Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Monday 22 July 2024

Data Breaches Digest - Week 30 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 22nd July and 28th July 2024.


28th July

Crypto Exchange WazirX Outlines Path to Recovery Post-Hack, Users to Bear Part of Loss

ESET report exposes high ransomware payment inclination among Singapore SMBs

FBI Seizes Cryptocurrency Linked to North Korea Group

French Media Brand Allegedly Breached

Global outage leading to phishing attacks against CrowdStrike users

Hacker group leaks database of over 3,200 Western mercenaries fighting in Ukraine

In crypto world, the hacker is God

India: Government Agency Warns Of Phishing Attack Campaign Targeting CrowdStrike Users, Know How You Can Protect Yourself

Large-Scale Cyberattack Targets Russian Banks, Disrupts Services

Misconfigured Selenium Grid servers abused for Monero mining

North Korean indicted in US ransomware attack; $10m reward offered

Over 95GB Allegedly Stolen: Cicada3301 Targets Singapore’s Tri-Star Display

Pakistan: Cabinet Division Warns Against Hackers Using WhatsApp, Phishing Emails to Target Government Officials

Phishing Alert: Cyber Attack on Post-Outage CrowdStrike Users

Russian-Speaking Actors Account for $500M Crypto Ransomware in 2023

Russian-Speaking Hackers Dominate Ransomware Market, Report Shows

Secretive network exploits GitHub to spread malware and phishing links - nefarious actors attack from 3,000 shadow accounts

Securing the Smart Home: 7 Essential Cybersecurity Tips for Your Connected Devices

27th July

3,000 Fake GitHub Accounts Used to Spread Malware in Stargazers Ghost Scheme

Alert for Shiba Inu Holders: Key Warnings Issued, Protect Your Investments

China-Backed Phishing Attack Targets India Postal System Users

City of Columbus: Investigation continues into data breach

CrowdStrike Outage Exploited: CERT-In Warns of Phishing Attacks

Crypto Exchange Gemini Suffers Data Breach Through Third-Party Vendor

Don't Open Any CrowdStrike Repair Emails; They're All Fakes

Effective global cooperation must to track and prosecute hackers and cybercriminals

European banks gain insight from first-ever cyber stress test

FBI Seizes Cryptocurrency Linked to North Korean Ransomware

Financial Business and Consumer Solutions (FBCS) Data Breach: Number of Affected Individuals Surges to 4.2 Million

French Authorities Launch Operation to Remove PlugX Malware from Infected Systems

Generative AI: CISO’s Worst Nightmare or a Dream Come True?

Hackers Abuse Microsoft Office Forms to Launch Two-Step Phishing Attacks

Malicious PyPI Package Targets macOS to Steal Google Cloud Credentials

Russian-speaking hackers dominate ransomware attacks

Second-hand Security Risks: 7 Things to Consider When Buying Used Tech

Security Firm Alarmed to Discover Their Remote Employee Is a North Korean Hacker

South Carolina's Summerville Police claimed by rumored ALPHV/BlackCat ransomware reboot

Spytech Exposes Thousands Of Devices In Data Breach

Threat Actor Claims to Sell Data of Berkshire Hathaway Home Services

Vivamax Has Been Breached, Your Data Might Be Sold

WazirX phishing attack: lessons in crypto vigilance and security measures

WazirX to ‘socialize’ $230 million security breach loss among customers

WhatsApp for Windows lets Python, PHP scripts execute with no warning

26th July

6.8 Million Vivamax Subscribers’ Data Allegedly For Sale

Acronis warns of Cyber Infrastructure default password abused in attacks

AI-generated deepfake attacks force companies to reassess cybersecurity

Allcare Medical Management Announces Data Breach Affecting Patients of FPA Women’s Health

Alleged Sale of Lebanon Ministry of Health Data

Another European Parliament member says he's been targeted with commercial spyware

Avant Mutual outlines key steps to prevent human data breach in health sector

BMW Data Breach Exposes 14,000 Hong Kong Customers’ Personal Information

Coinbase’s UK Arm Fined £3.5 Million for Lax Anti-Money Laundering Controls

Compex Legal Services Experiences Data Breach, Leaking Consumer SSNs and Health Info

Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk

Crooks exploit the CrowdStrike outage that crashed Windows systems

CrowdStrike Warns of New Phishing Scam Targeting German Customers

Crypto exchange Gemini discloses third-party data breach

Data Breach at Rhode Island Wyatt Detention Facility Estimated to Affect 20,000

Deepfake Attacks Prompt Change in Security Strategy

Despite Bans, AI Code Tools Widespread in Organizations

Fake postal messages targeting Indian users is linked to China, researchers say

Feds warn of North Korean Andariel cyber group, offer $10 million reward

Financial Business and Consumer Solutions (FBCS) data breach impact now reaches 4.2 million people

France initiates international “disinfection” to exterminate RAT prior to the Olympics

France launches large-scale operation to fight cyber spying ahead of Olympics

Gemini Cryptocurrency Exchange Files Official Notice of Third-Party Data Breach

Google Cloud targeted by PINEAPPLE and FLUXROOT for phishing attacks

Hacktivists Claim Leak of CrowdStrike Threat Intelligence

Handala Allegedly Breached Israeli Bio-Medical Firm

How Cyber Attackers Are Exploiting AI

India Confirms State-Owned Telecom Giant BSNL’s Data Breach, Millions of User Records Compromised

India Highlights Key Government’s Initiatives to Boost Cybersecurity

Infosys McCamish facing fourth class action suit over 2023 data breach

IntelBroker Offers Unauthorized Access to Popular Programming Language’s Repositories

Is your firm under attack?

Most CISOs feel unprepared for new compliance regulations

Networking Equipment Riddled With Software Supply Chain Risks

North Korean charged in cyberattacks on US hospitals, NASA and military bases

North Korean hacker indicted for allegedly extorting U.S. hospitals; agencies issue cyberthreat advisory

North Korean Hackers Target Critical Infrastructure for Military Gain

Offensive AI: The Sine Qua Non of Cybersecurity

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining

Oxfam Hong Kong investigates potential data breach following cyberattack

Peco Foods, Inc. Notifies 48k Consumers of Recent Data Breach

Pinnacle Bank Provides Notice of Data Breach Following Compromised Employee Email Account

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327)

Renewed call for blood donors as cyber attack effects continue to be felt

Researchers Warn of Increased Cyberterrorism Activity Targeting Paris Olympics

Rite Aid Data Breach Lawsuit Says 2.2 Million People Impacted by 2024 Cyberattack

Russian ransomware gangs account for 69% of all ransom proceeds

Saving Lives and Data: How Healthcare CTOs Can Combat Rising Cyber Threats

Secure Boot ‘PKfail’ Vulnerability Exposes Widespread Supply Chain Weakness

SeleniumGreed: The Growing Threat of Cryptomining via Exposed Selenium Grid Services

Senators to Federal Trade Commission (FTC): Car companies’ data privacy practices must be investigated

SideWinder APT Group Targets Maritime Facilities in Possible Espionage Campaign

Smishing vs. Phishing vs. Vishing: What's the Difference?

Spain Remains a Target of Alleged Cyber Attacks

Suspect Indicted in North Korea Group’s Expansive Spying Operation

Synnovis Restores Systems After Cyber-Attack, But Blood Shortages Remain

Taiwanese electronics giant allegedly suffered a ransomware attack

This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

Thousands of surveilled devices exposed in spyware vendor hack

U.S. Department of Justice (DoJ) Indicts North Korean Hacker for Ransomware Attacks on Hospitals

U.S. indicts, offers $10 million reward for North Korean hacker

UK hospitals' SOS amid cyber attack: 'Unprecedented' blood shortage, please help

US Charges North Korean Hacker for Ransomware Attacks on Hospitals

US grand jury indicts North Korean hacker for role in Andariel cyberattacks

US Offers $10 Million Reward for Information on North Korean Hacker

25th July

12.9 million individuals affected by MediSecure cyber breach

A Prescription for Disaster: Cyberwarfare’s Threat to Healthcare

A Threat Actor Claims to Have RCE Exploit in Albatross Protocol, Selling for $10k

Alleged data breach denied by Bullhorn

Belarus-linked hackers target Ukrainian orgs with PicassoLoader malware

Beware! Deceptive LNK Files Used in Indian Political Espionage Campaign

Chinese SMS Phishing Group Hits iPhone Users in India Post Scam

CISA Warns of Exploitable Vulnerabilities in Popular BIND 9 DNS Software

Cloud security threats CISOs need to know about

Columbus reports cyber incident as multiple cities recover from ransomware attacks

Compex Data Breach: Legal Firm Notifies Clients of Unauthorized Access to Client Data

ConfusedFunction Vulnerability Found in Google Cloud Platform - Protect Your Accounts

Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins

Critical ServiceNow RCE flaws actively exploited to steal credentials

CrowdStrike says hackers are threatening to leak sensitive information about adversaries

Cyber Insurance Won’t Cover Billions in CrowdStrike Losses

Cybersecurity Firm KnowBe4 Tricked into Hiring North Korean Hacker as IT Pro

Data breach exposes US spyware maker behind Windows, Mac, Android and Chromebook malware

Deleted GitHub data is forever accessible to anyone, researchers claim

Docker fixes critical auth bypass flaw, again (CVE-2024-41110)

Escalating ransomware and phishing threatening UK’s most critical industries

French police push PlugX malware self-destruct payload to clean PCs

Hacked, leaked, exposed: Why you should never use stalkerware apps

Harnessing Threat Intelligence for Competitive Advantage: Blueprint for Business Success

Hong Kong Moves Toward First Cybersecurity Legislation

How CISOs enable Identity Threat Detection and Response (ITDR) approach through the principle of least privilege

Indian Ministry of Defence (MoD) Allegedly Breached 1.8 Million Rows Exposed

Israel tried to influence WhatsApp case against Pegasus spyware maker, rights group says

Justice Department indicts North Korean military hacker for extorting hospitals, health care providers

Malware Attacks Surge 30% in First Half of 2024

Meta nukes massive Instagram sextortion network of 63,000 accounts

Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams

Most IT Leaders Say Severity of Cyber-Attacks has Increased

National Cyber Security Centre (NCSC) and partners issue warning over North Korean state-sponsored cyber campaign to steal military and nuclear secrets

New Alleged Cyber Attacks Targeting Spanish Organizations

New Chrome Feature Scans Password-Protected Files for Malicious Content

Norfolk and Norwich University Hospitals investigating cyber attack

North Korea hackers trying to steal nuclear secrets, US and UK warn

North Korean charged in ransomware attacks on NASA, U.S. hospitals; $10 million reward offered

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks

North Korean hacking group targeted weapons blueprints, nuclear facilities in cyber campaigns

OpenAI’s SearchGPT: A Game Changer or Pandora’s Box for Cybersecurity Pros?

Phishing Attacks Hit Guernsey: Office of the Data Protection Authority (ODPA) Calls for Enhanced Cybersecurity Measures

PKfail Secure Boot bypass lets attackers install UEFI malware

Play Ransomware and LockBit Allegedly Created an Alliance

Progress warns of critical RCE bug in Telerik Report Server

RA World Ransomware Group Announced Three New Victims

Ransomware and Business Email Compromise (BEC) Make Up 60% of Cyber Incidents

Researchers Claim Anyone Can Access Deleted, Private GitHub Repository Data

Researchers Reveal ConfusedFunction Vulnerability in Google Cloud Platform

Scattered Spider Using RansomHub and Qilin Ransomware Against Victims

Security Firm Accidentally Hires North Korean Hacker, Did Not KnowBe4

Security firm experiencing nightmare after learning remote employee is North Korean hacker

SEXi/APT Inc Ransomware - What You Need To Know

The most urgent security risks for GenAI users are all data-related

Threat Actor Claims to Have Leaked Student Database of La Salle University

Two Mexican Political Parties Allegedly Breached

UK hospitals face 'unprecedented' blood shortage after cyber attack

US indicts alleged North Korean state hacker for ransomware attacks on hospitals

US offers $10M for tips on Democratic People's Republic of Korea (DPRK) hacker linked to Maui ransomware attacks

Venture Capital: The New National Security Risk

What Brands Were the Most Imitated by Cyber-criminals in Q2?

24th July

7 password rules to live by in 2024, according to security experts

140,000 US Credit Card Information is Allegedly For Sale

A secretive phishing network on GitHub is distributing malware

Activists accuse proposed UN Cybercrime Treaty of empowering surveillance, repression

AI accelerates code development faster than security teams can keep up

Alleged Access Sale for an Indian Investment Company

Biggest-ever leak of digital pirates: 10 million exposed by Z-Library copycat

BreachForums Database Allegedly Leaked

BreachForums leak lets hackers attack each other

BreachForums v1 database leak is an OPSEC test for hackers

Bullhorn Refutes Data Breach Claims, Confirms Partner Company Was Impacted

CISA Adds Twilio Authy and IE Flaws to Exploited Vulnerabilities List

CISOs, CIOs Struggle with Data Protection Challenges in AI, Cloud Era

Critical Exim Vulnerability Threatens Millions of Email Servers

CrowdStrike outage fuels rise in phishing scams

Cyber Insurance Market Evolves as Threat Landscape Changes

Cyberattacks on the Paris Olympics are inevitable, says French Prime Minister

Data breach victims increased by 490% since the first half of 2023

Docker fixes critical 5-year old authentication bypass flaw

Dorset Council put at risk of cyber attack by untrained staff

Federal Trade Commission (FTC) Fires Warning Shot at Surveillance Pricing

Global Cyber Agencies Warn of Phishing Threat Following Worldwide It Outage

Google Chrome’s New Defenses Against Malicious Downloads

Google Criticized for Abandoning Cookie Phase-Out

Google Says It Will No Longer Block Third-Party Cookies in Chrome

Hacker claims theft of Piramal Group’s employee data

Hackers Targeting Spain After the Arrest of Cybercriminals

India: CERT-In Reports Data Breach at Bharat Sanchar Nigam Ltd (BSNL)

KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack

KnowBe4 Uncovers Fake Employee: How a North Korean Hacker Was Hired into the Team

Major Russian banks hit with DDoS attacks as Ukraine claims responsibility

Meow Ransomware Group Claims to Hack and Sell Data from Three Firms

Meta bans 63,000 accounts belonging to Nigeria’s sextortionist Yahoo Boys

Meta deletes 63K sextortion scam accounts from Instagram, Facebook

Microsoft Defender Flaw Exploited to Deliver ACR, Lumma, and Meduza Stealers

Middle East financial institution hit with six-day DDoS attack

Network of ghost GitHub accounts successfully distributes malware

New Phishing Scheme Combining Spear Phishing Tactics in Mass Phishing Campaigns

North Korean Hacker Attack: Disguising Work Finders To Target Mac Users With Malware

North Korean hacker masquerades as IT worker in elaborate infiltration attempt

North Korean Hackers Targeted Cybersecurity Firm KnowBe4 with Fake IT Worker

Over 3,000 GitHub accounts used by malware distribution service

Patchwork Hackers Target Bhutan with Advanced Brute Ratel C4 Tool

Philippines Shuts Down Online Gambling In Effort to Curb Financial Scamming

Popular Hamster Kombat game has become ‘ripe for abuse’ by cybercriminals, researchers warn

Red Art Games Faces Cyberattack, Customer Data Compromised

Stolen Documents From Pentagon IT Provider Leidos Leaked By Hackers

Stop following the herd to start fighting ransomware

Stormous Announced the Release of Ransomware Program Version 3

Telegram App Flaw Exploited to Spread Malware Hidden in Videos

The Importance of Dark Web Monitoring for CEOs

The Philippines: Teen hacker nabbed in General Santos City

The Russian banking system is under a cyber attack by the Ukrainian Defense Ministry's Main Intelligence Directorate

The Value in Root Cause Analysis for Vulnerability Management

WazirX Confirms INR Funds Secure Despite $230 Million Cyberattack

What Triggers a Rise in Targeted Ransomware Attacks?

Windows SmartScreen Flaw Enabling Data Theft in Major Stealer Attack

23rd July

8 Ways to Protect Your Company Against Ransomware Right Now

2024 Cyber Attacks Report Reveals Africa Was the Hardest Hit Region

Airlines forced to cancel flights after airport hacker attack

Alleged Maybank2u Database Published on a Dark Web Forum

Android Telegram users hit by zero-day exploit masquerading as “xHamster”

Anonymous hacks Israeli Security Ministry, gives it 48 hours to end war

Arisa Health Issues Notice of Data Breach Affecting an Unknown Number of Patients

BioMatrix Specialty Pharmacy Notifies Consumers of December 2023 Data Breach

BreachForums v1 hacking forum data leak exposes members’ info

Care Vision UK Database was Allegedly Leaked

China-linked Daggerfly hackers update their toolset, likely after exposure

Chinese Espionage Group Upgrades Malware Arsenal to Target All Major OS

Chinese hackers deploy new Macma macOS backdoor version

Chinese Hackers Target Taiwan and U.S. NGO with MgBot and MACMA Malware

CISA Issues Warning: CrowdStrike Outage May Lead to Phishing and Malware Attacks

CISA Warns of Phishing Scams Exploiting CrowdStrike Outage Chaos

City of Cold Lake phones, facilities down following possible cyber attack

City of Cold Lake shuts down servers following cyber attack

Class Action Lawsuit Filed Over Latest AT&T Data Breach Releasing Customers’ Phone Records

Cloud Security: How to Keep Your Data Safe in the Digital Sky

Crowdstrike outage becomes an opportunity for hackers globally

Cyber Pros Spot Spike in Malicious Activity Over CrowdStrike Outage

Cyber Security Public-Private Partnerships Are Taking Off in APAC

Cyberattack Hits Croatia's Split Airport

Data Breach at Jim Ellis Automotive Group Results in Leaked Financial Info and Consumer SSNs

DeFi exchange dYdX v3 website hacked in DNS hijack attack

Devastating ransomware attack shuts down Los Angeles County courts

Don't Panic! Phishing Scam Targets Internet Users with Fake Court Orders

Early Detection, Fewer Headaches: The Benefits of Dark Web Monitoring for CFOs

Employer Flexible Confirms Data Breach Related to myHR Platform

Enterprise software provider exposed nearly a billion records in data breach

Fake CrowdStrike repair manual pushes new infostealer malware

Federal Trade Commission (FTC) launches probe into how companies use data to tailor what each customer pays

FrostyGoop malware attack cut off heat in Ukraine during winter

FrostyGoop malware left 600 Ukrainian households without heat this winter

Google Cloud projects are being hijacked for phishing campaigns

Hackers Abusing Google Cloud For Phishing

Hackers cut heat to 600 buildings in the peak of winter

Hackers shut down heating in Ukrainian city with malware, researchers say

Hamster Kombat’s 250 million players targeted in malware attacks

Ireland: Court to get final report into alleged Independent News and Media data breach on Thursday

Largest US trial court forced to shut down following ransomware attack

Magento Sites Targeted with Sneaky Credit Card Skimmer via Swap Files

Major Tunisian internet provider leaks data of nearly half a million customers

MediSecure Data Breach Update Confirms 12.9 Million Records Stolen; Identification of Affected Individuals Difficult

Meta Given Deadline to Address E.U. Concerns Over 'Pay or Consent' Model

Meta given weeks to tell EU consumer protection authorities how it’ll fix ‘pay or consent’

Mexico’s Largest ERP Provider ClickBalance Exposes 769 Million Records

MFA Failures and Surging Ransomware Losses: What’s Going On?

National Public Database Allegedly Partially Leaked

Navigating the Rise in Cybersecurity Threats in Wake of the CrowdStrike Outage

Nearly 57,000 Michigan Medicine Patients Notified of Data Breach Following Cyberattack

New DDoS Panel “Cliver” Announced by Threat Actor

New Industrial Control Systems (ICS) Malware 'FrostyGoop' Targeting Critical Infrastructure

New phishing report names and shames Top Level Domains (TLDs), registrars

NoName pro-Russian hackers arrested in Spain, group vows retaliation

Over 750 million records exposed by ERP firm data breach - find out if you're safe

Philips Vue PACS Vulnerabilities Put Patient Data at Risk: Healthcare Sector on High Alert

Phish-Friendly Domain Registry “.top” Put on Notice

Phishers Exploit the Cybercrime Supply Chain Despite the Availability of Effective Countermeasures

Phishing, vishing, and smishing? Understanding the latest phone scams, including AI-generated voices

Play Ransomware Variant Targeting Linux ESXi Environments

Possible APT28-linked hackers target Ukraine’s scientific institutions

Privilege escalation: unravelling a novel cyber-attack technique

Prolific DDoS Marketplace Shut Down by UK Law Enforcement

Ransomware crackdown increases cyber threat fragmentation

Ransomware ecosystem fragmenting under law enforcement pressure and distrust

Real Estate Scam: Nigerian Pleads Guilty To Defrauding Prospective Homeowners, Others In US Court

Red Art Games Hit With Major Cyber Attack

Red Art Games suffers cyber-attack and personal customer information stolen

Researchers Observe Persistent Olympic Scams Ahead of Start

Russia Shifts Cyber Focus to Battlefield Intelligence in Ukraine

Russia-Linked FrostyGoop Malware Threatens Industrial Control Systems Worldwide

Security Firm Discovers Remote Worker Is Really a North Korean Hacker

Shorenstein Realty Services Notifies Consumers of Recent Data Breach

Snowflake Responds to Major Data Breach with Multifactor Authentication (MFA) Option

Split Airport after the hacker attack: We will not negotiate

Supply Chain Cyberattacks are on the Rise - Here’s How U.S. Businesses can Fortify Their Defenses

Tech giants say foreign spyware victims should be able to sue NSO Group in US

The ‘2024 Fraudlympics’ highlight rising trends in global fraud

The biggest hacker alliance so far is determined to target NATO

The changes in the cyber threat landscape in the last 12 months

The Unseen Consequences Of AT&T's Data Breach On Minority Communities

Threat Actor Claims to Have Leaked Data of Chilean People, Including 14 Million Citizens Records

Threat Actor Claims to Sell Data of India’s Largest Automobile Dealer

Top Phishing Campaigns in July 2024: SharePoint Abuse, DeerStealer, and More

TracFone to pay $16 million to settle Federal Communications Commission (FCC) cyber and privacy investigation

Trello data breach affects 15 Million users’ email addresses

U.S. Government IT services provider Leidos faces cyber attack

UK Authorities Arrest Suspected Hacker in the Scattered Spider Group Linked to MGM Attack

UK school reprimanded for unlawful use of facial recognition technology

Ukrainian Institutions Targeted Using HATVIBE and CHERRYSPY Malware

Understanding the rising threat - and cost - of ransomware

Verizon to pay $16 million in TracFone data breach settlement

Vulnerability in Telegram app for Android allows sending malicious files disguised as videos

Windows users targeted with zero-day attacks via Internet Explorer

Your Biggest Security Risk: The Insider Threat

22nd July

17-year-old arrested for role in MGM Resorts cyberattack

A majority of the Securities and Exchange Commission (SEC) lawsuit against SolarWinds has been dismissed

Ad-injecting malware posing as DwAdsafe ad blocker uses Microsoft-signed driver

Alleged Cyber Attack by Handala Group Targets Israeli Organizations After CrowdStrike BSoD’ing Incident

Australian police seize devices used to send over 318 million phishing texts

Bullhorn Database was Allegedly Breached

California officials say largest trial court in US is the victim of a ransomware attack

CISA Alert Calls Out Operating System Vulnerabilities

Critical Bazaar Vulnerability CVE-2024-40348: Directory Traversal Flaw Threatens System Integrity

CrowdStrike Incident Leveraged for Malware Delivery, Phishing, Scams

‘CrowdStrike Phishing Emails To Get Worse Before Better’
CrowdStrike warns about these phishing and fraud attempts following global outage

Crypto community alert: Turbo Toad phishing attacks and Evolve Markets security breach

Customers of PHL Variable Insurance Company Affected by Infosys McCamish Systems Announces Data Breach

Cyber-attacks Soar 30% Globally in Q2 2024

Cyberattack shuts down Los Angeles County courts for another day. Here's where things stand

Cybercriminals Exploit CrowdStrike Outage Chaos

Cybercriminals Launched Phishing Attacks After Microsoft’s Global Outage

Cybercrooks crafting solo careers in wake of ransomware takedowns

CyberSecurity Malaysia (CSM) Warns Of Imminent Phishing Threats Following CrowdStrike Disruption

Dark web shows cybercriminals ready for the Olympic Games. Are you?

Data Breach Defense Guide: Steps to Protect Yourself After a Security Incident

Data of 13 million MediSecure customers compromised in ransomware attack

Devastating ransomware attack shuts down Los Angeles County courts

Disney Slack message data breach allegedly contains 1.1TB of data

End-user cybersecurity errors that can cost you millions

Experts Expect Ransomware Surge After Police Disruption

Fake CrowdStrike Fixes Are Spreading Malware, Data Wipers

Faulty CrowdStrike Update: Hackers Exploit Situation with Phishing And Malicious Software, How To Stay Safe

Fractal ID Data Breach: 6,300 Users’ Data Leaked

Fractal ID Data Breach Caused by Vulnerability Leading Back to 2022

Good Smile Company was Allegedly Breached

Google Researchers Detailed Tools Used by APT41 Hacker Group

Greece’s Land Registry agency breached in wave of 400 cyberattacks

Greece's land registry targeted in cyberattack

Guilty plea entered by LockBit ransomware affiliates

Hacker groups found abusing Google Cloud for credential phishing

Hacker thought to be behind to MGM attack arrested by UK police

Hackers are already targeting users with fake CrowdStrike fixes - here's what we've seen so far

Hamster Kombat Players Face Phishing Attacks Through Fake Airdrop Scams

Hamster Kombat Players Targeted in Phishing Attacks: What You Need to Know

How to Prepare Your Workforce for the Deepfake Era

India’s Largest Cryptocurrency Exchange WazirX Hacked: $234.9 Million Stolen

Internet Organised Crime Threat Assessment (IOCTA) 2024 report: Law enforcement deals major blows against EU cybercrime, disrupt ransomware networks

Keystone State Tweaks its Data Breach Notification Law Again

Largest trial court in the US closes after ransomware attack, California officials say

Life360 Users Suffer Data Breach, Leak on Dark Web

Los Angeles County court system slated to reopen Tuesday after ransomware attack

Los Angeles County courts hit by ransomware attack

Los Angeles County Courts Shut Down After Ransomware Attack

Los Angeles County Superior Court closed following ransomware attack

Los Angeles County Superior Court Closed Monday Due To Ransomware Incident

Los Angeles County Superior Court closes doors to reboot justice after ransomware attack

Los Angeles County Superior Courts closed Monday due to ransomware attack

Los Angeles Courthouses Close for Ransomware Recovery

Los Angeles Superior Court shuts down after ransomware attack

Los Angeles Superior Courts closed today following ransomware attack

Malaysia: Agency warns of phishing threats after global disruption

Malicious payloads distributed via fraudulent CrowdStrike fixes

MediSecure data breach following ransomware attack affects millions of patients

Microsoft CrowdStrike outage: Malicious actors trying to exploit tech outage for their own gain

Microsoft-Crowdstrike IT outage triggers wave of phishing attacks

National Crime Agency (NCA) infiltrates DDoS-for-hire site as suspected controller arrested in Northern Ireland

New Linux Variant of Play Ransomware Targeting VMware ESXi Systems

New Play ransomware Linux version targets VMware ESXi VMs

Peruvian Taxpayers’ Data Allegedly Leaked

PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing

Play: Notorious Ransomware Now Has a Variant That Runs on Linux

Play Ransomware Expands to Target VMWare ESXi Environments

Police infiltrates, takes down DigitalStress DDoS-for-hire service

Popular Ukrainian Telegram channels hacked to spread Russian propaganda

Protecting Telecom Networks: CTO Strategies for Dark Web Threats

Ransomware attack keeps Los Angeles Superior Courts shuttered

Ransomware Attack On Los Angeles County Superior Court

Ransomware Attack Shuts Down Los Angeles County Courts, Halts Inmate Transfers, Evictions

Ransomware Attack Shuts Down Los Angeles Courthouses

Ransomware attack shuts down three dozen Los Angeles courts

Ransomware Attack Shutters Los Angeles County Courts

Ransomware Costs Surge: Local Governments Pay Most, IT Firms Pay Least

Ransomware Groups Fragment Amid Rising Cybercrime Threats

Ransomware Recovery Effort Cost Suffolk County $25.7 Million, Prompting Investigation

Recovery Costs for Energy, Water Infrastructure Sectors Reach $3m Yearly

Researchers discovered a new phishing kit on the dark web

Rising ransomware costs hit energy and water sectors

Russia dismisses US sanctions against members of 'Cyber Army' hacktivist group

Scammers Rush In to Exploit CrowdStrike Chaos

Second Special Educational Needs and Disabilities (SEND) data breach at Central Bedfordshire Council

ShadowRoot ransomware group targets Turkish entities

SocGholish Malware Exploits BOINC Project for Covert Cyberattacks

Spain arrests three for using DDoSia hacktivist platform

Spanish police arrest three suspects linked to pro-Moscow NoName057(16) hackers

Surge in Phishing Post-Outage: CrowdStrike Issues Warning

Teenager Connected to the Scattered Spider Cybercrime Group Arrested in the UK

Telegram Android Vulnerability “EvilVideo” Sends Malware as Videos

Telegram zero-day allowed sending malicious Android APKs as videos

Telegram zero-day for Android allowed malicious files to masquerade as videos

The cost of dealing with a ransomware attack is skyrocketing for some industries

The grim impact of ransomware attacks

The world wakes up to Crowdstrike-Windows IT outage, triggering spate of phishing attacks

Two LockBit Ransomware Affiliates Plead Guity and Face Up to 70 Years in Prison

Two Russian Men Plead Guilty in LockBit Ransomware Attacks

Two Russians Convicted for Role in LockBit Attacks

UK arrests MGM Resorts hack-linked 17-year-old

UK police arrested a 17-year-old linked to the Scattered Spider gang

UK teen arrested in connection with MGM Resorts ransomware attack

UK Teen Arrested in MGM Resorts Las Vegas Ransomware Case

US Sanctions Russian Hackers Over Infrastructure Attacks

US sanctions Russian hacktivists who breached water facilities

Uzbekistan: Court convicts 20-year-old hacker from Samarkand for defrauding businessmen via Telegram

VMware ESXi servers targeted by new Linux ransomware variant

VMware ESXi subjected to attacks with novel Play ransomware for Linux

Warning issued about phishing attacks post global tech outage

WazirX Cyberattack: $230 Million Stolen, Bounty Program Launched Amid Security Crisis

WazirX Doubles Bounty as Hacker Moves $57M in Stolen Ether; Will It Work?

WazirX hacker consolidates $57 Million ETH into new wallets

WazirX Hacker Has $5 Million Left After Dumping Uniswap, Chainlink, and Other Alts

WazirX hacker moves $2.4M more, only $5M left now

WazirX Hacker Moves $57M ETH to New Wallets as Exchange Boosts Bug Bounty Efforts

WazirX hacker moves $57M in ETH, exchange increases bounty to $23M

WazirX halts trading, announces $23 million bounty after hackers steal $234 million

WazirX Offers $23 Million to Hacker to Return Stolen Funds, Users Remain Concerned

WazirX Offers $24-Million Bounty To Recover The $230 Million Stolen In Cyber Attack

WazirX pauses trading after $230m cyber-attack loss

WazirX, Li.Fi hacks show continuing hacker threat for crypto

Whale phishing: Real estate firm loses Rs 40 lakh as cyber fraudsters pose as company director

What Goes Around Comes Around: The Resurgence of Data Breach Class Actions

What If Airtel’s Data Was Breached?: A Deep Dive into Possible Outcomes