Editor's Message

Welcome to DBD. 2024 was a tough year for me personally, and I'd like to thank every one of you who has supported me - you have been my light in times of darkness. 2024 saw the highest number of ransomware attacks on record, and there's no sign of these attacks slowing down as we head into the new year. Ransomware is a BIG problem that is NOT going away anytime soon, and this year could be just as catastrophic, if not worse, as cyber criminals continue to extort their victims with very little chance of being brought to justice. Wishing you all the very best for 2025. Stay safe. :)


“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington DC



Monday, 7 October 2024

Data Breaches Digest - Week 41 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 7th October and 13th October 2024.


13th October

Fidelity data breach exposed info from 77,000 customers

Game Freak acknowledges massive Pokémon data breach, as employee info appears online

Game Freak issues statement regarding Pokemon data breach

Here's how much ransom amount Star Health hacker demanded

Iran has banned all devices on passenger planes in anticipation of cyber attack from Israel

Iranian hackers now exploit Windows flaw to elevate privileges

Microsoft Phishing Scams Rise As Cybercriminals Exploit Brand Trust With Sophisticated Fake Emails: How To Stay Safe

OpenAI Disrupts Over 20 Cyberattacks Using ChatGPT for Malware, Phishing, And Misinformation Campaigns

Pokemon Developer Comments on Massive Data Breach

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Teraleak: Pokémon Developer Game Freak Hacked; Decades of Data Leaked

12th October

A cyber attack hit Iranian government sites and nuclear facilities

Belgian hacker faces 3-year sentence for American Airlines breach, escapes U.S. extradition and 45 years in jail

Calgary Public Library cybersecurity breach a concern for customers as branches stay closed

Chinese and Iranian hackers use ChatGPT and LLM tools to create malware and phishing attacks - OpenAI report has recorded over 20 cyberattacks created with ChatGPT

Critical Veeam RCE Vulnerability Exploited by Akira and Fog Ransomware

Crypto Vеnturе Cаpitаl (VC) Fund Faces $36 Million Loss in Phishing Attack

Data Breach Lawsuits Drive Surge in Cyber Claims

FBI Creates Fake Cryptocurrency to Expose Widespread Crypto Market Manipulation

Fidelity data breach exposed info from 77,000 customers: Was your account compromised?

Fidelity Data Breach Exposes Personal Information of 77,000 People

Following data leak, Star Health receives $68,000 ransom demand

Fulton County leaders say one wrong click by employee led to early 2024 ransomware attack

Hacker attack forces traditional German company into insolvency

Hawaii: Data breach impacts thousands of current, former state employees

Internet Archive reels from 'catastrophic' cyberattack, data breach

Iran reportedly suffered a cyber attack: “Government sites and nuclear facilities affected”

Iran's nuclear facilities, govt establishments targeted in massive Cyberattacks

Israel launches massive cyber attack on Iran – damages Iran’s critical infrastructure

Marriott to pay $52 million settlement for data breach

Massive Cyber Attack on Iran’s Nuclear Sites Sparks Global Fears of Catastrophe

New Gmail Security Alert For 2.5 Billion Users As AI Hack Confirmed

New Threat For Microsoft 365 Accounts – Mamba 2FA Phishing Platform

OpenAI confirms threat actors use ChatGPT to write malware

Over 77,000 customers' personal information is exposed in Fidelity Investments data breach

Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks

Star Health clarifies services are secure amid $68,000 ransom demand, customer data breach

Star Health Data Leak: $68,000 Ransom Demand

Star Health faced $68,000 ransom demand following customer data leak

Star Health faces regulatory scrutiny over alleged data breach, experts warn of legal ramifications

Star Health hit with ransom demand over data leak

Star Health Probes Alleged Role of Security Chief in Data Leak

Star Health receives $68,000 ransom demand from cyberhacker after data leak

Telegram Removes Bots Sharing Star Health Data Amid Major Data Breach Allegations

Volkswagen Group Responds to Alleged Data Breach by Ransomware Group 8Base

11th October

31 million users impacted by Internet Archive data breach - what we know

$35 million worth of tokens drained from a crypto whale in phishing attack

60% of organizations manually gather employee data

After breach of billions of records, National Public Data files for bankruptcy

Alliance Laundry Systems Provides Notice of Data Breach

American Water starts to reactivate systems after Oct 3rd cyberattack

Arrest made more than a month after Transport for London (TfL) cyber attack – but systems still down

Australia’s Cyber Security Strategy in Action – Three New Draft Laws Published

Bohemia and Cannabia Dark Web Markets Taken Down After Joint Police Operation

Calgary Public Library locations closed due to cybersecurity breach

Casio confirms customer data stolen in a ransomware attack

Casio cyber attack claimed by Russian cyber crime gang ‘Underground’

Casio hack claimed by Underground ransomware group

Casio says ransomware attack exposed info of employees, customers and business partners

CISA Warns of Threat Actors Exploiting F5 BIG-IP Cookies for Network Reconnaissance

Cloud Ransomware Attack: Microsoft Sees Storm-0501 As Threat

Comcast & Truist Bank Customers Exposed in Data Breach

CreditRiskMonitor Experiences Data Breach Following July 2024 Cyberattack

Crypto ETF Issuer Fidelity Investments Faces 4th Data Breach in a Year

Crypto ETF issuer Fidelity says breach leaked data of 77K customers

Crypto Investor Loses $36M to Permit Phishing Scheme

Crypto Trader Loses $36 Million to Hackers after Signing ‘Permit’ Phishing Signature

Crypto Vеnturе Cаpitаl (VC) Fund Suffers $36M Phishing Attack By Signing Permit

Crypto Vеnturе Cаpitаl (VC) fund-tied entity loses $36m by signing phishing permit transaction

Cyber insurer says ransomware attacks drove a spike in claim sizes

Cyberattack on Internet Archive by pro-Palestinian hacker, 31 million users affected

Cyberattack targets healthcare nonprofit overseeing 13 Colorado facilities

Cybersecurity Awareness Lags as Global Workforce Engages in Risky AI Practices

Cybersecurity breach at Calgary Public Library forces closure of locations across the city

Data loss incidents impact patient care

Deepfakes Can Fool Facial Recognition on Crypto Exchanges

Does AI lead to increased phishing attacks?

Dutch government will replace hackable traffic lights to avoid movie-like carnage

Education remains a target for cyberattacks says Microsoft

Empower Management Group Files Notice of Data Breach

EU adopts Cyber Resilience Act to secure connected products

Exact steps you need to take now as Fidelity confirms 77,000 customers’ personal information exposed in data breach

Feds want Bitfinex hacker ‘Razzlekhan’ jailed for 18 months

Fidelity Data Breach Exposed Customer Information

Fidelity data breach exposed info from 77,000 customers: Was your account compromised?

Fidelity breach exposed the personal data of 77,000 customers - what to do if you're affected

Fidelity Confirms Data Breach Affecting Over 77K Customers

Fidelity data breach exposes details of thousands of customers

Fidelity Data Breach Exposes Personal Information Of Over 77K Customers

Fidelity Investments Reports Data Breach Affected Over 77,000 Customers

Fidelity Faces Data Breach Impacting Thousands

Fidelity Investments reports data breach, impacting more than 77,000 customers

Firefox Update Patches Exploited Vulnerability

Fog, Akira ransomware groups exploit critical Veeam backup flaw

Generative AI Fueling More Sophisticated Cyberattacks

GitHub, Telegram Bots, and QR Codes Abused in New Wave of Phishing Attacks

Golden State hit hardest by crypto crime, $1B+ lost in 2023

Hacked Ecovacs robot vacuums go berserk yelling racial slurs and chasing dogs

Hackers abuse F5 BIG-IP cookies to map internal servers

Hackers Exploiting Veeam RCE Vulnerability to Deploy Ransomware

Hackers Target Internet Archive in Major Data Breach

Hafetz and Associates Sends Data Breach Letters Following 2023 Incident

How AI created an email security gap

How Hybrid Password Attacks Work and How to Defend Against Them

How to Stay Safe from Phishing Scams as DeFi User Loses $35M

Impersonation is the Most Prolific Phishing Tactic in 2024

INC ransomware rebrands to Lynx – same code, new name, still up to no good

India’s Star Health insurance reported to be hit by massive data breach

Internet Archive data breach: How Wayback Machine hacking could impact 31 million users

Internet Archive data breach impacted 31 Million users

Internet Archive hacking drama: why did they do it?

Internet Archive reels from ‘catastrophic’ cyberattack, data breach

Internet Archive Remains Offline to Focus On Data Security After Breach

Internet Archive suffers major data breach and DDoS

Internet Archive, Wayback Machine hit by 'catastrophic' cyberattack, data breach

Internet Archive's "Wayback Machine" experiences major data breach affecting 31 million users

Lynx Ransomware: A Rebranding of INC Ransomware

Lynx ransomware analyses reveal similarities to INC Ransom

Mamba Toolkit Abuses 2FA In Sophisticated Phishing Attack

Marriott Settles for $52M Over Data Breaches, Days After Sony Music Lawsuit

Massive Data Breach: 31 Million Passwords Leaked In Internet Archive Cyberattack

Massive Data Breach: Hackers Compromise Sensitive Information of Over 77,000 Fidelity Customers

MoneyGram issues warning after data breach that saw ‘Social Security numbers stolen’ – customers must check statements

More Than 77,000 Affected by Fidelity Investments Data Breach

National Public Data Files for Bankruptcy Following Massive Data Breach

National Public Data files for bankruptcy, citing fallout from cyberattack

New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution

New EU law touts strict cybersecurity requirements for all connected and IoT devices

New phishing scam uses QR codes to bypass security tools

NHS England Warns of Critical Veeam Vulnerability Under Active Exploitation

Oklahoma to receive $660,000 in settlement from Marriott over data breach lawsuit

Octo2 Malware Uses Fake NordVPN, Chrome Apps to Infect Android Devices

Omni Family Health Data Breach Affects Personal Information of Current and Former Patients

OpenText: Supply chain attacks surge, ransom payments persist

Over 77,000 customers’ personal information is exposed in Fidelity Investments data breach

Portugal: Ransomware attack targets Agency for Administrative Modernisation

Pro-Palestinian hacktivist group claims responsibility for major cyber attack on internet archive

Ransomware losses soar by two-thirds, prompting insurance cost hike warning

Ransomware Risks & Costs Surging in 2024

Rhysida Ransomware Allegedly Claims Breach of Axis Health Systems

Russia's SVR Targets Zimbra, TeamCity Servers for Cyber Espionage

Russian court websites down after breach claimed by pro-Ukraine hackers

Scammers target Airbnb and Booking.com users

Seven Counties Services Announces Data Breach Stemming from Email Phishing Attack

Sonatype Reports 156% Increase in Open Source Software (OSS) Malicious Packages

Star health data breach: Evidence shows CISO is being wrongly implicated

Star Health data leak: Hacker alleges company official’s involvement

Star Health insurance hack led to personal data of 31 million customers being compromised

Teen arrested in connection with Transport for London (TfL) cyber attack

The Internet Archive Breach: Over 31 Million User Accounts Exposed

The Internet Archive Suffers Major Data Breach: 31 Million Users Impacted

'Thousands' of passengers 'waiting for London Underground refunds' after cyber attack

Tiketek Responds to Reports of Ticket Theft Following Data Breach

Trinity Ransomware Targets the Healthcare Sector

Ukraine’s HUR launches cyber attack on Russian university training drone operators

US Border Agency Under Fire for App's Handling of Personal Data

Why America’s Water Systems Are Vulnerable to Cyberattacks

10th October

31 million users exposed as Wayback Machine suffers data breach

62% of observed finance domains involved in phishing attacks

A Threat Actor Allegedly Breached Doscast

A Threat Actor Allegedly Breached Konecta Group 69M Lines Exposed

Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680)

AI anxiety afflicts 90% of consumers and businesses - see what worries them most

Akira and Fog ransomware now exploit critical Veeam RCE flaw

Alleged Data Breach Targets Israeli Ministry of Welfare

Archive.org, a repository of the history of the Internet, has a data breach

Attacks on GenAI Models Can Take Seconds, Often Succeed

Aussie fresh produce company Perfection Fresh confirms ransomware attack

Australia: Businesses forced to report ransomware payments

Casio discloses data breach a year after previous cyber attack

Casio Hit by Major Cyberattack AGAIN

CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches

Club Vélez Sarsfield Allegedly Breached 180K User Records for Sale

Consumers have trust issues regarding how AI collects their data

Counter Ransomware Initiative (CRI) Guidance on Ransomware Payments: Carefully Consider All Options, But Payments Not Off the Table

Customer data of major US asset managers exposed: over 70k investors affected

Cyber attack on Transport for London still affecting 'big number' of passengers

Cyber claims rise in first half

Cyber expert suggests American Water cyber incident was a ransomware attack

Cybercriminals Use Unicode to Hide Mongolian Skimmer in E-Commerce Platforms

Danish sports simulator exposes 110TB of user data

Data Breach Costs Marriott $52 Million

Data breach of Fidelity leaks 77,000 customers’ personal data

Data Breaches Exposed in Hyundai’s IPO: A Look at Their Cybersecurity Posture

DDoS attacks on Internet Archive continue after data breach impacting 31 million

Department of Health and Human Services (HHS) Fines 2 Healthcare Facilities for Ransomware Attacks

Espionage is now Russia’s focus for cyberattacks on Ukraine

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems

FBI used fake crypto tokens to catch alleged market manipulators

Fidelity confirms over 77,000 customers exposed in data breach

Fidelity Data Breach Exposed Info of 77,000 Clients

Fidelity Data Breach Exposed the Personal Data of 77,000 Customers

Fidelity Data Breach Exposes Data of Over 77,000 Customers

Fidelity Investments Discloses Data Breach Affecting 77,099 Customers

Fidelity Investments says data breach affects over 77,000 people

Fidelity Investments suffers data breach affecting nearly 80,000 customers

Fidelity reports data breach exposing 77,000 customers' personal data

Fidelity Reports Data Breach Hitting 77,000 Clients

Fidelity says data breach exposed personal data of 77,000 customers

Find a job, lose your data: hundreds of thousands of CVs leaked

FINRA Warns Of Phishing Email Scam Impersonating Regulators

Firefox Zero-Day Under Attack: Update Your Browser Immediately

Former RAC Employees Get Suspended Sentence for Data Theft

GitLab warns of critical arbitrary branch pipeline execution flaw

Hacker Alleges CISO’s Hand In Star Health Data Breach

Hacker Defaces Internet Archive, Steals Data on 31 Million Users

Hacker shows how a cigarette lighter can grant you root access

Hacker steals sensitive data from Muah.ai, exposing user interactions with NSFW chatbots

Hacker who faked own death pleads guilty to role in malware scheme

Hackers Claim 'Catastrophic' Internet Archive Attack

Hackers steal email addresses, passwords, and more from Internet Archive in massive cyberattack

Healthcare data breach may have exposed millions of Americans’ personal info

How Many US Data Breach Victims Were There in Q3 2024?

Hurricane Helene exploited in FEMA scams, phishing

Hurricanes Milton, Helene Exploited to Launch Cyberattacks

India’s Star Health Confirms Data Breach After Customers’ Details Leak Online

India's Star Health probes alleged role of security chief in data leak

Insider Cyberattack? Star Health Insurance CISO Allegedly Sells Sensitive Data to Chinese Hacker

Internet Archive (Archive.Org) Hacked: 31 Million Accounts Compromised

Internet Archive breach affects 31 million accounts

Internet Archive Breached, 31 Million Records Exposed

Internet Archive confirms data breach of over 31 million accounts, suffers many DDoS attacks

Internet Archive confirms major data breach, 31 million users affected

Internet Archive Data Breach Exposes 31 Million Accounts

Internet Archive data breach exposes 31 Million users; under DDoS attack

Internet Archive data breach, defacement, and DDoS: Users’ data compromised

Internet Archive down, claims ‘catastrophic’ data breach impacting 31 million

Internet Archive Experiences Data Breach, Affects 31 Million

Internet Archive experiences outages after DDoS attacks, data breach

Internet Archive hacked: 31 million accounts compromised in data breach

Internet Archive hacked and 31 million user accounts leaked - hacking group 'SN_Blackmeta' claims responsibility

Internet Archive hacked, suffering data breach and DDoS attack, 31M affected

Internet Archive hit with large-scale breach, DDoS attack

Internet Archive Remains Offline to Focus On Data Security After Breach

Internet Archive suffers data breach and DDoS

Internet Archive Suffers Major Data Breach As User Authentication Database Containing 31M Records Stolen

Internet Archive, Wayback Machine suffer 'catastrophic breach' of 31M users

Iran-Affiliated Hackers CyberAv3ngers Use ChatGPT to Plan Industrial Attacks

Is Local Government the Latest Big Target for Phishing?

Justice Department Disrupts Russian Intelligence Spear-Phishing Efforts

Long Island Plastic Surgical Group Notifies Patients of January 2024 Data Breach

Marriott Agrees $52m Settlement for Massive Data Breach

Marriott settles over data breach that exposed millions of guests

Marriott settles with Federal Trade Commission (FTC), to pay $52 million over data breaches

Marriott Settles With States for $52M Over 2018 Data Breach at Starwood

Marriott to pay $52m in US data breach settlement

Massive Data Breach Exposes Personal Information Of 3.1 Crore Star Health Customers

Massive Data Leak at Star Health: 31 Million Customers Affected

Massive hack hits Internet Archive, compromising millions of user accounts

Mexico faces over half of Latin American cybercrimes due largely to US ties

Mozilla fixes critical Firefox bug exploited in the wild

New law in Australia will require mandatory reporting of ransomware payments

Ohio Department of Commerce Issues Consumer Alert Following MoneyGram Data Breach

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation

OpenAI claims to have foiled China-backed election interference, phishing attacks

OpenAI disrupts 20 campaigns to misuse its tech as federal officials mull international use of AI

OpenAI says it foiled suspected China-linked phishing attack on employees

OpenText Cybersecurity's 2024 Ransomware Survey: Supply Chain Attacks Surge, Ransom Payments Persist

Over 240 Million US Breach Victims Recorded in Q3

PAJ GPS Allegedly Breached 26K Lines Exposed

Patch Tuesday: Internet Explorer Vulnerabilities Still Pose a Problem

Phishing Attack Costs $2.2 Million in Ethereum – One Wrong Click, Big Consequences

Ransomware Attacks in Healthcare Are Increasing, Creating Longer Recovery

Ransomware severity up 68% in first half of 2024

Researchers discover 14 new DrayTek vulnerabilities

Rise in ransomware groups reshapes cybersecurity landscape

Russian SVR Exploiting Unpatched Vulnerabilities in Global Cyber Campaign

Securities and Exchange Commission (SEC) Charges Companies and Individuals in Major Crypto Asset Fraud

Severity of ransomware attacks increases by 68 percent

Severity of Ransomware Attacks Rose 68% in First Half of 2024, Report Shows

Shoe Show Data Breach Affects an Estimated 12,856 Individuals

Software Updates, A Double-Edged Sword for Cybersecurity Professionals

South Africa's data breach costs soar to R49 million in 2023, Allianz report shows

Star Health acknowledges data breach affecting 31 million customers, report says data was sold deliberately

Star Health CISO leaked customer data, says hacker

Star Health confirms data breach, clears CISO of wrongdoing amid claims

Star Health data leak: Hacker says CISO sold customer data

Star Health Insurance CISO sold customer data, hacker claims

Star Health Insurance confirms data breach, initiates forensic investigation

Star Health Insurance data breach: 3.1 crore customers potentially at risk, here’s what happened

Star Health Insurance's Cybersecurity Crisis: 2.5% Stock Drop After Massive Data Breach

Star Health probes massive data breach in India; hacker allegedly selling phone, PAN, salary data

Star Health Share Price Falls After Company Confirms Data Breach

Star Health share price falls over 2% after company reports data breach

Supply chain and AI-powered attack fears intensify

Teacher scammed out of thousands while on holiday after identity bought on web for $10 by hacker

The Plastic Bag Company falls victim to Sarcoma ransomware attack

The Internet Archive just faced DDoS attacks & big data breach

The Internet Archive suffered a data breach – find out how you’re affected

The Internet Archive suffers massive data breach affecting tens of millions of users

This Trojan disguises as Google Chrome or NordVPN to wipe out your accounts

Transport for London (TfL) cyber attack has left 'big' number of Londoners out of pocket, admits Mayor Sadiq Khan

Underground ransomware claims attack on Casio, leaks stolen data

US Federal Trade Commission (FTC) says Marriott will boost security to settle data breach charges

US political organizations subjected to Iranian phishing attacks

US, UK warn of Russian APT29 hackers targeting Zimbra, TeamCity servers

Who hacked Star Health Insurance? Stolen data of 31 million customers put on sale online

Wilson & Lafleur Data Breach Allegations Surface on Dark Web Forum

Years-long data breach with Marriot ends in over $50 million settlement

9th October

11 Big Cyberattacks in 2024 So Far

20% of Generative AI ‘Jailbreak’ Attacks Succeed, With 90% Exposing Sensitive Data

30% of customer-facing APIs are completely unprotected

5,000 Sophisticated Fake Microsoft Emails Targeting Employees

A Ukrainian hacker infected over a million computers worldwide, will pay a million dollars in damages

Adobe Security Alert: Update Software Now to Protect Against Exploits

ADT suffers second data breach after hackers use stolen credentials

AI boosts rise in phishing and spoofing attacks on banks

AI Now a Staple in Phishing Kits Sold to Hackers

AI raises cybersecurity concerns in Asia Pacific region

AI-Enabled Phishing Threats: A Growing Global Cybersecurity Challenge

Apple’s iPhone Mirroring Flaw Exposes Employee Privacy Risks

Asheville Arthritis Centre says data security incident impacted over 58,000 patients

Aussies travelling to Bali caught up in major data breach with their passport details exposed to strangers

Australia: Cybersecurity bill could make ransomware payment reporting mandatory

Australia: Government brings cyber security bill before parliament

Australia Introduces First Standalone Cybersecurity Law

Authorities arrest four suspected LockBit ransomware members

Be wary of Hurricane Helene disaster relief scams, CISA warns

Brit, 20, 'made millions after setting up dark web marketplace aged 17, selling drugs and ransomware to crooks'

California Superior Court claimed to be attacked by Meow ransomware

Can Apple Products Be Infected With Ransomware?

Casio Confirms Cyberattack, Calls in Experts to Investigate Data Security

Casio Cyberattack Causes System Failures, Investigations Underway

Chinese Hackers Sent OpenAI Staff Malware in Spear-Phishing Attacks

CISA & FBI Issue a Set of Recommendations Against the Rising Number of Iranian Cyberattacks

CISA says critical Fortinet RCE flaw now exploited in attacks

Comcast Confirms Data Breach Exposed Personal Data Of Over 237,000 Customers

Consumer alert issued after MoneyGram data breach

Crypto-stealing malware campaign infects 28,000 people

Cultivating a security-first mindset: Key leadership actions

Cyber Attack on Pennsylvania American Water, No Impact Locally

Cyber Security Bill 2024: Australia’s Strategic Leap Toward a Resilient Digital Ecosystem

Cyberattack compromises CreditRiskMonitor data

Cybercrooks abuse stolen SharePoint, OneDrive, and Dropbox accounts for phishing

Dark Angels Ransomware Attacking Windows And Linux/ESXi Systems

Data breach: hacker claims senior Star Health executive sold data of 31 million customers

Data breach at Providence Public Schools may impact 12,000 current, former employees

Data Breach Hits 31 Million Star Health Users, Just Weeks After Company Filed Lawsuit Against Hacker

Data Breach Lawsuits Over Failure To Safeguard Information on Snowflake Cloud Platform Centralized in Single Multi-District Litigation (MDL)

Deepfake threat worries 94% of IT professionals, report finds

Department of Justice (DoJ) and Microsoft Seize 107 Russian Domains in Major Cyber Fraud Crackdown, Disrupt Russian Intelligence Phishing Efforts

Double-Extortion Ransomware Activity Hits All-Time High

DumpForums Claim 10TB Data Breach at Russian Cybersecurity Firm Dr.Web

Dutch police arrest admin of 'Bohemia/Cannabia' dark web market

European Commission finds US agencies are adhering to data protection commitments

Everything we know about the MoneyGram breach

Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)

Federal Trade Commission (FTC), CISA warn of hurricane-related scams as Milton nears Florida

Finance industry most at risk for phishing attacks

First Nations Health Authority target of cyber attack

Flaws in AI girlfriend website expose users’ twisted adult fantasies – some include minors

Forensic probe by experts underway on the cyberattack: Star Health

Gmail Hackers Have Control Of 2FA, Email And Number? Here’s What To Do

GoldenJackal APT group breaches air-gapped systems in Europe

Hacker alleges top Star Health Insurance executive sold him data of over 31 million India users

Hacker attack disrupts Russian state media on Putin's birthday

Hacker builds website to leak insurer Star Health's data days after lawsuit

Hacker reveals the unbelievable risks people take using public internet

Hackers Abusing Legitimate File Hosting Services For Sophisticated Phishing Attack

Hackers Allegedly Claim Star Health Insurance CISO Sold the Data

Hackers targeted Android users by exploiting zero-day bug in Qualcomm chips

Hackers Using Phone Calls to Attack Employee System With Malware

Hackers weaponizing VSCode for remote access

Healthcare industry increasingly popular target for ransomware criminals

HHS Imposes Civil Penalty Against Interstate Network of Medical Providers Following Ransomware Attack

Homeland Security Investigations (HSI) Prevents 500+ Ransomware Attacks, Seizes $4.3B in Crypto

Identity Theft Resource Center Q3 2024 Data Breach Report: Compromises Decrease with Record Year Unlikely

If you're a Marriott customer, Federal Trade Commission (FTC) says the breach-plagued hotel chain owes you

India’s Star Health confirms data breach after cybercriminals post customers’ health data online

Intelligence agencies issue guidance to protect against Iranian cyber attacks during elections

Internet Archive hacked, data breach impacts 31 million users

Ireland: Teacher scammed out of £3,500 while on holiday after identity bought on dark web for 10 dollars by Romanian hacker

‘It’s very stressful’: Clients of Indigenous health authority react to ransomware attack

Ivanti: Three CSA Zero-Days Are Being Exploited in Attacks

Judicial panel transfers Snowflake data breach cases to district of Montana

Major Cyber Attack Disrupts Russian State Media on Putin’s Birthday

Major data breach claims mostly untrue, Dr.Web says

Malicious Pixels: Criminals Revamp QR Code Phishing Attacks

Marriott data breach settlement: What it means for consumers

Marriott paying $52 million for data breach that affected millions

Marriott Pays $52M to Settle US States' Breach Litigation

Marriott required to pay $52 million, beef up information security in wake of data breaches

Marriott settles yearslong data breach with $52M for Oregon, other states: Here’s what to do

Massive data spill reveals loan shop collects and exposes private messages. What data was leaked?

Meow ransomware gang claims Superior Court of California

Microsoft 365 accounts targeted by dangerous new phishing scam

Microsoft Detects Growing Use of File Hosting Services in Business Email Compromise Attacks

Microsoft Fixes Five Zero-Days in October Patch Tuesday

Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild

Microsoft Patches 117 CVEs: Focus on Critical and Zero-Day Threats

MoneyGram announces hack: Customer data such as Social Security numbers, bank accounts impacted

MoneyGram Confirms Recent Reports of Data Breach

MoneyGram Data Breach Exposes Names, Bank Accounts, and IDs of Customers

MoneyGram hacked, leaking Social Security, bank accounts

More than 200,000 Comcast Customers Impacted by Data Breach

Mozilla fixes Firefox zero-day actively exploited in attacks

National Cyber Director warns of ransomware, Chinese infrastructure attacks and cyber supply chain concerns

New BeaverTail Malware Targets Job Seekers via Fake Recruiters

New Crypto Trojan.AutoIt.1443 Hits 28,000 Users via Game Cheats, Office Tool

New Generation of Malicious QR Codes Uncovered by Researchers

North Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware

OpenAI Says China-Backed Phishing Attempt Targeted Employees

OpenAI Suspects China-Based Group SweetSpecter of Spear Phishing Campaign

Palo Alto Networks warns of firewall hijack bugs with public exploit

Personal data of about 3 crore Star Health customers up for sale online; hacker alleges top official for breach

Personal Data of Approximately 3.1 Crore Star Health Customers Allegedly Sold Online by Hacker

Qatar Financial Centre issues company $150,000 fine for data breach

Qatar Financial Centre issues fine for data breach violations

Ransomware accelerates attacks on global healthcare firms

Ransomware attack impacts 237,000 Comcast customers

Ransomware attack on Oklahoma emergency service impacted over 180,000 residents

Ransomware gang Trinity joins pile of scumbags targeting healthcare

Ransomware threat groups are on the rise, so be on your guard

Recent Dr.Web cyberattack claimed by pro-Ukrainian hacktivists

Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries

Russian hacking group intercepted by Microsoft and Department of Justice (DOJ)

Safeguarding Your Clients from Ransomware and Business Email Compromise (BEC) Attacks in the GenAI Era

Scammers Hit Florida Hurricane Victims with Fake FEMA Claims, Malware Files

Security experts discuss the American Water cyberattack

Security firm ADT reports data breach linked to stolen credentials

Smoke 'em if you got 'em: Hacker gains root access using cigarette lighter

Social Media Accounts: The Weak Link in Organizational SaaS Security

Sonoma County Superior Court documents exposed in data breach, officials say

Star Health confirms data breach, takes legal action & launches investigation

Star Health Data Breach: Hacker Alleges Top Executive's Role In Leaking Personal Details, Records Of Over 31 Million Customers

Star Health Data Breach: Hacker 'Selling' 3.12 Crore Customers' Data Allegedly Sold By Top Executive, Company Responds

Star Health Insurance data leak: Hacker claims CISO Amarjeet Khurana provided the data

Star Health Insurance data leak: Hacker claims to have access to data of 31 million customers on website

Star Health Insurance Leak: Hacker Puts Up Data Of 31 Million Customers On Sale For $150,000

Star Health Reports No Proof Of Wrongdoing From Chief Information Security Officer

Suspected Bohemia dark web marketplace admins arrested by Dutch, Irish police

Tenable Research Finds 74% of Organisations Have Publicly Exposed Storage Assets, Increasing Risk of Ransomware Attacks

The Department of Justice (DOJ) and Microsoft Seize 107 Domains Used by Russian Hackers Star Blizzard for Cyber Espionage

The Internet Archive slammed by DDoS attack and data breach

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Time to Act: CISA & FBI Call for Vigilance Against Iranian Cyberattacks

Trinity ransomware emerging threat to US healthcare, uses sophisticated double extortion tactics

True World Group Announces Data Breach Affecting Current and Former Employees

Two updated malware strains used in North Korean fake recruiter scams

Ukraine sentences two hackers from Russia-linked Armageddon group

US: States Settle With Marriott Over Data Breach

US Agencies Warn Political Campaigns of Iranian Phishing Attacks

Wells Fargo faces class action lawsuit over data breach

West Australian aged-care provider hit by alleged LockBit ransomware attack

8th October

31 New Ransomware Groups Join the Ecosystem in 12 Months

A $71,000 ransomware nightmare: How one dental practice recovered and lessons for every dentist

Accounting Firm Dohman, Akerlund & Eddy Files Notice of Recent Data Breach

Active Ransomware Threat Groups Up 30% in 2024

ADT Confirms Another Data Breach, Compromised Credentials to Blame

ADT home security systems hacked for second time in two months

ADT says hacker stole encrypted internal employee data after compromising business partner

American Water disables systems following cyber attack

American Water Hit by Cyber-Attack, Billing Systems Disrupted

American Water hit by cyberattack, takes some systems offline

American Water shut down some of its systems following a cyberattack

American Water shuts down systems after cyberattack

American Water Works Cyber Attack Impacts IT Systems

American Water Works cyberattack forces company to pause billing

American Water Works IT Systems Hit by Cyber Attack

American Water Works reports cybersecurity incident following unauthorized hacker activity

American Water, largest water utility in US, targeted in cyber attack as bills paused

American Water, West Virginia American Water Parent Company Says It Was Target of Cyber Attack

Apparel company 5.11 says cyber attack compromised the data of over 27,000 customers

Australia: Businesses encouraged to share private data with government agencies, under new cyber laws to fight ransomware threat

Billing Paused After Cyber Attack On American Water Company

Can a Virtual Private Network (VPN) Be Hacked?

Casio reports IT systems failure after weekend network breach

Casio says recent cyberattack 'caused system failure'

Casio Suffers Cyber Attack, Hackers Gain Unauthorized Access

Cloud Security Risks Surge as 38% of Firms Face Exposures

Columbus City Council approves millions for cyberattack fallout as investigation continues

Comcast: Data Breach Affected 237,000 Broadband Customers

Comcast confirms another huge data breach: Over 230,000 users impacted

Comcast Confirms Data Breach Affecting Over 237,000 Customers Following Ransomware Attack on Debt Collector

Comcast Confirms Massive Data Breach That Compromised Personal Information Of More Than 200,000 Customers

Comcast Cyber Attack Impacts 237,000+ Users Personal Data

Comcast Data Breach: 237,000+ Customers’ Personal Data Exposed

Comcast Data Breach: How to Know if You’ve Been Targeted

Comcast Data Breach: Over 237,000 customers affected by ransomware attack

Comcast Data Breach Exposes Personal Information of 237,000

Comcast data breach exposes personal information of over 230,000 customers

Comcast reports data breach affecting 230,000 customers in ransomware attack

Comcast suffers major data breach

Comcast warns of vendor data breach affecting 238,000 customers

Critical Flaw in Okta Classic Patched After 3-Month Exploitation Window

Cyberattack Group 'Awaken Likho' Targets Russian Government with Advanced Tools

Cyber Fraud Cost up to $37bn in Southeast Asia Last Year

Cyberattack on American Water Shuts Down Customer Portal, Halts Billing

Data breach at a collections agency impacted nearly 240,000 Comcast users

Data breaches have already impacted hundreds of millions of Americans in 2024

Data of every Dutch police officer compromised in suspected state-sponsored cyber attack

European government air-gapped systems breached using custom malware

File hosting services misused for identity phishing

Firm Warns that Employees’ Digital Fatigue Leads to Higher Cyber Risks

First Nations Health Authority says personal information was accessed in May cyber attack

Gamers Tricked Into Downloading Lua-Based Malware via Fake Cheating Script Engines

Gmail Hackers Have Control Of 2FA, Email And Number? Here’s What To Do

GoldenJackal APT Group Breached Air-Gapped European Government Systems

GoldenJackal Target Embassies and Air-Gapped Systems Using Malware Toolsets

GoldenJackal Targets Embassies, Steals Data from Air-Gapped Systems

Hacker attack disrupts Russian state media on Putin's birthday

Hacker Uses Telegram Chatbots to Leak Data of Star Health Insurance

Happy birthday, Putin - you've been pwned

Healthcare Organizations Warned of Trinity Ransomware Attacks

Helensburgh business hit by ‘damaging’ cyber attack

HHS Issues Warning About Trinity Ransomware Following Healthcare Attacks

HHS settles 2 investigations under HIPAA Security Rule

How hybrid workforces are reshaping authentication strategies

How to Protect Your Digital Life, Six Ways to Stay Safe Online

If you used MoneyGram last month, your data might’ve been stolen

Ivanti fixes three CSA zero-days exploited in the wild (CVE-2024-9379, CVE-2024-9380, CVE-2024-9381)

Ivanti warns of three more CSA zero-days exploited in attacks

Kill Security 2.0 leaks sensitive Betterhalf.ai data following ransomware attack

Largest water company in the US targeted by cyber attack

Late shipment? Retailers’ data leak may have allowed attackers to redirect it

Lua Malware Targeting Student Gamers via Fake Game Cheats

Malware attack: Case against unidentified person for 'hacking Information Technology Development Agency (ITDA) server to lock files, demand ransom'

Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572)

MoneyGram confirms crooks grabbed customers’ personal and transaction data

MoneyGram confirms customer data breach

MoneyGram confirms customer data breach in September cyberattack

MoneyGram Confirms Cyberattack Resulted in Customer Data Breach

MoneyGram confirms data breach after major outage

MoneyGram confirms hack: Social Security numbers, driver’s licenses, and other customer data have leaked

MoneyGram confirms no ransomware involved in the recent cyberattack

MoneyGram Cyber Attack: Hackers Stole Customers’ Personal and Transaction Data

MoneyGram Cyberattack: Sensitive Customer Data Stolen in Major Breach

MoneyGram Data Breach Is Worst-Case Scenario

MoneyGram discloses data breach following September cyberattack

MoneyGram Hit With Colossal Data Breach: Here’s What You Need to Do

MoneyGram loses ground after breach

MoneyGram Money Transfer Firm Reports Customer Data Breach

MoneyGram now says customer data was impacted in security incident

Moneygram reports data breach

MoneyGram Reveals Data Breach After Incident Downed Services

MoneyGram says customer information stolen during September attack

More Than 230,000 Comcast Customer’s Data Leaked In a Ransomware Attack

New Mamba 2FA bypass service targets Microsoft 365 accounts

New MisterioLNK Loader Largely Undetected by Security Tools

New scanner finds Linux, UNIX servers exposed to CUPS RCE attacks

New Trinity Ransomware Targets Healthcare Sector, Federal Warning Issued

North Korean APT Hackers Exploiting DMARC Misconfigs For Phishing Attacks

Over 200,000 Comcast customers affected in data breach: Names, IDs, Social Security numbers exposed

Overcoming Data-Breach Fatigue

Overdue Comcast clients beware: hackers may have your data

Port and local authority websites targeted in new cyber-attack

Pro-Ukrainian Hackers Strike Russian State TV on Putin's Birthday

Progress Telerik, Cisco, QNAP and Linux Under Attack

Qualcomm Addresses DSP Vulnerability CVE-2024-43047, Urges Users to Patch Devices

Qualcomm Urges OEMs to Patch Critical DSP and WLAN Flaws Amid Active Exploits

Qualcomm zero-day under targeted exploitation (CVE-2024-43047)

Ransomware attack impacts 237,000 Comcast customers

Ransomware double-extortion group listings peaked in 2024, report finds

Ransomware takedowns didn’t put off cyber criminals

Revolut saves millions from crypto fraud while US Homeland Security disrupts hacks

Scammer rings costing victims millions busted by international efforts

Singapore: At least 14 people lose $29,000 to phishing scams targeting DBS customers

Southeast Asian cyber-fraud industry ‘outpacing’ law enforcement with new tools

State-backed ‘GoldenJackal’ hackers deploy new tools against government entities

Storm-1575 Threat Actor Deploys New Login Panels for Phishing Infrastructure

The Importance of Phishing Awareness

The role of self-sovereign identity in enterprises

The Secret Weakness Execs Are Overlooking: Non-Human Identities

They conducted hacker attacks on state bodies of Ukraine. Two employees of the Russian FSB were sentenced in absentia to 15 years in prison

Ticketmaster Data Breach: Cloud Hack Leaks Millions of Customers’ Data

Trinity Ransomware Threatens US Healthcare Sector

U.S. Agency Issues Warning on Ransomware Targeting Sensitive Data in Healthcare

U.S. school district forced to shut schools following a significant ransomware attack

Ukrainian pleads guilty to running Raccoon Infostealer malware, agrees to pay nearly $1 million

Universal Music Group admits data breach, Social Security Numbers and more stolen

Veritas Study Shows UAE Organisations Prioritising AI to Combat Data Breach

Vermilion Parish Schools, Louisiana, Investigating Cyber Attack

Websites are losing the fight against bot attacks

Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited

7th October

19 platforms used by government agencies have vulnerabilities

$31.5M T-Mobile settlement resolves Federal Communication Commission (FCC) data breach investigations

238,000 Comcast Customers Hit by FBCS Ransomware Attack

ADT discloses second breach in 2 months, hacked via stolen credentials

Advanced Threat Group GoldenJackal Exploits Air-Gapped Systems

American Water shuts down online services after cyberattack

American Water warns of billing outages after finding hackers in its systems

American Water Works believes no water, wastewater facilities affected by cyberattack

American Water Works IT Systems Hit By Cyberattack; Operational Technology (OT) Unaffected

An anti-theft upgrade is coming to Android phones. Here's how to see if you have it yet

Apple Patches iOS Security Flaw That Could Reveal Saved Passwords

ASEAN data breach costs reach new high, financial sector hit worst

AT&T, Verizon reportedly hacked to target US government wiretapping platform

Atos and French State Locked in Battle Over Critical Cybersecurity Assets

Australian Cybersecurity Professionals Confess To Growing Job Stress

Bethalto School District and Superintendent Jill Griffin Targeted in Data Breach

Betterhalf.ai data leaked on dark web after ransomware attack

Board-CISO Mismatch on Cyber Responsibility, National Cyber Security Centre (NCSC) Research Finds

CDK notifies Maine about June 19 cyberattack data breach

Check Point identifies rise in phishing attacks and scam emails

China Denies Massive Hack as US Telecom Giants Report Major Data Breach in Court Systems

China’s Salt Typhoon Hacks AT&T and Verizon, Accessing Wiretap Data

Chinese government-linked cyberattack targets U.S. broadband providers, compromising wiretap networks

Chinese Hackers Exploit Telecom Networks to Spy on US

Columbus pledges $3 million more to fix data breach

Comcast and Truist Bank customers exposed in FBCS data breach

Comcast and Truist Bank disclose data breach linked to debt collection agency FBCS

Comcast Confirms Data Breach Affecting 238,000 Customers in Ransomware Attack

Comcast says customer data stolen in ransomware attack on debt collection agency

Comcast Says Ransomware Attack on Debt Collector Stole Customer Data

Comcast Subscriber Data Breached via Debt Collector FBCS Cyberattack

Comcast warns 230,000 customers impacted by 2024 data breach

Counter Ransomware Initiative summit emphasizes arduous effort

Critical Apache Avro SDK Flaw Allows Remote Code Execution in Java Applications

Critical Vulnerabilities Expose Nearly 1 Million DrayTek Routers Globally

Crypto Hacker Pleads Guilty for Stealing Over $37 Million in Cryptocurrency

Crypto Phishing Scams Stole $46M in September

Crypto project mistakenly sends millions to attacker

Crypto Scam: Lego victim of a hacker attack then resolves the issue

Cyber attack on Russian state television disrupts service

Cybersecurity Awareness Month 2024: Essential Steps to Protect Your Digital Life

Cybersecurity for Gamers: 10 Essential Tips to Stay Safe

Cybersecurity Threat Report: A.I. Drives New Era of Cyber Threats

Data breach cost in ASEAN hits new high

Data Breach Exposes Social Security Numbers of 237,000 Comcast Customers. Here's What We Know

Data Of Over 200,000 Comcast Subscribers Compromised In Debt Collector Hack

Defending healthcare systems against ransomware attacks

Department of Homeland Security (DHS) Investigators Prevent Hundreds of Ransomware Attacks, Seize Billions Since 2021

Department of Homeland Security (DHS) says it thwarted more than 500 crypto ransom attacks in 3 years

Department of Homeland Security (DHS) thwarted 500 ransomware attacks since 2021

Department of Justice (DOJ) Wants to Claw Back $2.67 Million Stolen by Lazarus Group

Deputy National Security Adviser for Cyber and Emerging Technologies Anne Neuberger Seeks to Remove Insurance Coverage for Ransomware Payments

E.U. Court Limits Meta's Use of Personal Facebook Data for Targeted Ads

EU Urged to Harmonize Incident Reporting Requirements

FBCS data breach impacted 238,000 Comcast customers

FloridaCentral says email account breach impacted over 35,000 customers

Fraud Repayment Rules Could Leave Victims Struggling, Chartered Trading Standards Institute (CTSI) Claims

Google Blocks Unsafe Android App Sideloading in India for Improved Fraud Protection

Hacker attack disrupts Russian state media on Putin's birthday

Hacker attack on EigenLayer, 5.5 million in EIGEN tokens stolen: part of the funds recovered

Hacker confirms worst UK passwords - if yours is on this list, change it now

Has your favourite brand contacted you? It's a scam

Healthcare Data Under Siege, Ransomware Attacks Hit Four Year Peak

Hybrid cloud environments are under serious threat from hackers – here’s what you need to know

India’s Star Health Sues Telegram After Hacker Accesses Chatbots to Leak Data

Information Commissioner’s Office (ICO) fines Police Service of Northern Ireland (PSNI) £750,000 over data leak that exposed officers’ personal information

Information Commissioner’s Office (ICO) Releases New Data Protection Audit Framework

Internet Service Giant Says 237,703 Customers’ Social Security Numbers Exposed in Major Data Breach

LEGO coin scam: company recovers after website hijack

LEGO's website hacked to push cryptocurrency scam

Linux systems targeted with stealthy “Perfctl” cryptomining malware

Major breach exposes every Dutch police officer: state-sponsored actor suspected

Massive data breach exposes personal data of over 230,000 Comcast customers

Massive data breach hits 230,000 Comcast customers - names, addresses and social security numbers exposed

MoneyGram confirms hackers stole customer data in cyberattack

MoneyGram says hackers stole customers’ personal information and transaction data

New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries

New Zealand: Man fears being target of identity theft after personal details stolen in cyber attack

North Korean Hackers Attacking U.S. Organizations With Unique Hacking Tools

Okta Fixes Critical Vulnerability Allowing Sign-On Policy Bypass

Police Service of Northern Ireland (PSNI) Data Breach Compensation Could Be £140 Million

Pro-Israeli Hacker Group Targets Al-Mayadeen

Q3 2024 Crypto Phishing Scams: $750 Million Lost, 4.1% Recovered

Qualcomm patches high-severity zero-day exploited in attacks

Reachability and Risk: Prioritizing Protection in a Complex Security Landscape

Reaction isn’t defence: Why proactive threat hunting matters

Recently spotted Trinity ransomware spurs federal warning to healthcare industry

Russian state media company operation disrupted by ‘unprecedented’ cyberattack

Russian State TV VGTRK Hit by Massive Cyberattack

Security Operations Center (SOC) teams are frustrated with their security tools

Should You Ever Pay a Cyber-ransom?

Some Comcast Customers Personal Data Was Leaked In a FBCS Data Breach

T-Mobile Agrees to $31.5 Million Settlement Over Data Breach Allegations

Tech Professionals Highlight Critical AI Security Skills Gap

The case for enterprise exposure management

The FBIs favorite pants-maker exposes users’ payment cards

The Open Network (TON)-Based Wallet Drainer Shuts Down, Shifts Focus to Bitcoin

There was a 12% increase in brute force cyberattack techniques in 2024

Thousands of Comcast customers have data stolen from third party debt collectors

Timeline: 15 Notable Cyberattacks and Data Breaches

Tips for Cybersecurity Awareness Month

Transforming cloud security with real-time visibility

Ukrainian hacker gang gives Putin special birthday surprise taking down all state media

Ukrainian pleads guilty to operating Raccoon Stealer malware

UN cybercrime treaty lead negotiator: US will suffer if it doesn’t vote "Yes"

Understanding the EigenLayer Hack: A Deep Dive into the $5.7M Theft

Universal Music Group Admits Data Breach

University Medical Center (UMC) expects to make ‘substantial progress’ amid ransomware attack

US agency warns against crypto-hungry Trinity ransomware

US Government, Microsoft Aim to Disrupt Russian Threat Actor ‘Star Blizzard’

Vulnerable APIs and Bot Attacks Costing Businesses Up to $186 Billion Annually

Why evolving cyber threats mean small businesses are ransomware targets

Why SMEs are now a prime target for ransomware