Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Monday 17 June 2024

Data Breaches Digest - Week 25 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 17th June and 23rd June 2024.


23rd June

50 Cent claims hacker earned $300 million in the 30 minutes using his X account

Alleged Cyber Attack on Zerto

BlackSuit Ransomware Gang Behind IT Outage at CDK Global and North American Car Dealerships

Canara Bank Says X Handle "Compromised", Hacker Changes Username

Canara Bank's X account hacked, username changed to 'ether.fi'

CDK Global begins to restore systems after cyber hack hits thousands of retailers

Crypto trader loses over $11 million in phishing attack, exploited for Maker and Ethena tokens

Data breach puts Medicaid members’ information at risk, according to Wisconsin Wisconsin Department of Health Services (DHS)

Examining the US Government’s DDoS Protection Guidance Update

Facebook PrestaShop module exploited to steal credit cards

Football hacker Rui Pinto claims he will release proof of Man City breaching Financial Fair Play (FFP) rules

Football hacker threatens to release incriminating documents on Manchester City

Football hacker threatens to release incriminating emails that prove Man City breached Financial Fair Play (FFP) rules

Football Leaks hacker claims Man City were paid money 'not mentioned to football authorities' and boasts of having 'millions of documents' on five hard drives

'Football Leaks' hacker drops Man City email bombshell as Arsenal wait on 115 charges

Football Leaks hacker in witness protection threatens to release Man City Financial Fair Play (FFP) breach proof

Football Leaks hacker makes Man City threat over unreleased documents

'Football Leaks' hacker ready to release Man City emails that show 'criminal relevancy'

Football Leaks Hacker Rui Pinto Claims He Has Proofs Of Man City Financial Fair Play (FFP) Breach

Football Leaks Hacker Threatens More Files Against Manchester City Ahead of 115 Financial Fair Play (FFP) Breaches Hearing

Football Leaks hacker threatens to prove Man City's Financial Fair Play (FFP) breach as Liverpool watches on

Football Leaks hacker threatens to release bombshell Man City emails and documents he claims will PROVE they breached Financial Fair Play (FFP) rules - as he insists he is 'CONFIDENT' authorities will 'find criminal relevancy'

‘Football Leaks’ hacker threatens to release Man City emails which prove Financial Fair Play (FFP) rule breach

Football Leaks hacker threatens to rock sport with explosive emails he claims prove Man City deliberately cheated Financial Fair Play (FFP)

Hacker in witness protection threatens to release emails proving Man City's corruption regarding Financial Fair Play (FFP) breaches

Hacker threatens to release documents to prove Manchester City breached Financial Fair Play (FFP) rules, confident authorities will find ‘criminal relevancy’

Hacker threatens to release Man City leaked emails which he claims will show they breached Financial Fair Play (FFP) rules

Hacker Threatens to Unveil Man City Documents

Holidaymakers in France hit by huge surge of online crime aided by AI

MakerDAO delegate loses $11m in major phishing scam

MakerDAO Delegate Loses $11 Million in Phishing Scam

MakerDAO delegate’s $11M in tokens stolen in phishing scam

MakerDAO falls to $11.1M phishing attack - These areas affected

Man City Financial Fair Play (FFP): Football Leaks hacker to release ‘hundreds of emails’ exposing ‘deliberate cheating’

Manchester City face darker clouds: Hacker plots to prove 115 Financial Fair Play (FFP) breaches

Manchester City in more trouble as hacker who exposed Financial Fair Play (FFP) breaches threatens to release more emails

Manchester City in trouble? Hacker threatens to reveal proof regarding Premier League champions’ Financial Fair Play (FFP) breaches

NHS patients affected by cyber-attack may face six-month wait for blood test

Nigeria: National Identity Management Commission (NIMC) Denies Data Breach Allegations, to Prosecute Harvesters

Philippine hacker group hits back on Chinese military aggression

Phishing scam costs MakerDAO delegate $11.1 million in crypto assets

Portuguese Hacker Threatens Manchester City with Millions of Documents Incriminating Them

Ransomware payments: To pay or not to pay?

Restoring Car Dealers' Computer Systems from Ransomware Attack to Take 'Several Days'

This Wallet Lost $11 Million With Explosive New Crypto Phishing Attack

User Loses $11 Million to Crypto Phishing Scam

Zimbabwe Anti-Corruption Commission (ZACC) Twitter Account Hacked Amid Chivayo Probe: Hacker Identifies Themselves

22nd June

50 Cent’s X Account Hijacked, Hacker Makes $300 Million on Scam Crypto in Minutes

A hacker claims to have breached Apple days after the AMD hack

CDK cyber attack hackers demand millions in ransom

CDK Global cyber attack affects over 15,000 dealerships, including Ancira Nissan

CDK Global outage caused by BlackSuit ransomware attack

Cumbrian sub post-masters affected by Post Office data breach

Data Breach: Paradigm Initiative uncovers website selling personal data of Nigerians

ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor

Experts found a bug in the Linux version of RansomHub ransomware

Four ways to protect yourself after millions affected by customer data breaches

Group claiming CDK systems hack demands millions of dollars

How a major Russian cyber attack on the NHS is believed to be much worse than feared - and led to the theft of private medical records of patients treated at hundreds of hospitals and clinics

How can insurance firms counter phishing attacks?

Jollibee Group investigates data breach

Jollibee probes alleged data breach affecting 32 million customers

Los Angeles Unified School District (LAUSD) Data Breach: Hackers Leak 25M Records, Including Student Locations

Philippine fast food chain Jollibee investigates alleged data breach affecting millions

Ratel RAT targets outdated Android phones in ransomware attacks

Sensitive Data Stolen from NHS Provider in Cyber Attack: Patient Information Published Online

Shrewsbury & Telford Hospital NHS Trust pays out nearly £30k over data breaches

Threat Actor Claims to Sell Unauthorized Access to Major Irish Retailer

Threat Actor Claims to Sell VirtualBox VME Zero-Day for $50,000

U.S. Treasury Sanctions 12 Kaspersky Executives Amid Software Ban

Warning: New Adware Campaign Targets Meta Quest App Seekers

Wisconsin Department of Health Services (DHS) Announces Data Breach

21st June

50 Cent Claims Hacker Made $300 Million in 30 Minutes After Hacking Fif’s Website and Social Media to Promote Crypto

50 Cent's Twitter Hacker Makes $720K In Minutes With Crypto Scam

2022 Optus Data Breach Could Have Been Averted Four Years Prior, Says Australian Telecom Watchdog

A cunning hacker from Florida breached a major transportation company, to have a brand new Rolls-Royce Cullinan and a Maybach GLS 600 delivered to his address. Adding insult to injury, he even messaged the customer, ‘Thanks for the free Maybach’

A Ransomware Builder Advertised on a Dark Web Forum

AdsExhaust Adware Distributed in Fake Oculus Installer via Google Search

After 2 hacks, CDK Global warns customers of social-engineering attacks

After Banning Sales of Kaspersky Products, U.S. Sanctions its Top Executives

Alarming Data Breach: Nigerians' National Identification Numbers (NIN) and Bank Verification Numbers (BVN) Sold Online for 100 Naira

Alleged Data Leak from a Security Training Platform from the UK

Alleged Government Employee Data Leak from a Service Provider

Almost 200 cancer operations postponed as ransomware group publishes London hospitals data

ANY.RUN Malware Sandbox Provider’s Employee Email Compromised

As Britain's NHS Faces Data Leak, Never Normalize Ransomware

Attackers can bypass ARM security feature protecting from memory corruption

Aultman Hospital is sending out letters to alert patients of a possible data breach

Australia Optus 2022 Data Breach 'Not Highly Sophisticated'

Biden Bans Kaspersky for Good: How It Started and What It Means for Cybersecurity Companies in US

Car dealerships are being disrupted by a multi-day outage after cyberattacks on software supplier

Car dealerships in USA and Canada hit by double cyber-attack on CDK Global

CDK Global cyberattack leaves thousands of car dealers spinning their wheels

CDK Global shuts down Dealer Management System (DMS) software following latest cyber attack

CDK Global Struck By Second Cyberattack While Investigating Incident

CDK Global Warns About Phishing Scams As Outage Continues For Dealerships

CDK hackers demand millions to end cyberattack crippling auto dealers

CDK suffered another data breach as it was attempting to recover

CDK warns: threat actors are calling customers, posing as support

Change Healthcare begins data breach notification process

Change Healthcare confirms ransomware hackers stole medical records on a ‘substantial proportion’ of Americans

Change Healthcare finally spills the tea on what medical data was stolen by cyber-crew

Change Healthcare lists the medical data stolen in ransomware attack

Chemical Facilities Warned of Possible Data Exfiltration Following CISA Breach

Chinese Hackers Deploy SpiceRAT and SugarGh0st in Global Espionage Campaign

City of Hamilton cyber attackers were 'well-funded, organized,' it will take years to recover, experts say

Cyber attack on NHS provider results in huge data leak

Cyber-attack hobbles car dealers across US and Canada for third day in a row

Dangerous RAT mostly lurks in outdated Android phones

Data from NHS cyber attack ‘published online by cyber criminal group’

Enhancing Security Measures: Overcoming Barriers to Single Sign-On (SSO) Adoption Among SMBs

Expert Advice on Ransomware Defense for Small Businesses

Forklift manufacturer shuts down systems to investigate cyberattack

From Espionage to Ransomware: Rafel RAT’s Impact on Android Security

Gang leaks NHS patient data on the dark web

Hacker claims to have 30 million customer records from Australian ticket seller giant TEG

Hacker claims to have hit Apple days after hacking AMD

Hacker used the same bug to exploit other crypto exchanges weeks before

Hackers Publish 400GB Of Data After London Hospital Cyber Attack

Hacking group Qilin leaks data stolen from UK medical testing provider Synnovis

HHS alerts health sector to cyberthreat from Qilin ransomware group

How to Identify and Protect Against Phishing Emails Leveraging Data Broker Information

Intel-powered computers affected by serious firmware flaw (CVE-2024-0762)

Investigation into cyber attack ‘could take weeks’, says NHS England

Japan's space agency hit by series of cyberattacks since last year, official says

Jollibee Cyberattack: Data of 32 Million Customers of Fast Food Chain Allegedly Compromised

London hospital attackers started leaking blood test data

Los Angeles Unified confirms student data stolen in Snowflake account hack

Massive Car Dealer Cyberattack Cripples 'Every Angle' of Business

Massive data breach exposes over 3 million Americans’ personal information to cybercriminals

Military-themed Email Scam Spreads Malware to Infect Pakistani Users

Misconfigured Kibana instance exposes Baltimore 311 callers’ data

National Cyber Security Centre (NCSC) statement following reports of a Synnovis data breach

New Data Breach Exposes Millions of User Records

New Linux Variant Of RansomHub Attacking ESXi Systems

NHS cyber attack update as blood tests unable to be carried out and operations postponed

No classified information leaked in cyber attack on Japan's space agency, officials say

Office for Civil Rights (OCR) Increases Focus on Phishing Attacks Against Healthcare Providers

Optus breach occurred due to a coding error, alleges Australian Communications and Media Authority (ACMA)

Optus domain unsecured for four years led to data breach

Oyster Backdoor Spreading via Trojanized Popular Software Downloads

Patient data published online following south east London cyber attack

Phishing in Cybersecurity: A persistent threat

Phoenix SecureCore UEFI Flaw Exposes Intel Processors to ‘UEFIcanhazbufferoverflow'” Vulnerability

Polish investigators seize Pegasus spyware systems as part of probe into alleged abuse

Polish public television hit by cyber attack during important Euro 2024 match

Pressure mounts on CISOs as Securities and Exchange Commission (SEC) bares teeth with legal action

Qilin cyber scum leak data they claim belongs to London hospitals’ pathology provider

Qilin hackers publish stolen blood test data

Qilin ransomware gang publishes stolen NHS data online

Qilin Ransomware Group Leaks NHS Data

Qilin Ransomware Leaks 400GB of NHS and Patient Data on Telegram

Ransomware Crisis: FX and Crypto Sectors Show Resilience as Attacks Soar over 70%

Ransomware gang leak 400GB of NHS data from London hospital hack

Russian cyberattack on NHS sees sensitive data 'published online' as more than 1,000 operations cancelled

Russian gang demands £40m ransom from NHS as it threatens to publish 'sensitive details'

Russian hackers publish NHS patients' details and blood test results online after London hospital cyber attack

Santander Employee Data Breach Linked to Snowflake Attack

Santander US reveals employee bank account details stolen

Sav-Rx Sued Over 2.8 Million-record Data Breach

SolarWinds Serv-U Vulnerability Under Active Attack - Patch Immediately

Spies with upgraded Gh0st RAT appear to be new operation, researchers say

Stolen blood test data from hospital cyber attack reportedly published online

Stolen test data and NHS numbers published by hospital hackers

Surge in global ransomware attacks as LockBit returns

Synnovis Attackers Publish NHS Patient Data Online

Synnovis cyber attack - statement from NHS England

T-Mobile denies it has been breached, points finger at third-party vendor

The Role of Microsegmentation in Strengthening Zero Trust Security

The State of Ransomware 2024

The US bans Kaspersky products, citing security risks - what this means for you

Threat Actor Allegedly Offers for Sale 902,979 Records from MyRepublic Indonesia Data Breach

Ticketmaster class action alleges data breach exposed personal info of 560 Million

Ticketmaster Data Breach: Hacker Claims Release of 1 Million Customer Records for Free

Ticketmaster sending notices to potential victims of data breach

Transatlantic flight disrupted by GPS jamming incident, first time in history

U.S. Bans Kaspersky Software, Citing National Security Risks

UK: Cyber-attack delays child's cancer operation

UK government weighs action against Russian hackers over NHS records theft

UK's largest nuclear site denies being hacked but pleads guilty over cybersecurity failures

UK’s Sellafield Nuclear Waste Site Pleads Guilty To Cybersecurity Failings

Unveiling the Power of AI in Shielding Businesses from Phishing Threats: A Comprehensive Guide for Leaders

US bans Kaspersky antivirus software due to national security risks

US Bans Kaspersky Over Alleged Kremlin Links

What does the London NHS hospitals data theft mean for patients?

Wisconsin Department of Health Services (DHS) possible data breach, Medicaid member info impacted

With review nearly finished, UnitedHealth says ‘no evidence’ doctors’ charts stolen in ransomware attack

Zero-Day Exploits Cheat Sheet: Definition, Examples & How It Works

20th June

A hacker has stolen three Apple administrative tools. He boasts of having found future projects with AMD

Advance Auto Parts confirms breach, says it’ll cost millions

Advance Auto Parts Confirms Data Breach in SEC Filing; Reports Losses Around $300,000

Alleged Access Sale for a US Based Corporation

Alleged AMCOM Data Breach Exposes Sensitive Military Documents on Dark Web

AMD: ‘Hackers had no access to business-critical data’

AMD confirms that it has indeed suffered a hacker attack, but it will not affect the company’s operations

AMD Data Breach 2024 exposes sensitive information of customers

AMD investigates possible cyberattack following data breach claims

AMD Investigates Possible Data Breach by IntelBroker

AMD provides update on data breach - says it won't 'have a material impact' on business

AMD reports limited data breach, downplays impact on operations

An unpatched bug allows anyone to impersonate Microsoft corporate email accounts

Anonymous threatens Kenyan officials ahead of vote over unpopular 2024 Finance Bill

Anonymous warns Kenyan government over Finance Bill 2024

Apparent Ransomware Attack Halts Operations at Crown Equipment for Second Week

Apple’s Source Code for Internal Tools Allegedly Stolen, Leaked by Threat Actor in Data Breach

Association of Texas Professional Educators Reports Data Breach Affecting Over 414,000 Members

Baltimore, one of America’s deadliest cities, leaks identities of residents who reported crimes

Bitcoin Ransom For Student Data: Hacker Demands $2 Million To Prevent Leak

Booking.com sounds alarm on AI-enabled travel scams

Booking.com Warns of Rise in AI Travel Scams as Summer Travel Season Begins

British Library to renew entire IT system as it reveals £1.6m cyber attack loss

CDK cyber attack 2024 cripples car dealerships across North America

CDK Global cyberattack cripples 15,000 US auto dealerships

CDK Global hacked again while recovering from first cyberattack

CDK Global Hit by Cyberattack, Backups Potentially Compromised

CertiK’s $3m Kraken spat: Hacker used the same bug to exploit other crypto exchanges weeks before

Chinese companies are being targeted in phishing attacks by malicious SquidLoader

Chinese Cyber Espionage Targets Telecom Operators in Asia Since 2021

Chrome users at risk! CERT-In issues high-risk vulnerability warning: How to prevent data breach

Closing the Readiness Gap: How to Ensure a Fast Recovery From the Inevitable Cyber Attack

Consulting Radiologists says ransomware attack impacted over 500,000 patients

CosmicSting flaw impacts 75% of Adobe Commerce, Magento sites

Criminal gang behind London hospitals cyberattack lists victim on darknet site

Crown Equipment cyberattack confirmed, manufacturing disrupted for weeks

Crypto Firm Kraken Calls the Cops After Researchers Attempt “Extortion”

Crypto Security Alert: Avoiding Airdrop Scams and Phishing Attacks

Cyber Attack Cripples Thousands Of Car Dealerships In US And Canada On Busy Holiday

Cyberattack on Ascension Hospitals Led to Lapses in Patient Care Such As Wrongful Administration of Narcotics

Cyber Attack on CDK Global: Car Dealership Software Hacked Nationwide

Cyber attack on CDK Global impacts dealers in the US

Cyberattack on CDK Global stymies work at car dealerships across US

Cyber attack stalls operations for as many as 15,000 car dealerships

Cyber attack targets Crown

Cyberattack on Radiology Practice Exposed Sensitive Data of 512,000 People

Data breach at Total Fitness exposes personal information of members

Experts Uncover New Evasive SquidLoader Malware Targeting Chinese Organizations

French Diplomatic Entities Targeted by Russian-Aligned Nobelium

French Diplomatic Entities Targeted in Russian-Linked Cyber Attacks

Frontier fallout as 750K customers' data exposed in RansomHub cyberattack

Global Consulting Giant Accenture Allegedly Hit by Cyberattack

Hacker Alleges Major Apple Data Breach Involving Three Internal Tools

Hacker has Maybach GLS and Rolls-Royce Cullinan delivered to him for free

Hacker Leaks Data of 33,000 Accenture Employees in Third-Party Breach

Hacking the Hippocratic Oath: Four Ways to Shield Patients from Ransomware Attacks

Hacktivism Could Become a Threat When Secretly Backed by Nation States

Has Apple Been Hacked? Hacker Claims June 2024 Breach Exposes Source Code

Hawaii: Maui health center allegedly attacked by Russian hackers

If you use Hotmail you’re at risk from very convincing scams

Imposter security researcher blamed for stealing $3M from Kraken

Improving Operational Technology (OT) cybersecurity remains a work in progress

India: Got a fake speeding violation ticket? Here is how to identify “Vahan Parivahan” phishing scam

Indonesia: Ministry to block access to Elaelo.id, citing phishing concern

Inside The World’s Most Powerful Ransomware Groups Of 2024

IntelBroker Allegedly Breached T-Mobile

International Hacker Group, Anonymous Warns Kenyan Government to Respect Protesters’ Rights

Investigation into cyber attack ‘could take weeks’, says NHS England

Kenya: Anonymous hacker group warns MPs, rallies behind Kenyans ahead of demonstrations

Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw

Kraken vs Certik: A Dispute Over a $3 Million Zero-Day and Bug Bounty Ethics

Linux version of RansomHub ransomware targets VMware ESXi VMs

LockBit Most Prominent Ransomware Actor in May 2024

LockBit Ransomware Again Most Active – Real Attack Surge or Smokescreen?

LockBit resurgence sees ransomware attacks reach record high in May

LockBit Returns As Most Prominent Ransomware Group

LockBit, Qilin likely responsible for radiology clinic data breach affecting more than 500k

Major cyber attack shuts down car dealerships across the US

More than 12,000 Santander employees in US affected by Snowflake breach

More than 400,000 have data leaked in cyberattack on Texas education organization

Most cybersecurity pros took time off due to mental health issues

New hacker group targets Chinese users with compromised deepfake porn software, malicious VPN installers

New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration

Newburgh insurance policy may cover ransomware cyber-attack, says mayor

NHS Dumfries and Galloway notifies residents of a serious data breach

‘Not highly sophisticated’: Coding error behind Optus data breach for 9.5 million Australians, Australian Telecommunications and Media Authority (ACMA) alleges

Notorious hacker leaks internal Apple source code following AMD breach

ONNX Store Phishing Kit Leverages QR Codes To Target Financial Sector

Operational Technology Systems Face Rising Cyber Risks

Optus cyber attack could have been prevented four years prior, says telecoms watchdog

Phoenix UEFI vulnerability impacts hundreds of Intel PC models

Popular bubble tea chain Chicha San Chen breached in Singapore

Post Office accidentally leaks sub-postmaster data

Records of 13,000 Maxicare members exposed in latest data breach

Report Details Reemergence of Lockbit 3.0 Ransomware Syndicate

Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs

Return of LockBit 3.0 causes spike in ransomware attacks in May

Russian spies' hacking campaign is 'endangering' French diplomatic interests

Scammers Use Generative AI in Phishing Campaigns on Travel Website ‘Booking.com’

Security firm Accenture breached, claims cybercriminals

Security systems struggle with malicious QR codes made from ASCII characters

Several Chinese APTs Have Been Targeting Telecommunications of Asian Country Since 2021

Singapore: Chicha San Chen membership database hacked

SolarWinds Serv-U path traversal flaw actively exploited in attacks

South Africa: Data breach notifications triple, says info watchdog

South east London patient data leaked after Synnovis cyber attack

Suspected Chinese Hacker Group Used Open-Source Rootkits for Espionage

T-Mobile denies data breach claims by IntelBroker

The hacker who stole the data of 4 million minors wants a ransom of 30 BTC

Threat Actor Claims AMD and Apple Breaches

Threat Actor Claims to Leak Data of 1 Million TicketMaster Users from 680 Million Customer Records

Threat Actor Claims to Sell 30 Million User Records from Australian Ticket Vendor TEG

To Pay or Not to Pay: That is the Ransomware Question

Tracing The Destructive Path Of Ransomware - And Protecting Against It

UK Health Club Chain ‘Total Fitness’ Data Leak Exposes Know Your Customer (KYC) and Card Data

UNC3886 hackers use Linux rootkits to hide on VMware ESXi VMs

US car dealerships back to pen and paper after a cyberattack

US car dealerships face ongoing outage after CDK cyberattacks

US to ban Kaspersky Lab software nationwide later this year

19th June

Advance Auto Parts confirms data breach exposed employee information

AI-Powered Browsers Detecting Zero-Day Phishing Attacks in High Accuracy

Almost 20,000 Aptihealth Patients Affected by Business Associate Data Breach

AMD allegedly suffers from major data breach

AMD investigates claims of data breach by Intelbroker

AMD investigates claims of major data breach

AMD investigates claims on company data breach and the possibility of it being sold by hackers

AMD Investigates Data Breach For Theft Of Future Product Detail And Source Code

AMD Investigating Breach Claims After Hacker Offers to Sell Data

AMD investigating data theft after publication on hacker forum

AMD investigating possible data breach after internal company data put up for sale online

AMD Witnesses Data Breach After Major Hack, Investigation Underway With The Help of Law Enforcement Agencies

AMD working with law enforcement after reports of massive data breach - hack may have uncovered future product details

Amtrak Confirms Data Breach Affecting Guest Rewards Accounts

Another AMD Cyber Attack? Investigation Underway as Stock Dips

Australia: AI-driven cyber crime drives AUD $4.03m average data breach cost

Australian regulator blames lack of multi-factor authentication for Medibank hack

Beware Of Fake Microsoft Teams Website That Installs Oyster Malware

Beware of Nevermore Actor Promoting Ransomware Builder

Billericay School update after 'significant cyber attack'

Bitdefender Antispam Lab warns of Olympics-themed phishing scams

BlackBasta group published Keytronic data after ransom payment deadline expired

Broadcom Advises Urgent Patch for Severe VMware vCenter Server Vulnerabilities

Business owners increasingly worry about payment fraud

Cactus Ransomware Group Claims Three High-Profile Victims

CDK cyberattack shuts down auto dealerships across the U.S. Here's what to know

CDK dealership software shut down after cyberattack, some now restored

CDK Global cyberattack impacts thousands of US car dealerships

CDK Global Hit By Cyber Attack, All Dealer Management Systems Shut Down

CDK Global shuts down car dealership software after cyberattack

Chinese Velvet Ant Hackers Target F5 Devices in Years-Long Espionage

Chip maker giant AMD investigates a data breach

Chipmaker AMD confirms data breach investigation following hacker’s claims

Christie’s faces lawsuit for failure to protect 500,000 clients from ransomware attack

Circle K Atlanta allegedly breached, data stolen - hackers

CISA Releases Guide on Modern Approaches to Network Access Security

City of Cleveland forced to keep City Hall closed following a ransomware attack

Cleveland to reopen City Hall Thursday after ransomware attack

Clever macOS malware delivery campaign targets cryptocurrency users

Confidential AMD data is being sold on a hacker forum – the company has launched an investigation into a possible hack

Court filing reveals how Medibank data breach unfolded

Crown Equipment confirms a cyberattack disrupted manufacturing

Cyber attack on Synnovis forced London hospitals to cancel over 800 surgeries

Cyberattack led to harrowing lapses at Ascension hospitals, clinicians say

Cyberattack on CDK Global disrupts car sales in North America

Cybercrime Targeting Paris 2024 Olympic Games Gains Steam

Cybersecurity Burnout Costing Firms $700m+ Annually

Debunking Common Myths About Catastrophic Cyber Incidents

Don't blame us for people suffering - London hospital hackers

Dragos report shows rising Operational Technology (OT) cybersecurity threat in Australia

EHR system restored at Ascension following cyber attack

Financial organizations subjected to attacks with new ONNX phishing service

Find out which cybersecurity threats organizations fear the most

G7 Aims to Better Protect Energy Systems from Cyber Attack

G7 to Develop Cybersecurity Framework for Energy Sector

Globe Life Confirms Cyber Attack and Investigates “Likely” Data Breach

Hacker demands 30 bitcoins for student data stolen in Snowflake attack

Hacker who 'brought down North Korea’s internet for over a week' speaks out

Hackers deploy new clever tactics: apply a fix - get malware

Hackers Using VPNs To Exploit Restrictions & Steal Mobile Data

Hackers Using Weaponized Word Documents In QR Code Phishing Attacks

Hackers Weaponize Windows Installer (MSI) Files to Deliver Malware

Hawaii: Rider data apparently compromised in alleged ransomware attack on TheBus, Handi-Van

Health club chain Total Fitness faces data breach concerns

How can businesses best mitigate against ransomware threats?

How cyber extortion is trending for Canadian businesses

How to Protect Against Advanced AI Scams

How to use public Wi-Fi safely: 5 things to know before you connect

IntelBroker Hacker Claims Apple Breach, Steals Source Code for Internal Tools

Irish Hacker Avoids Jail After Cyberattacks on Microsoft, Rockstar Games and Tumblr

Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw

Lack of MFA Implementation Likely Caused Medibank Data Breach

Latest cyberattack targets auto dealer software impacting entire country

Mailcow Mail Server Flaws Expose Servers to Remote Code Execution

Maxicare: No sensitive medical info compromised in recent data breach

Maxicare Confirms Data Breach in Third-Party Booking Platform, Ensures Core Systems Unaffected

Medibank allegedly missed EDR alerts before data breach

MEDUSA Ransomware Targets AJE Group: $1.5M Price Tag for 646GB of Data

New Phishing-as-a-Service (PhaaS) Platform Lets Attackers Bypass Two-Factor Authentication

New Threat Actor 'Void Arachne' Targets Chinese Users with Malicious VPN Installers

New Threat Group Void Arachne Targets Chinese-Speaking Audience; Promotes AI Deepfake and Misuse

Over 70% of Businesses Increase Security Spending on Proactive Measures

Panera Bread paid a ransom to prevent data release, employee claims

Personal data of employees from 1,000 firms compromised in Maxicare Healthcare hack

Phishing Attack May Impact Los Angeles County Public Health Data

Poland points to Russian hackers in disruption of Euro 2024 broadcast

Portuguese bank exposes client data, raising fears of account hijacking

Post Office betrays postmasters yet again: Fury as bungling Post Office publishes names and addresses of more than 550 people wrongfully convicted in the Horizon scandal on its website in 'horrific' potential data breach

QR Code Phishing Campaign Targets Chinese Citizens Using Fake Official Documents

Quishing Campaign Targets Chinese Citizens via Fake Official Documents

Researchers Deep Dive into UNC3886 Actors’ Cyberespionage Realm

"Researchers" exploit Kraken exchange bug, steal $3 million in crypto

Rising exploitation in enterprise software: Key trends for CISOs

Scout Energy Partners Notifies Consumers of Early 2024 Data Breach

Sirva Data Breach Affects Consumers’ Confidential Information

Snowflake student data seller lowers $2M bitcoin ransom demand to $150K

Stuxnet, The Malware That Propagates To Air-Gapped Networks

T-Mobile denies it was hacked, links leaked data to vendor breach

Threat actor claims to have breached Apple, allegedly stealing source code of several internal tools

Threat Actor Claims to Sell Access to an UK Bank Server

Threat Actor Claims to Sell Zero-Day Local Privilege Escalation (LPE) Exploit for Windows 8.1, 10, and 11

Threat actor IntelBroker claims alleged breaches of Apple, AMD

Threat Actors Claiming Breach of AMD Source Code on Hacking Forums

Truist Bank confirms data breach affecting 65,000 employees

UK Pathology Lab Ransomware Attackers Demanded $50 Million

UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying

ViLe Cybercrime Group Members Plead Guilty to Hacking U.S. Drug Enforcement Administration (DEA) Portal

Warning: Markopolo's Scam Targeting Crypto Users via Fake Meeting Software

What Can We Learn From the Snowflake Attack? (Data Breach)

18th June

3 Things to Know About the Cybergang That Attacked Ascension

12 Types of Data Breaches to Look Out For in 2024

42% plan to use API security for AI data protection

92% of Organizations Hit by Credential Compromise from Social Engineering Attacks

A Hacker Canceled a Family's Cruise After Their Confirmation Number Was Visible on Facebook

AI-boosted cyberattacks pose threat to small businesses

AI Contributes To Record Number Of Phishing Reports To Better Business Bureau (BBB)

AI-enhanced phishing drives surge in email security threats

Akira Ransomware Claims the TETRA Technologies, 40GB of Sensitive Data at Risk

Alleged Ticketmaster data breach tied to Snowflake security flaw

AMD Data Breach: IntelBroker Claims Theft of Employee and Product Info

AMD investigates breach after data for sale on hacking forum

AMD Investigates Possible Breach Amid Hacker’s Sale of Company Data

Amtrak discloses data breach, users urged to reset passwords

Are We Turning the Corner in the Fight Against Cybercrime? It’s Complicated

'Baby faced hacker' from Northern Ireland who targeted XBox live, Rockstar Games and Tumblr walks free from court

Blackbaud Fined $6.75M After 2020 Ransomware Attack

Blackbaud settles for $6.75 million over data breach violations

BlackSuit Ransomware Leaks Kansas City Police Data in Failed Ransom Plot

BlackSuit ransomware publishes Kansas City, Kansas, police files

Brazil’s cybersecurity challenges rise due to phishing activities

Businesses cracking down on remote work ‘presenteeism’ – here’s how to avoid workplace surveillance

Canada: Hamilton spent $5.7 million recovering from February ransomware attack

Canada: Quebec police say 6th Desjardins data breach suspect turned himself in

Chinese Citizens Targeted in QR Code-Based Phishing Campaign

Chinese Hackers Compromised Large Organization’s F5 BIG-IP Systems for 3 Years

City of Helsinki: Vulnerable remote server led to massive data breach

City of Newburgh in New York says cyber attack disrupted essential public services

Cleveland City Hall attacked with ransomware. What does that mean?

Cleveland's Ransomware Attack Could Spell Financial Hit For City Hall

Continued Cleveland city hall disruption due to ransomware attack

Critical RCE flaws in vCenter Server fixed (CVE-2024-37079, CVE-2024-37080)

Cyber attack that impacted London hospitals sparks insurance concern

Cyber security 101: A beginner’s guide to phishing

Cyber Threat Intelligence Pros Assess AI Threat Technology Readiness Levels

Cybercriminals Exploit Free Software Lures to Deploy Hijack Loader and Vidar Stealer

Cybercriminals Target Trump Supporters with Donation Scams

Cybersecurity Experts Warn of Rising Malware Threats from Sophisticated Social Engineering Tactics

Daring Florida High-Tech Heist, Hacker Allegedly Steals Luxury Cars Worth $500K, Taunts Owners

Data Breach at Benefit Management Affects an Unknown Number of Consumers

Edge services are extremely attractive targets to attackers

Electronic health records recovered, but investigation continues

Enhancing security through collaboration with the open-source community

Federal contractors pay multimillion-dollar settlements over cybersecurity lapses

Federal Trade Commission (FTC) files complaint against TikTok for alleged data privacy practices

Finland sees record number of data breach reports in 2023

Frontier Communications faces class action lawsuit following data breach

Frontier Communications Faces Multiple Class Action Lawsuits After Data Breach

G7 countries vow to establish collective cybersecurity framework for operational tech

Goodwill Staffing Agency, GoodTemps, Confirms Recent Data Breach

Guidehouse and Nan McKay to Pay $11.3M for Cybersecurity Failures in COVID-19 Rental Assistance

Hackers demand $50M ransom payment from UK lab provider following hospital disruption

Hamas-Linked Hacker Group Accused of Orchestrating Attacks in Palestine & Egypt

Harnessing AI to mitigate ransomware threats

Hawaii: FBI, police investigating following extended ‘network outage’ at organization that runs TheBus

Hawaii: Oahu public transportation targeted in cyber attack

Highland Health Systems Notifies Patients of July 2023 Data Breach

How to create your cybersecurity “Google Maps”: A step-by-step guide for security teams

Insurance Giant ‘Globe Life’ Data Breach Impacting Consumers and Policyholders

IntelBroker Allegedly Breaches AMD, Exposing Products Informations and Source Codes

Kadokawa Group’s Niconico targeted in ransomware attack, affecting wider operations

Kansas City, Kansas Police Department data leaked online

Keytronic confirms data breach after ransomware attack

Keytronic faces data breach by Black Basta ransomware group

Kirkland & Ellis faces lawsuit over data breach involving MOVEit software

Knight Ransomware Attack: Businesses and Healthcare Targeted

LendingTree Says It’s Probing Potential Snowflake-Related Data Breach

Linux Malware Campaign Uses Discord Emojis in Attack on Indian Government Targets

Los Angeles County Public Health Department data breach affects over 200,000 individuals

Maxicare officially notifies National Privacy Commission (NPC) of data breach

Maxicare reports data breach to National Privacy Commission (NPC)

Medibank breach: Security failures revealed (lack of MFA among them)

MEDUSA Ransomware Group Demands $220,000 from US Institutions, Threatens Data Exposure

META Stealer Enhances Stealth with Cryptographic Builds in v5.0 Update

Microsoft hacker avoids jail for cyber-attacks

More Details Emerge on Ticketmaster Breach Involving 560M+ Accounts

More than 70% of companies increased spending on proactive security

Multifactor Authentication Could Have Prevented 9.7 Million-Record Medibank Data Breach

Nearly 90% of businesses saw up to 9% of revenue lost due to fraud

New cyber attack campaign by ‘Mustang Panda’ targets Vietnam

New Malware Targets Exposed Docker APIs for Cryptocurrency Mining

New OPIX Ransomware Encrypting Files With Random Character String

NHS Dumfries and Galloway alerts “every household” in the region over potential exposure during February cyber attack

NHS Dumfries & Galloway CEO updates local citizens on cyber attack published data

NHS Dumfries and Galloway Chief Warns Community to Assume Data Was Leaked

NHS Dumfries and Galloway warns 150,000 patients to assume data has been published

NHS Dumfries and Galloway Warns Affected Individuals of Data Breach After Refusing to Pay Ransom to Cybercriminals

NHS Dumfries and Galloway warns of potential data leak after cyber-attack

NHS Scotland Inform Public on Post-Ransomware Steps

NHS updates on disruptions, potential data breach following London lab ransomware attack

NHS Urgently Seeks Blood Donations Post Ransomware Attack

NoName Carries Out Romania Cyberattack, Downs Portals of Government, Stock Exchange

ONNX phishing service targets Microsoft 365 accounts at financial firms

Panera Bread says March cyber attack compromised employees' personal information

Personal info affected by Cleveland city hall ransomware?

Phishing Attack at Los Angeles County Department of Public Health Leads to Major Data Breach

Preparing for ransomware recovery: Your readiness guide

Quarter of Firms Suffer an API-Related Breach

Radiology data breach may have exposed private health information

Ransomware demand allegedly paid by Panera Bread

Ransomware menace plagues Sri Lankan businesses warns Kaspersky

Reactions to Ticketmaster data breach exposing 500 million users’ data

Recently Patched PHP Flaw Under Attack By TellYouThePass Ransomware

Report Reveals Record Exploitation Rate For Load Balancers

Rising star 2024: Ransomware group 8Base

Scathing report on Medibank cyberattack highlights unenforced Multi-Factor Authentication (MFA)

Security bug allows anyone to spoof Microsoft employee emails

ShinyHunters Member Details How They Allegedly Stole Snowflake Customer Data

Signal Foundation Warns Against EU's Plan to Scan Private Messages for Child Sexual Abuse Material (CSAM)

Singapore Police Extradites Malaysians Linked to Android Malware Fraud

Snowflake guide for threat hunters released by Google’s Mandiant

SonicWall environment left open, exposing some data - customers safe

Spain: Benalmádena town hall restores all public services following last week's cyber attack

Star ed-tech company discloses data breach

Survey Surfaces Lack of Confidence in Security Tools

System breach hits Philippine Maritime Authority

TAG Heuer fined for data breach exposing information of 2,900 South Korean customers

Taiwan: Most GlobalWafers plants to resume shipments today after hacker attacks

The data breach targeting the City of Helsinki has not expanded - No misuse detected

The Financial Dynamics Behind Ransomware Attacks

The scams targeting Australians at tax time - and the signs to look out for

Thief Steals Rolls-Royce Cullinan & Mercedes-Maybach GLS by Hacking System, Diverting Drivers

Threat Actor Claims to Sell Admin Access to SolarWinds Orion Account in Latin America

Threat Actor Claims to Sell Exploit for Windows WiFi RCE (CVE-2024-30078)

Threat Actor ‘Velvet Ant’ Exploits F5 Load Balancers for Persistence in the Target Systems

TicketMaster breach detailed by ShinyHunters hacker

Truist Bank confirms data breach after cyberattack

Two men guilty of breaching law enforcement portal in blackmail scheme

UK national accused of hacking dozens of US companies arrested in Spain

Unique Social Engineering Campaign Installs Malware via Fake Google Chrome Errors

UwU Lend Announces $5 Million Bounty for Identifying The Hacker

Vermont’s landmark privacy bill killed as legislature fails to override veto

Victoria Racing Club hit by cyber attack

ViLe: Two Men Plead Guilty For Hacking Into Law Enforcement Portal and Threatening Victim

VMware Discloses Critical Vulnerabilities, Urges Immediate Remediation

VMware fixes critical vCenter RCE vulnerability, patch now

VMware Issues Patches for Cloud Foundation, vCenter Server, and vSphere ESXi

VMware vCenter Server Patches Heap Overflow and Privilege Escalation Vulnerabilities

‘We’re Investigating’ - AMD Reacts to Intelbroker’s Data Breach Claims

What Hong Kong’s Privacy Commissioner for Personal Data (PCPD) Data Breach Guidance Means for Impacted Organizations

Zero-Day RCE Exploit of Atlassian Jira for Sale

17th June

7000 LockBit Ransomware Decryption Keys Distributed By FBI

Academics Develop Testing Benchmark for LLMs in Cyber Threat Intelligence

AI-boosted cyberattacks pose threat to small businesses

All households in Scottish region to get alert about hackers publishing stolen medical data

Alleged Scattered Spider sim-swapper arrested in Spain

AridSpy Malware Targets Android Users in Middle East: Messaging Apps Used to Spread Spyware

Association of Texas Professional Educators Data Breach Leaks Personal Information of Members, Including SSNs

ASUS Patches Critical Authentication Bypass Flaw in Multiple Router Models

Australia’s privacy watchdog accuses Medibank of not using MFA, leading to breach

Blackbaud Agrees to $6.75 Million Data Breach Settlement with California

BreachForums Returns With a New Owner After ShinyHunters Retires

British national with possible links to high-profile phishing campaigns arrested in Spain

China-Linked Hackers Infiltrate East Asian Firm for 3 Years Using F5 Devices

Cleveland City Hall remains closed after ransomware attack

Cleveland confirms ransomware attack as City Hall remains closed

Closed Monday, Cleveland City Hall Confirms Ransomware Attack

Cloud over your summer getaway: hackers set sights on Booking.com hotels

Cops cuff 22-year-old Brit suspected of being Scattered Spider leader

Critical Vulnerabilities Exposing Chinese Biometric Readers to Unauthorized Access

Cyber attack shuts down Israeli pharma company's distribution

Cyber threat awareness for SMBs

Cybercriminal Gang UNC3944 Runs VMs Inside Victims’ Infrastructure via vSphere and Azure

Data breach disclosed by Keytronic following Black Basta leak

Disaster recovery vs ransomware recovery: Why CISOs need to plan for both

Don’t Be a Sitting Duck: The Cybersecurity Checklist You Need Right Now

Doxim Data Breach Affects an Unknown Number of Consumers

Empire Market owners charged for enabling $430M in dark web transactions

Empire Market suspects potentially face life in prison for $430 million in dark web sales

Fake Google Chrome errors trick you into running malicious PowerShell scripts

FBI Arrests Alleged Leader of ‘Scattered Spider’ Hacking Group

Government and military officials fair targets of Pegasus spyware in all cases, NSO Group argues

Hackers demand as much as $5 million from Snowflake clients

Hackers Detail How They Allegedly Stole Ticketmaster Data From Snowflake

Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor

Hackers use F5 BIG-IP malware to stealthily steal data for years

Hamilton does cybersecurity ‘blitz’ after ransomware attack

Keytronic confirms data breach after Black Basta ransomware gang strikes again

Keytronic Says Personal Information Stolen in Ransomware Attack

London Ransomware Attack Led to 1500 Cancelled Appointments and Operations

Los Angeles County Department of Public Health Data Breach Impacts 200K

Los Angeles County’s Department of Public Health (DPH) data breach impacted over 200,000 individuals

Los Angeles Public Health Department Discloses Large Data Breach

Low code, high stakes: Addressing SQL injection

Malicious emails trick consumers into false election contributions

Malware peddlers love this one social engineering trick

Medibank’s lack of multi-factor authentication allowed hackers to infiltrate systems, regulator alleges

Meta Pauses European GenAI Development Over Privacy Concerns

MGM hack-linked attacker arrested in Spain

More than 800 operations postponed since London cyber attack

More than 1500 Cancellations Following NHS Ransomware

NHS Ransomware Attack Leads to Cancellations of 800+ Operations

NiceRAT Malware Targets South Korean Users via Cracked Software

Notorious cyber gang UNC3944 attacks vSphere and Azure to run VMs inside victims' infrastructure

Only 19% of MITRE ATT&CK tactics are covered by SIEMs

Over 586,000 Zadig & Voltaire Breached Accounts Added to Have I Been Pwned (HIBP)

Panera Bread likely paid a ransom in March ransomware attack

Pharma giant's data breach exposes patients' sensitive information

Potential data breach investigated by Globe Life

Prudential Financial class action alleges data breach impacts 37,000

Ransom demands issued to Snowflake users amid alleged third-party contractor breach

Remilia Hack Update: Hacker Moves Stolen Millions to Tornado Cash 3 Months Later

Remilia hacker moves $4.3M to Tornado Cash

Scotland: More than 100,000 patients ‘likely’ impacted by NHS cyber-attack

Scotland: NHS board warns everyone to 'assume data has been published' after hack

Spain: Esquerra Republicana de Catalunya (ERC) denounces cyber attack that compromises personal data in its database

Suspected leader of Scattered Spider ransomware gang arrested in Spain

Suspected 'Scattered Spider' hacker, 22, reportedly arrested in Spain

Taiwan: Most GlobalWafers plants to resume shipments Tuesday after hacker attacks

The 6 biggest crypto heists of all time

The Philippines: Maritime Industry Authority (MARINA) confirms attack, data breach on web-based systems

The Philippines: Maritime Industry Authority (MARINA) web-based systems hit by cyber attack

The Rise Of Ransomware 2.0: How Attacks Are Evolving And What You Need To Know

The rise of SaaS security teams

The Seven Things You Need to Know About Cyber Insurance

The Snowballing of the Snowflake Breach: All About the Massive Snowflake Data Breach

Threat Actor Claims to Sell 0day Vulnerability for Dahua Cameras

Threat Actor Claims to Sell Access to European Biomedical Company with U.S. Contracts, Offering 6TB of Data

Truist Bank Notifies Clients of Recent Data Breach Affecting Their Financial Account and Loan Information

Ukrainian Arrested on Ransomware Charges

Veil lifted over two pro-regime Iranian hacker groups, targeting both friends and foes

What is DevSecOps and Why is it Essential for Secure Software Delivery?

What to do about the rise of unknown attack vectors in the ransomware playbook

When activism and hacktivism defeat censorship

Why ransomware is still important to business resilience