Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Monday, 4 November 2024

Data Breaches Digest - Week 45 2024

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 4th November and 10th November 2024.


10th November

200,000 SelectBlinds Customers Exposed In Card-Skimming Data Breach

Alleged Data Breach at Justice.fr Exposes Sensitive Judicial Information

Call of Duty hacker claims exploit let them falsely ban thousands of Warzone & Modern Warfare 3 players

Cybercriminals impersonate OpenAI in large-scale phishing attack

Hackers now use ZIP file concatenation to evade detection

Halloween hacker caught by Kraken in an attempt to impersonate the customer

North Korean Hacker Group Uses macOS Malware to Steal Crypto

Phishing attacks surge in 2024 as cybercriminals adopt AI tools and multi-channel tactics

Quishing is the QR code scam you need to watch out for

Ransomware Epidemic: Healthcare Under Siege as Attacks Soar

9th November

50 countries warn UN of ransomware attacks on hospitals

AI-powered phishing campaign mimics OpenAI in large-scale attack: How to stay safe

Beware of Fake Copyright Claims that Deliver Rhadamanthys Stealer Malware

Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering

Call of Duty hacker says "I had my fun" after reportedly getting thousands of Warzone and Modern Warfare 3 players falsely banned

Cybercriminals Launch Large-Scale Phishing Attack by Impersonating OpenAI

Data breach alert: Over 100,000 fake accounts linked to South Africa grant-fraud claim

Hackers are targeting people who type these six words into their computer

Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows

Malicious PyPI package with 37,000 downloads steals Amazon Web Services (AWS) keys

Over 50 Nations Urge UN Action on Ransomware Attacks Targeting Hospitals

Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns

Ransomware attacks on hospitals are 'issues of life and death,' warns World Health Organization (WHO) chief

Ransomware Threats Endanger Global Health Security

Ransomware Threats to Indian Banks: Expert Insights on Cybersecurity Strategies Against Financial Scams

Scammers target UK senior citizens with Winter Fuel Payment texts

This new phishing strategy utilizes GitHub comments to distribute malware

Unauthorized Access to Indian Government Email Accounts Allegedly Compromised

World Health Organization (WHO) and Global Leaders Warn of Ransomware Threats to Hospitals

World Health Organization (WHO) Chief warns ransomware attacks on hospitals pose ‘Life and Death’ threats

World Health Organization (WHO) warns against ransomware attacks on hospitals

World Health Organization (WHO), 50 countries warn United Nations of increasing ransomware attacks against hospitals

World Health Organization (WHO), along with 50 countries, warn of rising ransomware attacks on hospitals

8th November

3 Real-World Examples of Why Companies Need Better Email Authentication

Administrator Access to Malaysia’s DOSH Portal Allegedly for Sale, Raising Security Concerns

AI Cuts Data Breach Time by 98 Days, Costs Surge to $4.88M

AI safety issues high in hacker report

AI-driven threat detection is crucial in combating modern ransomware tactics

Alleged Data Breach at Aviva Spain Exposes 2.7 Million Customer Records

Alleged Database and Source Code Leak of Falo Dating App Raises Security Concerns

Alleged Sale of International Lookup API Raises Privacy and Security Concerns

AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services

Are You Eligible for Up to $10,000 from 23andMe's Data Breach Settlement?

Building a Resilient Future: CISA Kicks Off Critical Infrastructure Security Month

Call of Duty anti-cheat exploit allowed hacker to ban players

Canada Cites Security Risks, Orders TikTok’s Canadian Branch to Wind Up

Casio Warns Users Of Data Breach - What The Hackers Stole

CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability

‘Copyright Infringement’ Phishing Scam Is Targeting Organizations: How to Stay Safe

Critical Palo Alto Networks Expedition bug exploited (CVE-2024-5910)

Critical Veeam RCE bug now used in Frag ransomware attacks

Cyber attack on Microlise hits operators triggering call for stronger continuity plans

Cyberattacks on healthcare: A global threat that can’t be ignored

Cybercrime pushes British Columbia retailers to strengthen defences

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

Dark Web Profile: CosmicBeetle (NoName) Ransomware

Data Breaches Cost Companies US$677 Million On Average, New Report Reveals

FBI says hackers are sending fraudulent police data requests to tech giants to steal people’s private information

Hacker claims to have banned thousands of Call of Duty (CoD) players through anti-cheat exploit

Hacker-powered security report: Firms turn to human intelligence amid rising AI threats

Hackers Can Access Mazda Vehicle Controls Via System Vulnerabilities

How data breaches erode trust and what companies can do

'I had my fun' says hacker who used Call of Duty anti-cheat exploit to ban 'thousands upon thousands' of innocent players

IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools

If You Fall for a Phishing Email, Here’s What Happens Next

In the midst of restructuring, Guardian Healthcare hit by ransomware attack

Interlock ransomware gang targets big organisations across sectors

Large-Scale Phishing Campaign Exposed Using New Version of Rhadamanthys Malware

Major Oilfield Supplier Hit by Ransomware Attack

Malicious actors are exploiting DocuSign to send fake invoices

Malicious NPM Packages Target Roblox Users with Data-Stealing Malware

Motorcyle parts seller Dennis Kirk suffers data breach exposing millions of records

New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus

New SteelFox Malware Posing as Popular Software to Steal Browser Data

Newpark Resources Hit by Ransomware Attack, Disrupting Key Systems

Newpark Resources Ransomware Attack Impacted the Company’s Critical Systems

Nigerian national gets 10-year sentence for stealing $20 million through business email compromise scams

No data lost in cyber attack 'false alarm' but outage sparks hike in backlog of council work

Nokia confirms data breach leaked third-party code, but its data is safe

Nokia confirms data breach, third party suffers cyber attack

North Korean Actor Deploys Novel Malware Campaign Against Crypto Firms

North Korean hacker BlueNoroff targets crypto firms with new malware

North Korean hacker group BlueNoroff targets crypto firms with new MacOS malware

North Korean Hackers Shift Tactics to Target Crypto Firms

Organisations deploy AI and automation to enhance security

Palo Alto Networks warns of potential PAN-OS RCE vulnerability

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Phishing your own people in cybersecurity training? How to protect the brands you use as bait

Private key and phishing “most prevalent,” crypto scams security firm says

Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine War

Russia’s internet watchdog blocks thousands of websites that use Cloudflare's privacy service

Scammers steal over $1 trillion in a year, report reveals

Seoul accuses pro-Kremlin hackers of attacking websites over decision to monitor North Korean troops in Ukraine

South African Social Security Agency (SASSA) refutes hacker group’s claim to use stolen identities for social grants

South Korea: Police arrest 20 suspects connected to ‘international sender’ phishing texts

Steps Organizations Can Take to Improve Cyber Resilience

Strengthening network helps in the ransomware fight

Texas Oilfield Supplier Newpark Hit by Ransomware

Texas oilfield supplier Newpark Resources suffered a ransomware attack

Texas Oilfield system supplier Newpark Resources hit by ransomware

Texas-based oilfield supplier faces disruptions following ransomware attack

Thousands of employees could be falling victim to obvious phishing scams every month

Time To Change Your Password As Casio Warns Of Data Breach

Transportation Security Administration (TSA) floats new rules mandating cyber incident reporting for pipelines, railroads

Unpatched Mazda Connect bugs let hackers install persistent malware

Uttarakhand Cyber Attack Investigation Ongoing: One Month Later, Source Still Unknown

VEEAM exploit seen used again with a new ransomware: “Frag”

Who is "kiberphanT0m"? Notorious Hacker Behind Leaking Kamala Harris, Melania Trump and Trump Family's Alleged Phone Numbers in Shocking Cyberattack on AT&T

Why AI-enhanced threats and legal uncertainty are top of mind for risk executives

Why Healthcare Needs More Than AI to Fight Cyber-Attacks

7th November

500,000 people impacted by ransomware attack on Columbus, Ohio

A Hacker's Guide to Password Cracking

AI threats dictate a return to Human Intelligence

Alert For Lawyers: Don't Fall For This Federal Courts Phishing Scam

Alleged COVID-19 Case Assignment Database Leak in India Exposes Over 1.1 Million Records

Alleged Data Breach at Acko.ru Exposes 4 Million Insurance Records

Alleged Data Breach at Berling.gr Exposes 6 TB of Corporate Data

Alleged Data Breach Exposes 5.3 Million Records of Professional Investors and Private Shareholders in Hong Kong

Alleged Data Leak of 100 Million Zalo.vn User Records

Alleged Leak of Indonesian Spotify Account Data Raises Security Concerns

Alleged US Military Database Breach Exposes Data of Over 385,000 Personnel

Androxgh0st Botnet Adopts Mozi Payloads, Expands IoT Reach

Androxgh0st Botnet Integrates Mozi, Expands Attacks on IoT Vulnerabilities

Brightline Reaches $7 Million Settlement Over 2023 Data Breach: What Affected Individuals Need to Know

Canada ordered ByteDance to shut down TikTok operations in the country over security concerns

Canada Orders Shutdown of Local TikTok Branch Over Security Concerns

Canada orders shutdown of TikTok offices over security risks (but won’t block app)

Canada orders TikTok shutdown, citing national security threats

Canada Orders TikTok to Shut Down Canadian Operations Over Security Concerns

Canada orders TikTok to shut down over national risk concerns

Canada to force TikTok to dissolve its business in the country

China-Aligned MirrorFace Hackers Target EU Diplomats with World Expo 2025 Bait

China-linked hackers tasked with Japanese targets pursue them through Europe

CISA warns of critical Palo Alto Networks bug exploited in attacks

Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems

Clicker Beware: Understanding and preventing open redirect attacks

Consumer privacy risks of data aggregation: What should organizations do?

Critical Command Injection Vulnerability Hits Cisco’s Wireless Backhaul Devices

Critical vulnerability affects Cisco’s industrial heavy-duty WiFi access points

Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418)

Cyber Attack Warning As Hackers Use AI And Gmail In New Campaign

Cyber insurance demand surges as ransomware targets businesses of all sizes

Cyber Intrusion Disrupts Washington State Court Systems

Cyberattack on Telematics Firm Disrupts Tracking for British Prison Vans

Defenders Outpace Attackers in AI Adoption

DHL operations impacted by a major cyber attack on tech software provider Microlise

Eight people cited data breach as they left Police Service of Northern Ireland (PSNI), Policing Board told

Embargo ransomware group claims major data theft at Georgia's Memorial Hospital and Manor

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

Facebook seeks to scuttle massive securities fraud suit

Fake copyright claims used to deploy Rhadamanthys malware

FBI Warns Gmail, Outlook Users Of $100 Government Emergency Data Email Hack

Germany Drafts Law to Shield Ethical Hackers, Tighten Penalties for Cybercrime

Gloves Holdings dba Protective Industrial Products Confirms Recent Data Breach

Hacker Claims to Leak Nokia Source Code

Hacker claims to steal source code owned by Nokia

Hacker group Rhysida demands £1.2 million ransom from Fylde Coast Academy Trust after cyber attack on schools

Hacker releases call logs of Trump family, Kamala Harris

Hacker says they banned ‘thousands’ of Call of Duty gamers by abusing anti-cheat flaw

Hacker Selling Nokia Data For $20,000, Nokia Says Nothing To See Here

Hacker threatens to release Donald Trump, Kamala Harris’ personal mobile phone numbers in AT&T extortion bid

Hacker Tries Breaking Into School Computer Network

Hacker-Powered Security Report: Firms Turn to Human Intelligence Amid Rising AI Threats

Hackers demand '$125,000 in baguettes' as ransom from multi-billion dollar French firm

Hackers disable prisoner vans' panic alarms and tracking devices in cyber-attack which 'went unknown to drivers for days'

Hewlett Packard Enterprise (HPE) warns of critical RCE flaws in Aruba Networking access points

How AI will shape the next generation of cyber threats

Industrial companies in Europe targeted with GuLoader

Interlock Ransomware Targets US Healthcare, IT and Government Sectors

Intesa Slammed by Watchdog for Downplaying Data Breach

Italy’s data watchdog slams Intesa over data breach

Italy’s privacy authority orders Intesa Sanpaolo to address high-risk data breach

Law enforcement operation takes down 22,000 malicious IP addresses worldwide

MacOS under attack by crypto thieves: malicious app disguises itself as PDF

Major Colorado Healthcare Company Hit With Cyber Attack

Malicious PyPI Package 'Fabrice' Found Stealing AWS Keys from Thousands of Developers

Memorial Hospital postpones health fair following ransomware attack

National Cyber Security Centre (NCSC) Publishes Tips to Tackle Malvertising Threat

National Security Agency (NSA) Says Restrict Windows And MacOS, Use Google, To Stop Attacks

Network Penetration Testing in the Age of Automation: A Conversation with an Ethical Hacker

New MacOS Malware Linked to North Korean Hackers

Noida Metro Database Allegedly Leaked, Exposing Employee and User Information

Nokia says hackers leaked third-party app source code

North Korea allegedly targeting crypto businesses with Mac-focused malware

North Korean hackers employ new tactics to compromise crypto-related businesses

North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS

North Korean Hackers Use Fake News to Spread ‘Hidden Risk’ Malware

North Korean hackers use new macOS malware against crypto firms

Northeast Professional Caregivers alerts patients to potential data breach after unauthorized email access

Novel hacker group stole 40GB of data from Schneider Electric's Jira platform

OpenText report reveals Australia's top ransomware threats

OrthopedicsNY Files Official Notice of 2023 Data Breach Affecting Patient Information

Over 1,000 UK banking employees could be clicking phishing links every month

Pakistan: Federal Tax Ombudsman (FTO) Orders Federal Board of Revenue (FBR) to Improve Security As Data Breach Causes Rs 81.43 Billion Tax Fraud

Phishing: One of the Most Common Security Threats in Banking

Phishing Campaign Impersonates OpenAI To Collect Financial Data

Precious-Metal Refiner Hit with Data Breach Class Action over 2023 Cyber-Attack

Raimondo Pettit Group Provides Official Notice of Data Breach

Ransomware attack costs Microchip Technology over $21 Million

Ransomware attack’s devastating toll on hospital patients’ health

Ransomware attacks caused prolonged disruptions in October

Ransomware is a persistent and growing threat for schools nationwide. Here’s what you need to know

Regional Government of Ica Website Hacked, Exposing Security Vulnerabilities

SalesGig Data Exposure Allegedly Leaks 2 Million Leads with Personal and Company Information

Scammers Target Starlink Users With Elaborate Phishing Scheme

Schneider Electric hit by another breach, ransomware gang demands $125,000 “in baguettes”

Scissor-maker Fiskars sliced by hackers

Security experts warn of new hacker strategy targeting Windows drivers

Security Researchers Unveils 0ktapus Phishing Techniques

Serco, DHL among firms affected by Microlise cyber attack

South Korea fines Meta $15 million over data breach

South-East Technological University (SETU) Waterford classes resume on campus with warning after cyber attack

Star Health policyholders’ data up for sale on dark net

Stealthier GodFather Malware Uses Native Code to Target 500 Banking and Crypto Apps

SteelFox and Rhadamanthys Malware Use Copyright Scams, Driver Exploits to Target Victims

Symetra Life Insurance Company Announces Data Breach Following Unauthorized Logins

Transport for London resumes Oyster card processing following the September cyber attack

TriHealth alerts patients to vendor data breach

UK Cybersecurity Wages Soar Above Inflation as Stress Levels Rise

UK Regulator Urges Stronger Data Protection in AI Recruitment Tools

Verizon Wireless Push-to-Talk Logs Allegedly Leaked, Exposing Server Data

WazirX Plans Recovery Token to Address Debts After Cyber Attack

Winestyle.ru Database Allegedly Leaked, Exposing 1.1 Million Customer Records

6th November

AI-Assisted Attacks Top Cyber Threat For Third Consecutive Quarter, Gartner Finds

AT&T Hacker Arrested: How the Cybersecurity Landscape Evolved Post-Snowflake Breach

Avoiding Social Engineering Attacks: Essential Strategies for Protection

Canada arrests hacker allegedly behind massive AT&T data breach

Cisco bug lets hackers run commands as root on Ultra-Reliable Wireless Backhaul (URWB) access points

Cyber-Attack on Microlise Disrupts DHL and Serco Tracking Services

Cyberattack disables tracking systems and panic alarms on British prison vans

Germany drafts law to protect researchers who find security flaws

Global Operation Takes Down 22,000 Malicious IPs

Google Addresses Two Android Zero-Days Used in Targeted Attacks

GoZone ransomware accuses and threatens victims

GPT-4o Used for Scams and Voice Phishing

Hackers increasingly use Winos4.0 post-exploitation kit in attacks

Healthfund Solutions Files Formal Notice of Data Breach

High-Risk Synology Flaw Identified: CERT-In Urges Users to Patch Immediately

Identity-related data breaches cost more than average incidents

Increasing Awareness of DNS Hijacking: A Growing Cyber Threat

India’s Banking Sector Tightens Cybersecurity as Department of Financial Services (DFS) Calls for Stronger Digital Defenses

INTERPOL Disrupts Over 22,000 Malicious Servers in Global Crackdown on Cybercrime

Interpol Operation Shuts Down 22,000 Malicious Servers

Major Ukrainian university bans Telegram to reduce cyberthreats

Massive Nigerian Cybercrime Bust Sees 130 Arrested

Memorial Hospital and Manor suffered a ransomware attack

New EU Cyber Rules Highlights Gaps in Security and ‘Paper-Compliance’

New SteelFox malware hijacks Windows PCs using vulnerable driver

New Winos4.0 Malware Targeting Windows via Fake Gaming Apps

Organizations Still Falling Victim to Predictable Cyber-Attacks

Outages impact Washington state courts after ‘unauthorized activity’ detected on network

PAS Hosting Data Breach Affects Insurance Administrator SelmanCo

Passwords Compromised In Ridgewood Schools Cyber Attack, Superintendent Says

Protecting Customer Data with AI Powered Customer Identity and Access Management (CIAM) and Identity Governance and Administration (IGA)

Ransomware Attackers Demand Payment in French Baguettes

Ransomware presents a growing threat to vulnerable local governments

Scammers Target BASE and Ethereum with Political Meme Coins and Rug Pulls

SelectBlinds says 200,000 customers impacted after hackers embed malware on site

Snowflake Hacking Suspect Arrested in Canada

South Korea Fines Meta $15.67M for Illegally Sharing Sensitive User Data with Advertisers

Top US cyber official says 'no evidence of malicious activity' impacting election

Transferred bitcoins? Your identity might have been stolen

UK prisoner e-tracking devices offline after Microlise cyberattack

Using passphrases for better security

Valleygate Dental Surgery Centers Files Official Notice of November 2023 Data Breach

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware

Washington courts' systems offline following weekend cyberattack

Whitehat finds flaw that gave unauthorized access to over 700 million Electronic Arts (EA) accounts

Winos4.0 Malware Found in Game Apps, Targets Windows Users

Winos 4.0 Malware Infects Gamers Through Malicious Game Optimization Apps

5th November

Alleged Snowflake hacker detained in Canada at DOJ's request

Beware of phishing emails delivering backdoored Linux VMs

Canada Arrests Suspected Hacker Linked to Snowflake Data Breaches

Canadian authorities say they arrested hacker linked to Snowflake data breaches

Canadian Hacker Behind Snowflake Data Breach Arrested in High-Profile Cyber Case

Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks

Chinese Air Fryers May Be Spying on Consumers, Which? Warns

CISA Flags Critical Security Flaws in PTZOptics Cameras, Urges Swift Action by Federal Agencies

ClickFix Exploits Users with Fake Errors and Malicious Code

Critical ICS Vulnerabilities Exposed: CISA Advisories Urge Immediate Action

Database from Popular Football App with 6M User Records Up for Sale on Dark Web

Database Leak from USDT Trading Platform QNQB Exposes Sensitive User Information

Database of 4 Million Individuals from Cordoba, Argentina, Exposed on Dark Web

FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions

Georgia hospital unable to access record system after ransomware attack

Germany plans to decriminalize whitehat hacking

Global Crackdown Leads to Seizure of Over 22,000 Malicious IPs, Servers

Google fixes two Android zero-days used in targeted attacks

Google patches actively exploited Android vulnerability (CVE-2024-43093)

Google Uses Its Big Sleep AI Agent to Find SQLite Security Flaw

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System

Hacker suspected in massive Ticketmaster, AT&T breaches arrested in Canada

Hackers Deploy CRON#TRAP for Persistent Linux System Backdoors

Hackers Exploit DocuSign APIs for Phishing Campaign

How Cybersecurity Training Must Adapt to a New Era of Threats

Interpol disrupts cybercrime activity on 22,000 IP addresses, arrests 41

Interpol operation nets 41 arrests, takedown of 22,000 malicious IPs

Major blow to cybercriminals: Interpol takes down thousands of IPs and servers

Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages

Man Accused of Snowflake Customer Data Breaches Arrested

Massive Data Leak Exposes Personal Information of Buenos Aires Students

Maximizing security visibility on a budget

Meta found to have exposed info on North Korean defectors to advertisers

MIT Technology Review Database Breach Exposes Personal Data of 290,000 Users

New Android Banking Malware 'ToxicPanda' Targets Users with Fraudulent Money Transfers

Nigeria Arrests 130 Foreign Nationals, Nigerians for Cybercrimes and Hacking

Nokia Source Code Breach Exposes Sensitive Credentials and Internal Data

Oasis Fans Losing Up to £1000 Each to Ticket Scammers

ORBCOMM Database Leak Exposes Over 70TB of Sensitive Data

Pakistani Hackers Targeted High-Profile Indian Entities using Custom RAT

Potential Cybersecurity Threats to the 2024 U.S. Election: Voter Database Leaks

Recovering From a Breach: 4 Steps Every Organization Should Take

Schneider Electric Clawed by 'Hellcat' Ransomware Gang

Schneider Electric Confirms Breach as Hackers Offer 50% Ransom Discount to New CEO

Schneider Electric says hackers accessed internal project execution tracking platform

South East Technological University (SETU) Confirms Cyberattack on Waterford Campus, Classes Set to Resume with Limited Services

South Korean authorities fine Meta $15.6 million for sharing user data with advertisers

Suspect behind Snowflake data-theft attacks arrested in Canada

Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices

Three ‘Must Solve” Challenges Hindering Cloud-Native Detection and Response

Top US cyber agency says no ‘significant incidents’ impacting election so far

ToxicPanda Malware Targets Banking Apps on Android Devices

Your Android device is vulnerable to attack and Google's fix is imminent

4th November

A Massive Hacking Toolkit From “You Dun” Threat Group Developed To Lauch Massive Cyber Attack

AI Increases Phishing Attacks

Applications for Student Oyster cards reopen as Transport for London (TfL) starts to lift cyber attack restrictions

Barracuda uncovers large-scale AI-driven phishing attack impersonating OpenAI

Belle Tire reveals tens of thousands exposed in cyberattack

Booking.com Customers Targeted by Phishing via Compromised Partners’ Accounts

Businesses Worldwide Targeted in Large-Scale ChatGPT Phishing Campaign

Cactus ransomware gang claims major data theft at Los Angeles' housing authority

Check Point predicts AI will shape cyber threats by 2025

Chinese hackers hijacked thousands of TP-Link WiFi routers for covert cyberattacks

CISA Warns of Ongoing Spear Phishing Campaign Using RDP Attachments

Cisco notifies ‘limited set’ of customers after hacker accessed non-public files

Cisco says DevHub site leak won’t enable future breaches

City of Columbus: Data of 500,000 stolen in July ransomware attack

City of Columbus says ransomware attack compromised the data of about 500,000 residents

Columbus Ransomware Attack Exposes Data of 500,000 Residents

Columbus says ransomware gang stole personal data of 500,000 Ohio residents

Crime-related crypto losses drop from previous month but spike year-over-year

Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning

Custom "Pygmy Goat" malware used in Sophos Firewall hack on govt network

Cyber attack on Portsmouth City Council sparks extra security

Cyber Threats That Could Impact the Retail Industry This Holiday Season (and What to Do About It)

Cyberattack disclosed by Los Angeles (LA) housing authority after Cactus ransomware claims

Cyberattack disrupts classes at Irish technology university

Cybercriminals Exploit DocuSign APIs to Send Fake Invoices

Cybercriminals steal cookies to get into your accounts: how to stay safe

Cyble Warns of Escalating Cyber Risks in IoT and WordPress Plugins Amid Phishing Surge

Data Breach at Free: Hacker Claims to Have Sold Stolen Info

Data breach at Hong Kong hearing centres affects nearly 150,000 individuals

DocuSign's Envelopes API abused to send realistic fake invoices

FBI Establishes 24/7 Command Post for Election Day Security Amid Cyber and Safety Concerns

First National Bank (FNB) and Nedbank Address Hacker Claims of R175 Million South African Social Security Agency (SASSA) Theft

‘Foreign Hackers’ Target UK Council in Second Cyber Attack This Week

FortiManager May Still Be Vulnerable Despite ‘FortiJump’ Patch

FreeBSD servers subjected to novel Interlock ransomware attacks

Gardaí working with South East Technological University following suspected cyber attack affecting their Waterford campus

Gardaí working with South East Technological University (SETU) following suspected cyber attack at Waterford campus

German pharmacuetical distributor impacted by ransomware

German Police Disrupt DDoS-for-Hire Platform dstat[.]cc; Suspects Arrested

Google Researchers Claim First Vulnerability Found Using AI

Google uses large language model to discover real-world vulnerability

Google's AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine

Hacker Steals $4M from Crypto Casino Metawin

Hackers Claim Access to Nokia Internal Data, Selling for $20,000

Hackers Leak 300,000 MIT Technology Review Magazine User Records

How AI Is Changing the Cloud Security and Risk Equation

How Organisations Are Failing to Process Personal Data Lawfully Under the GDPR

India: Police arrest ‘hacker’ trio for high-end car thefts in Bengaluru

Information Commissioner’s Office (ICO) refuses to give up on DSG Retail data breach case

Inside the mind of a ransomware negotiator: what it’s really like to deal with cybercriminals

Interlock Ransomware Targets FreeBSD, Threatens Infrastructure

International law enforcement operation shut down DDoS-for-hire platform Dstat.cc

Los Angeles housing authority HACLA hit by Cactus ransomware

Major data breach affects over 1.8 million patients at Summit Pathology Laboratories

Massive Midnight Blizzard Phishing Attack Using Weaponized RDP Files

Middlesbrough Council targeted in second cyber attack in a week

Middlesbrough Council's website targeted by suspected foreign hackers in second cyber attack

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls

New Vulnerabilities in Fortinet, SonicWall, and Grafana Pose Significant Risks

NFL Super Bowl entertainment partner victim of cyberattack

Nigeria: Police bursts ‘hacker syndicate’, arrests 113 Chinese, Malaysians, and 17 Nigerians

Nigerian Handed 26-Year Sentence for Real Estate Phishing Scam

Nigerian man Sentenced to 26+ years in real estate phishing scams

Nokia investigates breach after hacker claims to steal source code

Northern Ireland: No additional Treasury funds for PSNI data breach

Ohio's capital says July ransomware attack leaked info of 500,000

Okta allowed passwordless logins for exceptionally long usernames

Over half of Ohio state capital exposed in massive cyberattack

RansomHub dethrones LockBit as top ransomware cartel

Ransomware Attack Disrupts Memorial Hospital’s EHR System, Temporarily Slows Operations

Safeguarding your accounts after a data breach

Scammers Use DocuSign API to Evade Spam Filters with Phishing Invoices

Schneider Electric confirms developer platform breach after hacker steals data

Severity of Ransomware Attacks Rose 68% in First Half of 2024, Report Shows

South East Technological University (SETU) issues an update on Waterford Campus cyber attack

Strong privacy laws boost confidence in sharing information with AI

Supply Chain Attack Uses Smart Contracts for C2 Ops

Transport for London (TfL) restores 18+ Oyster photocard applications following cyber attack

Transport for London (TfL) resumes some Oyster photocard applications

Transport for London (TfL) starts to process new Oyster photocards after a cyber attack forced them to halt requests

True World, the church-run seafood empire, suffers data breach

UK Council Sites Recover Following Russian DDoS Blitz

WazirX Hacker Is Converting Stolen Funds Into Bitcoin

Windows infected with backdoored Linux VMs in new phishing attacks