Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Tuesday, 29 October 2024

Ransomware Operator Claims - Week 43 2024

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 21st October and 27th October 2024, kindly assisted by our partners.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.


Monday, 28 October 2024

Data Breaches Digest - Week 44 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 28th October and 3rd November 2024.


3rd November

ChatGPT-4o can be used for autonomous voice-based scams

Chinese threat actors use Quad7 botnet in password-spray attacks

Gmail 2FA Cyber Attack - Open Another Account Before It’s Too Late

Italy’s cyber espionage scandal: High-profile data breach, secret service sales

LockBit, BlackCat, and stealer malware among top threats in Vietnam Q3 2024

Meet Interlock - The new ransomware targeting FreeBSD servers

Memorial Hospital and Manor investigating cyber attack

Millions Affected by Largest US Data Breach – Check to See if You Are Affected

OpenAI is being spoofed as part of a major phishing attack

Portsmouth City Council website now working following cyber attack

Types of Phishing Attacks You Should Know About

What is BlackCat ransomware in crypto?

Whistleblowers claim Children’s Health Ireland (CHI) staff are exposing hospitals to data breach by using personal phones and laptops

Who Is Responsible for the Star Health Data Breach? Investigation Update and IRDAI’s Response

2nd November

Cyber attack crashes city council website with other UK authorities targeted

Cyberattacks on businesses rise as survey reveals internal risks

Data Breach Impacts 800,000 Insurance Customers

Exeter City Council targeted by hackers in cyber attack

FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info

How I Spot Phishing Emails Easily (and You Can, Too)

Microsoft SharePoint RCE bug exploited to breach corporate network

Nagaland Board of School Education (NBSE) requests schools to reupload student photos and signatures after cyber attack corrupts files

New Password Hack Attack - Chrome, Facebook, Netflix, PayPal Users At Risk

Nigerian gets prison for email phishing, spoofing scam that stole down payments for homes

Portsmouth among councils hit by cyber attack

PTZOptics cameras zero-days actively exploited in the wild

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

What keeps cybersecurity professionals up at night? It’s not AI...yet

Xiū gǒu: a new phishing kit on more than 2000 fake sites

1st November

1.5TB allegedly stolen in Australian Nursing Home Foundation cyber attack

4 key strategies for school ransomware prevention and response

50% of financial organizations have high-severity security flaws in their apps

87,000 Individuals Affected by Recent Mystic Valley Elder Services Data Breach

A Step-by-Step Guide to How Threat Hunting Works

AI-generated cyberattacks create new headache for businesses

Alleged Data Breach of Ensinio Platform: Threat Actor Claims Exposure of 161,000 Users

Azure AI Vulnerabilities Allowed Attacks to Bypass Moderation Safeguards

‘Black Basta’ Ransomware Group Targets Microsoft Teams

Booking.com Phishers May Leave You With Reservations

California court suffering from tech outages after cyberattack

CISA Warns of Critical Software Vulnerabilities in Industrial Devices

CISA warns of foreign actor conducting large-scale spear-phishing campaign with malicious files

City council in Hampshire falls victim to cyber attack

Classes cancelled at Irish university after cyber attack as major investigation launched & campus left without internet

Critical LiteSpeed Cache Plugin Vulnerability Allows WordPress Websites Escalation of Privilege (EoP)

Crypto Exchange M2 Hit by $13.7M Security Breach, Delivers Full Compensation

Cyber attack on tech provider blacks out live tracking for UK retail deliveries

Data breach at Arizona pharmacy impacted close to 800,000 patients

Data leak forces Interbank to confirm a data breach

DDoS site Dstat.cc seized and two suspects arrested in Germany

Doctor Hit With $500K HIPAA Fine: Feds Worse Than Hacker

Eagle County’s top election official says vote remains secure after state-level data breach

Elections Nova Scotia warns of phishing email scam

Elections Nova Scotia warns of phishing scam trying to collect personal information

EMERALDWHALE Steals 15,000+ Cloud Credentials, Stores Data in S3 Bucket

FBI wants more info on hackers behind Sophos exploitation after report on China’s intrusions

Federal agency investigating how Meta uses consumer financial data for advertising

French internet provider Free says data breach impacted millions of customers

Georgia’s Election Website Suffers a Suspected Nation-State Cyber Attack

German Pharma Wholesaler AEP Targeted in Ransomware Attack

German Pharmaceutical Hit by Cyber-Attack

German police arrest two for alleged ties to DDoS-for-hire platform

Global Scams Used Xiū gǒu Phishing Kit

Global Shopping Scam Dupes Hundreds of Thousands, Costs Tens of Millions

Google warns of new cyber attack against Android and Windows

Hacker leaked 3 million people's data after Peru's Interbank refused to pay a ransom

Hackers claim to have stolen R175 million after infiltrating South African banking system

Hundreds of online shops have been hacked to show fake product listings in major phishing scam

India: Government behind the curve as cyber criminals step up their attacks

Inside Iran's Cyber Playbook: AI, Fake Hosting, and Psychological Warfare

Lampard Community School 'blackmailed' by hackers in cyber-attack

LastPass warns of fake support centers trying to steal customer data

Los Angeles housing agency confirms another cyberattack after 2023 ransomware incident

Los Angeles (LA) housing authority confirms breach claimed by Cactus ransomware

LottieFiles confirmed a supply chain attack on Lottie-Player

Lynchburg students and staff targeted by phishing email attack, school says

Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned

Microsoft Delays Windows Copilot+ Recall Release Over Privacy Concerns

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

Microsoft warns of Midnight Blizzard phishing campaign

More than half of all cyber attacks in agrifood are ransomware, ‘any size’ business at risk, says threat intelligence group

Nearly 1 Million Vulnerable Fortinet, SonicWall Devices Exposed to the Web

New Email 2FA Attack Warning - Stop The Gmail Hackers Now

New LightSpy spyware version targets iPhones with destructive capabilities

New Phishing Kit Xiū gǒu Targets Users Across Five Countries With 2,000 Fake Sites

New Ransomware Group Sarcoma Targets Australian Companies

Nicholas Scullion is sharing his ransomware experiences to ensure it doesn’t happen to others

Novel Xiū gǒu phishing kit has global reach

Passkeys are more popular than ever. This research explains why

Phishing Alert: Cybercriminals Impersonating KnowBe4 Training Emails

Police seek compromise with Consumer Financial Protection Bureau (CFPB) as regulator mulls reining in investigator access to sensitive data

Protecting the Healthcare Supply Chain Against Russian Ransomware Attacks

RansomHub Dominates as Lockbit Falls: Ransomware Landscape Shifts

Ransomware Attack Disrupts German Pharmaceutical Supplies, Affects Thousands of Pharmacies

Ransomware attack hits German pharmaceutical wholesaler, disrupts medicine supplies

Ransomware attacks hit record levels in 2024 despite law enforcement crackdowns

Ransomware still the #1 cyber threat

Ransomware’s Evolving Threat: The Rise of RansomHub, Decline of Lockbit, and the New Era of Data Extortion

RENIEC Allegedly Breached 37 Million Citizens Data Leaked

Rumpke cyber attack under investigation: Hackers allegedly stole 3.3 terabytes of data

Russian Hackers Launch Phishing Campaign Targeting Critical Sectors

Saint Xavier University Notifies Over 200k People of Recent Data Breach

SelectBlinds Files Official Notice of January 2024 Data Breach

Soliant Health Announces Data Breach Stemming from Compromised Email Account

Sophos Warns Chinese Hackers Are Becoming Stealthier

South East Technological University hit by cyber attack

South East Technological University (SETU) Waterford Campus hit by cyber attack

South East Technological University (SETU) Waterford hit by major cyber attack, Monday's classes cancelled

Summit Pathology: 1.8 Million Individuals Affected by Ransomware Attack

Summit Pathology says data security incident impacted over 1.8 million patients

Synology hurries out patches for zero-days exploited at Pwn2Own

Telematics giant Microlise suffers cyber attack

The biggest underestimated security threat of today? Advanced persistent teenagers

Threat Actors Exploit GitHub and Bitbucket for Malicious Ad Campaigns via CMS Platforms

Threat actors list Samsung Electronics access for sale online

ThreeAM ransomware lists ANU Enterprise on its dark web blog

Transport for London's Oyster card service remains unavailable two months post breach

Trump family, Biden aides among China hack targets, New York Times reports

US and Israel Warn of Iranian Threat Actor’s New Tradecraft

Xiū gǒu, New Phishing Kit Targets the US, the UK, Australia, Japan, and Spain via 2,000 Fake Sites

Young People’s Data at Risk in Cyberattack on French Government Contractor

Young people’s data feared stolen in cyberattack on French government contractor

Zero-Click Flaw Exposes Potentially Millions of Popular Storage Devices to Attack

31st October

6 Tips to Avoid Phishing Emails

99% of CISOs work extra hours every week

2024 looks set to be another record-breaking year for ransomware - and it’s likely going to get worse

Amazon Seizes Domains Used by Russian Hackers Targeting Windows Users

Beware: fake ads on Facebook spreading account-stealing malware

Blackburn College Still Operating Despite Cyber-Attack

Burnley Council website online after cyber attack

Canada targeted by Chinese hacking efforts

Canada's spy agency accuses India of launching cyber attack & tracking pro-Khalistanis in a scathing report

Canadian Government Data Stolen By Chinese Hackers

Chinese hackers use Quad7 botnet to steal credentials

Cyber attack wipes out DHL delivery tracking systems causing issues for Nisa retailers

Cybercriminals are leveraging big retail names in attacks this holiday season

Did Israel conduct cyber attack on Iran's air defences before bombing?

Ex-Disney worker hacks food menu software, alters peanut allergen warnings, FBI says

Facebook Business Pages Hijacked in SYS01 Infostealer-Distributing Malvertising Campaign

FakeCall Android Trojan Improves Espionage Capabilities and Evasion Tactics

Federal agency confirms that a health data breach affects a third of Americans

Germany and Spain hit with stealthy attacks: Strela Stealer evolves

Global operation EMERALDWHALE steals 15K cloud credentials

Government Sector Suffers 236% Surge in Malware Attacks

Hackers gain access to financial information for a large number of South Africans

Hackers target critical zero-day vulnerability in PTZ cameras

Hackers target SonicWall VPNs to spread ransomware

How agentic AI handles the speed and volume of modern threats

Information Commissioner's Office (ICO): Companies must do more to help customers affected by “devastating” data breaches

Inside a Firewall Vendor's 5-Year War With the Chinese Hackers Hijacking Its Devices

Interbank Confirms Data Breach

Interbank data breach exposes 3.7 TB data of 3 million customers

IoT needs more respect for its consumers, creations, and itself

Iranian cyber group targeted Summer Olympics with attack on French display provider

Karnataka Bitcoin scam: Special Investigation Team (SIT) efforts to verify hacker Sriki’s claims draw tepid response from crypto exchanges

Landmark Admin Reports Data Breach, Exposing 800,000 Users’ Information

Large Peruvian bank warns of data theft after dark web post emerges

Lawsuit revived over health district data breach

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites

LiteSpeed Cache WordPress plugin bug lets hackers get admin access

Loose-lipped neural networks and lazy scammers

Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups

LottieFiles hacked in supply chain attack to steal users’ crypto

LottieFiles Issues Warning About Compromised "lottie-player" npm Package

Medusa Ransomware Hack of Pathology Lab Affects 1.8 Million

Microsoft delays its troubled AI-powered Recall feature yet again

Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations

Misconfigured Git Configurations Targeted in Emeraldwhale Attack

New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics

New Stealthy Strela Stealer Variant Evades Security Tools, Targets Central and Southwestern Europe

New Windows Warning As Hacker Breaks Google Chrome 2FA Security Encryption

New Xiū gǒu Phishing Kit Hits UK, US, Japan, Australia Across Key Sectors

New Xiu Gou Phishing Kit Targets US, Other Countries with Mascot

North Korea's Andariel Pivots to 'Play' Ransomware Games

North Korean Hackers Collaborate with Play Ransomware

North Korean hackers linked to Play ransomware attacks

North Korean hackers pave the way for Play ransomware

North Korean Hackers Team Up with Play Ransomware in Global Attack

North Korean State-Sponsored APT45 and Play Ransomware Launch a Collaborative Cyberattack

Opera Browser Fixes Critical Data-Exposing Security Flaw in Recent Update

Over 80% of US Small Businesses Have Been Breached

Over a thousand online shops hacked to show fake product listings

Phishing Emails Peak During the Holidays – Here’s How to Avoid Them

Play ransomware: a growing epidemic threat to business operations

Pro-Russia hackers claim council cyber attacks

Pro-Russian hackers target Bury Council in cyber attack

qBittorrent fixes flaw exposing users to MitM attacks for 14 years

Russia to ban cryptocurrency mining in some regions due to electricity shortages

Russian Actor Midnight Blizzard Conducts Massive Spear-Phishing Campaign Using RDP Files

Russian group claims to have targeted Greater Manchester councils in cyber attack

Shopping scam sprawled across thousands of websites, bilked ‘tens of millions of dollars’

Small Businesses Boosting Cybersecurity as Threats Grow

Sophos mounted counter-offensive operation to foil Chinese attackers

Sophos reveals 5-year battle with Chinese hackers attacking network devices

St. Anthony Regional Hospital Provides Notice of Data Breach

Suspected pro-Ukraine cyberattack knocks out parking enforcement in Russian city

Telegram vs. Star Health: Is the insurance data breach case misdirected?

Threat actor says Interbank refused to pay the ransom after a two-week negotiation

Three common privilege access mistakes that can lead to a ransomware incident

Unit42 Detected Possible Collaboration Between North Korea and Play Ransomware

Western Sydney University suffers cyber attack, personal data compromised

What Are the Signs of AI in Phishing Scams?

What is a Passkey? Definition, How It Works and More

30th October

6 key elements for building a healthcare cybersecurity response plan

8 Cybersecurity Threats That Crypto Developers Are Battling Today

48% of people have been scammed while holiday shopping online - what to watch for

7,500 Phishing Emails Use Interesting Obfuscation Method to Target Student Loan Holders

800,000 users exposed in Landmark Admin data breach

A Deep-Dive into Russian Midnight Blizzard’s Campaign that Targeted Ukrainian Military, Government

An inside look at Mapfre’s 2020 ransomware response

Android malware "FakeCall" now reroutes bank calls to attackers

Apple is challenging hackers to break into the company’s servers: If you’re successful, you could earn up to $1 million

Apple Rolls Out Major Security Update to Patch macOS and iOS Vulnerabilities

Attackers can hijack WiFi using Philips Smart Lighting devices, researchers warn

Australia: 44% of New South Wales (NSW) government entities failed to comply with state data breach notification policy

Australian steel fabricator Meshworks suffers alleged Sarcoma ransomware attack

Brazil’s SAIC Allegedly Breached, 160,000 Citizens Exposed

BrightStar Care Announces Data Breach Following Compromised Employee Email Account

Burnley Council has been hit by a cyber security attack

Chinese hacking is biggest state cyber threat to Canada, spy agency says

Chinese state-backed hackers breached 20 Canadian government networks over four years, agency warns

CISA Launches First International Cybersecurity Plan

CISA Unveils 2025-2026 Plan to Strengthen Global Cyber and Infrastructure Resilience

Cozy Bear launches massive spear-phishing campaign, hijacking remote access

Cyber attack on Burnley Council brings website down

Cyberpanel Instances Fall Victim to Widespread PSAUX Ransomware Attack

Data breaches cost firms an average of USD $677 million

Doesn’t all types of phishing stink?

ExtraHop report reveals data breach costs exceed industry estimates

Fake Meta Ads Hijacking Facebook Accounts to Spread SYS01 Infostealer

FBI names four most common scams before US general election

Five Advanced Tactics to Fortify Against Ransomware Threats

Five critical cyber security trends that every business needs to know about

Foreign agencies allegedly using underwater lighthouses to spy on China

Global Midnight Blizzard spear-phishing operation underway

Greek Authorities Issue Warning and Safety Tips Amid Surge in Phishing Scams

Hacker Sentenced for Using AI to Develop Ransomware

Hackers Exploit Microsoft Teams In New Ransomware Scam

Hackers making users look like cybercriminals: developer gets bombarded with abuse complaints

Hackers steal 15,000 cloud credentials from exposed Git config files

Here's How to Freeze Your Credit After the Change Healthcare Data Breach

How to protect your digital life: Essential cybersecurity practices for everyone

Importance of protecting personal information online

Interbank confirms data breach following failed extortion, data leak

Irish businesses now facing more than one cyber attack per week

Italian Hacking Scandal Exposed Data of President, Former PM and Thousands More

Italian Hacking Scandal Exposes Personal Data of Thousands, Including President, Former PM

Jumpy Pisces Engages in Play Ransomware

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

Largest U.S. healthcare data breach exposes medical records of 100 million customers

Law firm investigating data breach at seafood wholesaler True World Group

LiteSpeed Cache Plugin Vulnerability Poses Admin Access Risk

Lonely hearts and empty wallets: how one scam artist defrauded his elderly victims

Long Island Plastic Surgical Group data breach exposes 161,707 patients’ information

Malvertising Campaign Hijacks Facebook Accounts to Spread SYS01stealer Malware

Malware campaign expands its use of fake CAPTCHAs

Massive data breach exposes 800,000 insurance customers' personal information

Massive Midnight Blizzard Phishing Attack Via Weaponized RDP Files

Microsoft issues warning for ongoing Russia-affiliated spear-phishing campaign

Microsoft says Russian hackers have launched major spear phishing attacks against US government officials

Microsoft Warns of Russian Spear-Phishing Attacks Targeting Over 100 Organizations

Microsoft warns of spear-phishing with RDP files

Midnight Blizzard Spearphishing Campaign Targets Thousands with RDP Files

Midnight Blizzard uses RDP to target 100 organizations in US, Europe

New malware on the loose targeting crypto traders' funds

New “Scary” FakeCall Malware Captures Photos and OTPs on Android

New Stealthy Strela Stealer Evades Security Tools

North Korea joins forces with underground hackers to spread ransomware

North Korean government hackers linked to Play ransomware attack

North Korean Group Collaborates with Play Ransomware in Significant Cyber Attack

North Korean hackers seen collaborating with Play ransomware group, researchers say

North Korean nation-state threat actor using Play ransomware

Opera Browser Fixes Big Security Hole That Could Have Exposed Your Information

Operation Magnus: Joint Law Enforcement Operation Targets Major Infostealer Networks

Over 22,000 CyberPanel Servers at Risk from Critical Vulnerabilities Exploitation by PSAUX Ransomware

Over Half of US County Websites “Could Be Spoofed”

Phishing Alert: National Bank of Greece Customers Targeted in Email Scam

Play ransomware attack tied to North Korean nation-state actor

Protecting Patient Data: How Healthcare Organizations Can Thwart Ransomware Attacks

PSAUX ransomware takes down 22,000 CyberPanel servers in massive zero-day attack

Ransomware Attacks Growing Concern in 2024

Ransomware hits web hosting servers via vulnerable CyberPanel instances

ReliaQuest links manufacturing breach to Scattered Spider

Researchers Uncover Python Package Targeting Crypto Wallets with Malicious Code

Reverse phishing is an emerging cyber threat

Risk hunting: A proactive approach to cyber threats

Rumpke investigating cyber security attack

Russia-linked Midnight Blizzard APT targeted 100+ organizations with a spear-phishing campaign using RDP files

Russia’s ‘Midnight Blizzard’ hackers target government workers in novel info-stealing campaign

Russian Cozy Bear Hackers Phish Critical Sectors with Microsoft, AWS Lures

Russian hackers deliver malicious RDP configuration files to thousands

Russian hackers intensify spear-phishing attacks on US targets, Microsoft warns

Russian Hackers Pose as Microsoft Employees in Email Phishing Attacks

Russian hackers target US officials in a new spear-phishing campaign

Russian Hackers Targeting U.S. Officials Ahead of Election, Microsoft Warns

Russian spies use remote desktop protocol files in unusual mass phishing drive

Security Vulnerabilities in Open-Source AI and ML Models Exposed

Simplifying decentralized identity systems for everyday use

Software and IT vendors linked to 67% of energy sector breaches

Spoof Eventbrite phishing emails look to lure in victims in major attack

Starkweather and Shepley Insurance Brokerage Provides Notice of Recent Data Breach

Stay Safe Online: October is Cybersecurity Awareness Month

Survey Surfaces Fundamental Weaknesses in API Security

Terrifying Android malware redirects your calls to hackers

The Latest Healthcare Data Breach Leaked Over 100 Million People's Information

Thousands of CyberPanel instances taken offline in massive ransomware attack

Thousands of vulnerable CyberPanel instances taken down in PSAUX ransomware attack

Timely Cybernews intervention helps protect PayDo customers’ financial data

Top cybersecurity threats and how proactive IT services can help

Transport for London (TfL) photocards still unavailable after cyber attack

Trustwave highlights rising e-commerce threats in retail sector

UK tradespeople targeted by clever Screwfix phishing scam

United Arab Emirates: Ransomware attacks cost region $1 billion last year, says top UAE official

Upcoming U.S. general election fuels multiple fraud schemes

Updated FakeCall Malware Targets Mobile Devices with Vishing

US Government’s New Traffic Light Protocol (TLP) Guidelines: A Step Towards Stronger Cybersecurity Partnerships

“You must do better”: Information Commissioner John Edwards calls on firms to beef up support for data breach victims

29th October

6 Tips to Avoid Falling for Phishing Emails – From A Cybersecurity Pro

31 new ransomware groups were discovered in 2024

55% of UK Adults Have Had Data Lost or Stolen

A Sherlock Holmes Approach to Cybersecurity: Eliminate the Impossible with Exposure Validation

American Water faces nine class actions after major data breach impacting millions

Apple Silences the Critics: visionOS 2.1 Plugs Major Security Holes

Atende refused to pay the ransom, and now pays the price

Black Basta Group Using QR Codes in Teams Chats for Initial Access

Blackburn College targeted in "cyber security incident"

Calgary Public Library says no info affected in ransomware attack

Chenlun’s Evolving Phishing Tactics Target Trusted Brands

Columbus won't meet mayor's goal of fixing computer systems from cyber attack by October 31st

Compliance is Key: How GDPR & CCPA Shape Secure Supply Chains

Compound Founder Withdraws $1.44 Million In EIGEN Tokens Amid Phishing-Related Theft Incident

Consumers file multiple class actions over Gryphon Healthcare data breach

Crooks are Sending Halloween-Themed Phishing Emails

DarkRaas Allegedly Breached a Major Oil and Gas Company

Did You Know? Ransomware Still Primary Threat to Maritime Targets

Dutch Police Disrupt Major Info Stealers RedLine and MetaStealer in Operation Magnus

EigenLayer Phishing Attack: $5.7M Lost as Hackers Target Investor’s EIGEN Holdings

ExtraHop Report Reveals Data Breach Costs Exceed Industry Estimates

Fairfield Memorial Hospital Notifies Patients Of Data Breach

Fitness app Strava betrays location of Biden, Trump, and other leaders

Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766

Free ISP announces data breach, millions of users possibly affected

French ISP Free Discloses Data Breach, Notifies Cybersecurity Agencies

Google Warns Of New Android And Windows Cyber Attack - 1 Thing Stops It

Hacker claims to have data linked to 19 million French mobile and internet customers

Hacker Exploits Truth Terminal Founder’s X Account, Steals $600K

Hacker launches new token from the compromised X account of Andy Ayrey

Hacker Nets $600K After Hijacking Truth Terminal Founder Andy Ayrey’s X Account

Hackers Claim to Sell Data Breach at French Internet Service Provider ‘Free’

How Anxiety Beat The $10 Billion Startup AI Deepfake Hackers

How Healthcare Organizations can Minimize the Impact of Ransomware in the Cloud

Judge Approves Healthcare Advisor’s $1.5M Data Breach Settlement

Landmark Admin data breach compromised the data of over 800,000 insurance customers

Landmark Admin data breach could impact thousands

Law Enforcement Operation Takes Down Redline and Meta Infostealers

LockBit ransomware attack on the City of Wichita impacted close to 50,000 residents

Long Island Plastic Surgical Group Confirms 161K-Record Data Breach

Massachusetts care provider MVES says hackers stole the data of about 90,000 patients

Massive data breach exposes 800,000 insurance customers’ personal information

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

Massive UAC-0218 phishing campaign targets Ukrainian citizens

MoneyGram replaces CEO weeks after massive customer data breach

Most Australians have experienced a cyber attack

Most companies are bracing for a cyberattack within a year

New CISA Website Tracks Threats to US 2024 Election Security

New LightSpy Spyware Targets iOS with Enhanced Capabilities

New ransomware group Embargo uses toolkit that disables security solutions

New Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel Processors

New Windows Themes zero-day gets free, unofficial patches

New Windows Warning As Hacker Breaks Google Chrome 2FA Security Encryption

Nintendo Warns of Phishing Attack Mimics Company Email Address

Nintendo warns users of official-looking phishing emails

NIS2 Compliance Puts Strain on Business Budgets

Nuspire's Q3 2024 Threat Report Shows 50% Spike in Exploit Attempts and Rise in Ransomware Extortion Activity

October Cybersecurity Awareness Month: Ensuring Data Security and Compliance is an Ongoing Concern

Operation Magnus: Police Dismantles RedLine and META Infostealer Infrastructure

Patching problems: The “return” of a Windows Themes spoofing vulnerability

Phishers reach targets via Eventbrite services

Phishing Attacks Are Evolving. Here’s How to Resist Them

QR Codes Enable New Enterprise Phishing Threat

RansomHub group claims major data theft at Mexican airports operator OMA

Ransomware remains top cybersecurity concern for trucking industry

RATS, bots and reverse proxy phishing: why cyber criminals have shipping in their sights

Researchers Uncover Vulnerabilities in Open-Source AI and ML Models

Russia and China-linked state hackers intensify attacks on Netherlands, security officials warn

Russia arrests hacker accused of preventing electronic voting during local election

Russian charged by U.S. for creating RedLine infostealer malware

Russian Malware Attack Targets Ukrainian Military Recruits via Telegram

Security leaders discuss the Cisco security incident

Six senators tell Biden administration UN cybercrime treaty must be changed

Spooky Spam, Scary Scams: Halloween Threats Rise

Star Health CISO Cleared of Collusion in Massive Data Breach Investigation

Star Health clears CISO of wrongdoings in data breach case

Suspicious Social Media Accounts Deployed Ahead of COP29

The Internet Archive is finally mostly back online after a series of cyberattacks

The price of getting a driver‘s license? Your personal data

Transak data breach affects over 92,000 users following phishing attack

Trust and risk in the AI era

Three arrested as police dismantle Redline and Meta infostealers

U.S. Charges Man Behind RedLine Infostealer that Infected U.S. Department of Defense (DoD) Personnel Systems

U.S. Government Issues New Traffic Light Protocol (TLP) Guidance for Cross-Sector Threat Intelligence Sharing

UK: Councils receive support after cyber attack

UnitedHealth Confirms Change Healthcare Data Breach Impacted 100 Million Americans

US charges suspected Redline infostealer developer, admin

US names and charges Maxim Rudometov with developing the Redline infostealer

Webflow sites used to trick victims into sharing login details

Webflow tool increasingly exploited to compromise crypto wallets

28th October

4 out of 10 Phishing Emails Are Sent From a Compromised Email Account

100 Million Americans’ Medical Records Exposed In Massive Data Breach

100 million people hit in largest healthcare data breach in history - medical info, SSNs and more

A good cyber leader prioritizes the greater good

A new low? Hacker group targets end-of-life pharmacy provider

Advanced Recovery Equipment and Supplies Sends Out Data Breach Letters Following 2023 Cyberattack

AI-Powered Business Email Compromise (BEC) Scams Zero in on Manufacturers

'All servers' for Redline and Meta infostealers hacked by Dutch police and FBI

Amazon Dismantles APT29 Phishing Operation

Apple will pay hacker $1 million if they successfully hack new AI system

APT29’s AWS Spoofing Phishing Campaign Dismantled

BeaverTail Malware Resurfaces in Malicious npm Packages Targeting Developers

Best ways to maintain your online privacy in 2024

Black Basta affiliates used Microsoft Teams in recent attacks

Black Basta operators phish employees via Microsoft Teams

Black Basta ransomware expands operations with Microsoft Teams strategy

Black Basta Ransomware Impersonates Teams IT Support, Attacks 100s of Businesses

Boart Longyear Provides Notice of Data Breach Following Recent Cyberattack

Business Email Compromise (BEC) Threats Surge as Attackers Outsmart Email Security

Change Healthcare ransomware attack exposes personal health information of over 100 million

Chinese hackers collected audio from unnamed Trump campaign adviser

Chinese Hackers Target Trump and Vance Phone Data via Verizon Hack

Chinese Hackers Toolkit Uncovered And Activity History Uncovered

Chinese Hackers Use CloudScout Toolset to Steal Session Cookies from Cloud Services

CIIT Wah Website Hacked, Claims Defacement by Hacker

Critical WhatsUp Gold Authentication Flaw Exposes Organizations to Cyber Attack

Cyberattacks on Critical Infrastructure: A Ticking Time Bomb

Cybercriminals hide phishing QR codes in PDFs to bypass detection

Cybercriminals Use Webflow to Deceive Users into Sharing Sensitive Login Credentials

Data breach at Parkland Health exposes medical records of over 6,500 patients

Despite patches, Windows can still be downgraded to vulnerable versions

Did Hacker Of US Government-Linked Wallet Return 88% Of Stolen Funds?

Did You Know? Reverse Proxy Phishing Serious Threat to Maritime Industry

Dozens under investigation in Italy amid scandal over hacked government databases and illegal dossiers

Evasive Panda’s CloudScout Toolset Targets Taiwan

Federal probe into Chinese hack of US telcos launched after election-related targeting reports

Forget The New MacBook Pro M4, Hackers Are Targeting Your Old One

Four REvil Ransomware Group Members Sentenced to Prison in Russia

Four REvil ransomware members sentenced to over four years in prison

Four REvil Ransomware Operators Sentenced For Hacking Enterprises

France’s second-largest telecoms provider Free suffered a cyber attack

Fraudsters revive old tactics mixed with modern technology

Free Mobile data theft: clients in France warned to look out for scams

Free, France’s second largest ISP, confirms data breach after leak

Free, France’s second-largest telecoms company, confirms being hit by cyberattack

Google Warns Of New Android And Windows Cyber Attack - 1 Thing Stops It

Hackers Exploit SonicWall VPNs to Deploy Fog & Akira Ransomware

Harry Schein says 2023 cyber attack impacted over 166,000 individuals

HeptaX: Uncovering Cyberespionage Operations Through Unauthorized RDP Connections

HOMESTEEL Malware Emerges as the Latest Cyberthreat to Ukraine’s Data Assets

How Belgium's Leonidas Project Boosts National Cyber Resilience

How isolation technologies are shaping the future of Kubernetes security

‘I’m not a Robot’ reCAPTCHA Trojanized by Russian Hackers to Target Local Ukrainian Government

India's Star Health absolves security chief in data leak incident

Information Commissioner’s Office (ICO) Calls for ‘Empathy and Action’ for Data Breach Victims

IoT Vulnerabilities Exposed: Philips Smart Bulbs Pose Risks to Home Wi-Fi Security

Ireland: Information on missing boy lost in cyber attack

Israel reported to have launched a cyber attack on Iranian nuclear facilities

Israel's cyber attack froze Iranian radars ahead of airstrike? 'Glitch' helped Air Force to breach Tehran's airspace

Italian Data Breach Sparks Calls for Action

Italian politicians express alarm at latest data breach allegedly affecting 800,000 citizens

Japanese man sentenced to 3 years after creating crypto ransomware with AI

Law Enforcement Puts a Damning Dent in RedLine and Meta Infostealer Operations

Meta and Redline malware servers busted, VIPs outed

Mexican airport operator purportedly breached by RansomHub

Microsoft Teams Exploited in Black Basta Attacks

Mysterious US government crypto hack, nearly all stolen funds returned

Mystic Valley Elder Services Provides Notice of Recent Data Breach Impacting 87,236

National Public Data breach: Lawsuit claims failed to protect billions of personal records

New Cyber Attack Warning - Confirming You Are Not A Robot Can Be Dangerous

New expansive TeamTNT attack campaign detailed

New Exploit “Muraider” Targets CVE-2024-32640 with Automated SQL Injection

New tool bypasses Google Chrome’s new cookie encryption system

New Type of Job Scam Targets Financially Vulnerable Populations

OnePoint Patient Care Files Notice of August 2024 Data Breach Affecting 795,916 Individuals

Oregon Department of Corrections data breach exposes personal information of 861 individuals

Organisations warned to step up as Information Commissioner’s Office (ICO) research highlights data breach harm

Over 6,500 patients affected by Parkland Health in Dallas possible data breach

Patched SonicWall critical vulnerability still used in several ransomware attacks

Phishing on Webflow: global network discovered, aiming to steal cryptocurrencies and sensitive data

Police hacks, disrupts Redline, Meta infostealer operations

Police operation claims takedown of prolific Redline and Meta password stealers

Police take down Redline and Meta ransomware servers

PwC Survey Surfaces Lack of Focus on Cyber Resiliency

Ransomware crew pose as Microsoft Teams IT support to steal logins and passwords

Ransomware Group Impersonates Microsoft Support to Breach Businesses

Redline, Meta infostealer malware operations seized by police

Remote work is putting your data at risk: security tips you can’t ignore

Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel

Romania: Bucharest’s District 5 City Hall hit by ransomware attack

Russia puts REvil hackers behind bars. Yes, you heard it right

Russia targets Ukrainian conscripts with Windows, Android malware

Russian Court Jails Four REvil Ransomware Gang Members

Russian Espionage Group Targets Ukrainian Military with Malware via Telegram

Russian Malware Campaign Targets Ukrainian Recruits Via Telegram

School ransomware attacks are on the rise. What can districts do?

SonicWall SSL VPN accounts targeted by Akira, Fog ransomware gangs

SonicWall VPNs targeted by ransomware hitting corporate networks

Suspected Russian spies target devices of potential Ukrainian military recruits

TEAM Software Confirms July 2024 Data Breach Impacting Thousands of SSNs

TeamTNT Exploits 16 Million IPs in Malware Attack on Docker Clusters

Texas county says 47,000 had SSNs, medical treatment info leaked during May cyberattack

The National Public Data breach exposed 270 million users – now the company has filed for bankruptcy

US says Chinese hackers breached multiple telecom providers

What a hacker can teach you about keeping your systems safe