Krebs on Security

DECEMBER 2, 2020

For at least the third time in its existence, OGUsers — a forum overrun with people looking to buy, sell and trade access to compromised social media accounts — has been hacked. OGUsers was hacked at least twice previously, in May 2019 and again in March 2020. called Disco Payments. ”

Accountability 346

Accountability Hacking Scams Media 346

Security Affairs

AUGUST 3, 2020

2020 Cost of a Data Breach Report: the global total cost of a data breach averaged $3.86 million in 2020, down about 1.5% This year the researchers analyzed 524 breaches that occurred between August 2019 and April 2020, in organizations of all sizes, across 17 geographies and 17 industries.

Data breaches 143

Data breaches Advertising Malware Hacking 143

Troy Hunt

NOVEMBER 22, 2022

This is a story about a massive corpus of data circulating widely within the hacking community and misattributed to a legitimate organisation. That organisation is Acxiom , and their business hinges on providing their customers with data on their customers. Welcome to my world. This made massive news headlines until.

Data breaches 309

Data breaches Data privacy Hacking InfoSec 309

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking 336

Hacking Cybercrime Phishing Passwords 336

Security Affairs

APRIL 11, 2020

San Francisco International Airport (SFO) disclosed a data breach, its websites SFOConnect.com and SFOConstruction.com were hacked last month. In March hackers compromised two websites of San Francisco International Airport (SFO) and now it disclosed a data breach. ” continues the data breach notice.

Data breaches 145

Data breaches Hacking Telecommunications Advertising 145

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. and its allies for hacking activities in July. Wall Street Journal reported.

Mobile 113

Mobile Telecommunications Data breaches Hacking 113

Krebs on Security

NOVEMBER 5, 2024

Bloomberg first reported Moucka’s alleged ties to the Snowflake hacks on Monday. At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required).

Cybercrime 277

Cybercrime Mobile Media Hacking 277

Krebs on Security

DECEMBER 16, 2020

13, cyber incident response firm FireEye published a detailed writeup on the malware infrastructure used in the SolarWinds compromise, presenting evidence that the Orion software was first compromised back in March 2020. FireEye said hacked networks were seen communicating with a malicious domain name — avsvmcloud[.]com

Hacking 362

Hacking Malware Software Cybercrime 362

Daniel Miessler

MAY 19, 2021

Breach : An incident that results in the confirmed disclosure—not just potential exposure—of data to an unauthorized party. This year they analyzed 79,635 incidents, 29,207 met their quality standards, and 5,258 were confirmed data breaches. Internal actors moved significantly towards External in 2020.

Data breaches 192

Data breaches Social Engineering Ransomware Phishing 192

Security Affairs

DECEMBER 29, 2021

T-Mobile discloses a new data breach that impacted a “very small number of customers” who were victim of SIM swap attacks. T-Mobile has suffered another security breach, threat actors gained access to the accounts of “a small number of” customers.’. SecurityAffairs – hacking, data breach).

Data breaches 145

Data breaches Mobile Accountability Wireless 145

CyberSecurity Insiders

JANUARY 17, 2022

Note 3 -But a hacking group named FIN11 linked to Clop Ransomware Group succeeded in exploiting the vulnerabilities of the legacy file transfer solution provider and managed to steal a sizeable amount of information to demand a ransom in exchange of the stolen data and a decryption key. million with no obligations on a further note.

Data breaches 126

Data breaches Healthcare Ransomware Hacking 126

Security Affairs

SEPTEMBER 14, 2020

Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. Staples, the office retail giant, disclosed a data breach, it notified its customers that their order data have been accessed by threat actors without authorization.

Data breaches 145

Data breaches Retail Identity Theft Advertising 145

Security Affairs

JULY 28, 2021

The ‘Cost of a Data Breach’ report commissioned by IBM Security states that the cost of a data breach exceeded $4.2 The study highlights the significant impact of the ongoing pandemic on the cost of data breaches and the effort to contain them. The average cost of a data breach passed from $3.86

Data breaches 144

Data breaches Healthcare Ransomware Hacking 144

Security Affairs

MARCH 23, 2021

Oil and gas giant Royal Dutch Shell (Shell) discloses a data breach resulting from the compromise of its Accellion File Transfer Appliance (FTA) file sharing service. Energy giant Shell disclosed a data breach resulting from the compromise of an Accellion File Transfer Appliance (FTA) used by the company. billion in 2020.

Data breaches 134

Data breaches Hacking Cybercrime Cyber Attacks 134

Security Affairs

NOVEMBER 16, 2023

Samsung Electronics disclosed a data breach that exposed customer personal information to an unauthorized individual. Samsung Electronics suffered a data breach that exposed the personal information of some of its customers to an unauthorized individual. ” reads the data breach notification sent to the customers.

Data breaches 139

Data breaches eCommerce Hacking Passwords 139

Security Affairs

MAY 25, 2020

Three hacking forums Nulled.ch, Sinfulsite.com, and suxx.to have been hacked and their databases have been leaked online. Researchers from intelligence firm Cyble made the headlines again, this time they have discovered online the databases of three hacking forums. The databases appear to have been leaking in May 2020.

Hacking 145

Hacking Data breaches Advertising Cybercrime 145

Security Affairs

MARCH 31, 2020

Marriott disclosed a new security breach detected at the end of February 2020 that could impact up to 5.2 Marriott International discloses a data breach that exposed the personal information of roughly 5.2 million hotel guests, the incident was detected at the end of February 2020. million of its guests.

Data breaches 144

Data breaches Passwords Advertising Accountability 144

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The hack of the FTA server took place in March, but the hacker had access to the data of Morgan Stanley customers in May.

Data breaches 131

Data breaches Hacking Banking Financial Services 131

Krebs on Security

JULY 22, 2020

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. ” Twice in the past year, the OGUsers forum was hacked , and both times its database of usernames, email addresses and private messages was leaked online.

Hacking 331

Hacking Accountability Scams Media 331

Security Affairs

NOVEMBER 1, 2020

A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. The threat actor is advertising the stolen data since October 28 on a hacker forum. Only RedMart, after being informed by Bleeping computer, disclosed a security breach. Source Bleeping Computer.

Data breaches 145

Data breaches Accountability Advertising Passwords 145

Security Affairs

NOVEMBER 22, 2021

GoDaddy suffered a data breach that impacted up to 1.2 GoDaddy discloses a data breach that impacted up to 1.2 million of its customers, threat actors breached the company’s Managed WordPress hosting environment. SecurityAffairs – hacking, data breach). Pierluigi Paganini.

Data breaches 141

Data breaches Passwords Accountability Information Security 141

Security Affairs

DECEMBER 14, 2020

The startup started reporting the security incident to its customers that had their data accidentally exposed online, only users who registered on its platform before or on March 17, 2020, were impacted. SecurityAffairs – hacking, data leak). sent by the company to its users today. Pierluigi Paganini.

Data breaches 145

Data breaches Backups Software Passwords 145

Security Affairs

SEPTEMBER 3, 2022

Electronics giant Samsung has confirmed a new data breach after some of its US systems were compromised in July. After the attack that hit the company in late July 2022, Samsung disclosed a data breach. Threat actors had access to internal company data, including the source code of Galaxy models.

Data breaches 145

Data breaches Hacking Authentication Cybersecurity 145

Security Affairs

NOVEMBER 27, 2020

According to the media outlet, the incident resulted in the loss of data for users of their free 10GB storage feature. The image.canon site suffered an outage on July 30th, 2020, that lasted for six days, until August 4th. At the time the company only confirmed an internal investigation on a problem related to “10GB of data storage.”.

Data breaches 144

Data breaches Ransomware Banking Media 144

Security Affairs

OCTOBER 7, 2024

238,000 Comcast customers were impacted by the FBCS data breach following the February ransomware attack, Comcast reports. Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. reads the notice of data breach.

Data breaches 131

Data breaches Telecommunications Ransomware Accountability 131

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 SecurityAffairs – hacking, Woolworths). million MyDeal customers.

Data breaches 136

Data breaches Retail Passwords Accountability 136

Security Affairs

JANUARY 4, 2022

UScellular, one of the largest wireless carriers in the US, has disclosed a data breach after the hack suffered in December 2021. UScellular has disclosed a data breach after the attack that compromised the company’s billing system in December 2021. ” reads the data breach notification letter.

Data breaches 139

Data breaches Wireless Accountability Retail 139

Security Affairs

JANUARY 30, 2021

US wireless carrier UScellular discloses data breach, personal information of customers may have been exposed and their phone numbers ported. US wireless carrier UScellular discloses a data breach that exposed personal information of its customers. ” reads the USCellular data breach notification.

Data breaches 144

Data breaches Wireless Retail Accountability 144

Security Affairs

MAY 3, 2021

Which are the most common causes of a Data Breach and how to prevent It? Data breaches are highly damaging and equally embarrassing for businesses and consumers. If you look at Verizon’s 2020 Data Breach Investigations Report, you can find some of the most common causes of data breaches.

Data breaches 144

Data breaches Social Engineering Engineering Network Security 144

The Last Watchdog

AUGUST 19, 2021

At the start of this week, word got out that hackers claimed to have seized personal data for as many as 100 million T-Mobile patrons. Related: Kaseya hack worsens supply chain risk. Often inadvertent data breaches stem from a well-meaning employee trying to meet the needs of clients but without the technical systems to facilitate.

Mobile 235

Mobile Data breaches Authentication Accountability 235

Security Affairs

OCTOBER 9, 2023

Flagstar Bank announced a data breach suffered by a third-party service provider exposed the personal information of over 800,000 US customers. Flagstar Bank is warning 837,390 US customers that their personal information was exposed after threat actors breached the third-party service provider Fiserv.

Data breaches 133

Data breaches Banking Hacking Mobile 133

Security Affairs

DECEMBER 24, 2023

Video game publisher Ubisoft is investigating reports of an alleged data breach after popular researchers shared evidence of the hack. Ubisoft , the popular video game publisher, is examining reports of a potential data breach following the disclosure of evidence by prominent researchers vx-underground.

Data breaches 138

Data breaches Hacking Mobile Ransomware 138

Security Affairs

MAY 13, 2020

Magellan Health Inc announced it was the victim of a ransomware attack that took place on April 11, 2020, the company also confirmed that hackers have stolen personal information from one of its corporate servers. ” reads the data breach notice issued by the company. SecurityAffairs – Magellan, hacking).

Data breaches 144

Data breaches Healthcare Ransomware Identity Theft 144

Security Affairs

OCTOBER 27, 2020

Immigration law firm Fragomen has disclosed a data breach that exposed current and former Google employees’ personal information. Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP, one of the most prominent US law firms covering immigration law, disclosed a data breach. Pierluigi Paganini.

Data breaches 136

Data breaches Identity Theft Advertising Insurance 136

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware.

Hacking 359

Hacking Ransomware Banking Accountability 359

Security Affairs

JANUARY 4, 2021

At-home laboratory services provider Apex Laboratory discloses a ransomware attack and consequent data breach. The at-home laboratory services provider Apex Laboratory disclosed a ransomware attack, the hackers also stole some patient in the incident that took place on July 25, 2020. SecurityAffairs – hacking, Apex Laboratory).

Data breaches 137

Data breaches Ransomware Cyber Attacks Encryption 137

Security Affairs

OCTOBER 10, 2020

Carnival Corporation, the world’s largest cruise line operator, has confirmed a data breach as a result of the august ransomware attack. Carnival Corporation, the world’s largest cruise line operator, has confirmed a data breach as a result of the ransomware attack that took place in August.

Data breaches 144

Data breaches Ransomware Advertising Technology 144