited in Cerber ransomware attacks

Cybercrime service bypasses Android security to install malware

Data breach and identity protection concerns are at an all-time high

Data Breaches in October 2023

Data brokers are selling US service members’ secrets, researchers find

Exploring the Flaws in Contactless Bank Card Security

FBI Alert: ‘Phantom Hacker’ Stealing Idaho Bank Accounts

Generations Healthcare Announces Data Breach After an Unauthorized Party Accessed Employee Email Accounts

Get a text from UPS? It could be a scam

Google Warns How Hackers Could Abuse Calendar Service as a Covert C2 Channel

Hackers exploit Looney Tunables Linux bug, steal cloud credentials

Hackers target Bluewater Health's patient database

Hilb Group notifies over 81,000 individuals of email security breach

How global password practices are changing

How to mitigate the latest, greatest phishing variant — spoofed QR codes

India Tops Cyber-Attack Target List with 13.7% of All Cyber-Attacks

India's Infosys says US unit hit by cyber security event

IR plans: The difference between disaster and recovery

Iran-linked hackers attack Israeli education and tech organizations

Iranian Hackers Launches Destructive Cyberattacks on Israeli Tech and Education Sectors

Lessons From 100+ Ransomware Recoveries

LockBit3.0 Takes Credit for Ransomware Attack Against Summit Health, Raising Concerns Over Potential Data Breach

Major Cyber Attack Could Cost Global Economy $3.5 Trillion

Major data breach in Trinidad & Tobago

Malicious Actors Increasingly Targeting Cloud Services in Healthcare Cyberattacks

Microsoft Listing Fake Ledger App Leads to $590K of Bitcoin Stolen by Hackers

Microsoft Scattered Spider Warning: Ransomware Alert

Microsoft Upgrading Signing Keys to Prevent Another Fed Data Breach

Microsoft will roll out MFA-enforcing policies for admin portal access

Mitigating Risks and Embracing Opportunities: The Synergy of Generative AI and Cybersecurity

Mortgage giant Mr. Cooper using alternative payment options after cyberattack

Most dangerous Iranian hacker group bolsterers attack capabilities

Mr. Cooper Posts Notice of Cyberattack, Indicating Possible Data Breach

New ‘GootBot’ strain of Gootloader malware stokes ransomware fears

New Jupyter Infostealer Version Emerges with Sophisticated Stealth Tactics

New Report On Suffolk County Cyber Attack Raises Questions

New York State Wants Firms to Report Ransomware

Officer jailed for warning drug kingpins about police operation leading to 6K arrests

Okta Breach Hit Over 130 Customers

Okta Breach Linked to Employee’s Google Account, Affects 134 Customers

Okta breach post mortem reveals weaknesses exploited by attackers

Okta says a single employee using a personal device and email account was to blame for its hack

Organizations face an average of 86 ransomware attacks annually

Organizations turn to zero trust, network segmentation as ransomware attacks double

Over Half of Users Report Kubernetes/Container Security Incidents

Preventing Cyberattacks Through Compliance: A Call For A Collective Defense

QNAP Releases Patch for 2 Critical Flaws Threatening Your NAS Devices

QNAP warns of critical command injection flaws in QTS OS, apps

Ransomware actor exploits unsupported ColdFusion servers — but comes away empty-handed

Ransomware attacks: how South African companies should respond

Ransomware Attacks Have Doubled Over the Past Two Years, According to Akamai Research

Ransomware is on the rise again, causing shattering damages to fleets

Research shows the prevention works when it comes to ransomware attacks

Researchers spot an increase in Jupyter infostealer infections

Russian Crypto Mixing Linked to 74% of Ransomware Activity in Global Money Laundering

Russian National Sanctioned For Virtual Currency Money Laundering

San Jose claims top spot for cybersecurity costs

Scammers Use Fake Ledger App on Microsoft Store to Steal $800,000 in Crypto

SecuriDropper: New Android Dropper-as-a-Service Bypasses Google's Defenses

Security Agency Publishes Post-Quantum Guidance For Firms

Shimano faces threat of massive data breach by LockBit ransomware group

Snap Finance data breach $1.8M class action settlement

Southend Council data breach as thousands of staff's 'sensitive information' leaked in spreadsheet

Spy Trojan SpyNote Unveiled in Attacks on Gamers

TellYouThePass ransomware joins Apache ActiveMQ RCE attacks

The roadblocks to preventive cybersecurity success

U.S. Treasury Sanctions Russian Money Launderer in Cybercrime Crackdown

US, Japan and South Korea Unite to Counter North Korean Cyber Activities

US, South Korea and Japan launch group to tackle North Korea hacking

US sanctions Russian who laundered money for Ryuk ransomware affiliate

US Sanctions Ryuk Ransomware’s Russian Money Launderer

Veeam warns of critical bugs in Veeam ONE monitoring platform