Security Affairs

APRIL 7, 2025

Noah Urban, a 20-year-old from Palm Coast, pleaded guilty to conspiracy, wire fraud, and identity theft in two federal cases, one in Florida and another in California. “In the Florida case, Urban was accused of stealing at least $800,000 in cryptocurrency from five different victims between August 2022 and March 2023.”

Cybercrime 65

Cybercrime Identity Theft Social Engineering Hacking 65

Security Affairs

SEPTEMBER 9, 2024

According to the data breach notification sent to the impacted individuals, threat actors had access to its systems between August 17, 2023, and June 15, 2024. The investigation identified unauthorized system access between August 17, 2023, and June 15, 2024. The company processes payments for merchants in the US and Canada.

Data breaches 141

Data breaches Identity Theft Computers and Electronics Social Engineering 141

Security Affairs

FEBRUARY 7, 2025

The cyberattack on Hospital Sisters Health System in 2023 compromised the personal information of 883,000 individuals. The cyberattack that hit the infrastructure of the Hospital Sisters Health System (HSHS) in August 2023 impacted the personal information of 882,782 individuals.

Data breaches 73

Data breaches Identity Theft Healthcare Insurance 73

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 million people. said investigators determined the breach began on Aug. Who is Rescator?

Identity Theft 290

Identity Theft Banking Cybercrime Hacking 290

Security Affairs

MAY 14, 2024

The Singing River Health System revealed that the ransomware attack that hit the organization in August 2023 impacted 895,204 people. At the end of August 2023, the systems at three hospitals and other medical facilities operated by Singing River Health System (SRHS) were hit by a Rhysida ransomware attack.

Identity Theft 130

Identity Theft Ransomware Data breaches Insurance 130

Security Affairs

NOVEMBER 23, 2023

AutoZone disclosed a data breach resulting from the hack of their MOVEit Transfer installation. The car parts giant is notifying 184,995 individuals that the massive MOVEit hacking campaign compromised their personal information. ” reads the Notice Letter published by the Main Attorney General. million Genworth 2.5 million “U.S.

Data breaches 131

Data breaches Hacking Retail Identity Theft 131

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Security Affairs

MAY 1, 2023

T-Mobile disclosed the second data breach of 2023, threat actors had access to the personal information of hundreds of customers since February. T-Mobile suffered the second data breach of 2023, threat actors had access to the personal information of hundreds of customers starting in late February 2023.

Data breaches 98

Data breaches Mobile Identity Theft Accountability 98

Security Affairs

APRIL 4, 2024

According to the notification letter sent to the impacted individuals, the security breach occurred between July 7, 2023 and October 15, 2023 and was discovered on March 25, 2024. “While there is no indication of any identity theft or fraud occurring as a result of this incident. The investigation remains ongoing.”

Data breaches 125

Data breaches Identity Theft Insurance Banking 125

The Last Watchdog

SEPTEMBER 24, 2024

Related: Class-action lawsuits pile up in wake of NPD hack So what’s the connection? The breach was initially caused by a third-party malicious actor who infiltrated NPD’s systems in December 2023. This drives public awareness of the risks associated with identity theft. NPD reported the exposure of over 2.7

Authentication 216

Authentication Identity Theft Banking Data breaches 216

The Last Watchdog

JULY 10, 2023

36% of respondents have been the victim of data loss, identity theft or digital fraud. •41% When asked if they have ever been a victim of data loss, identity theft or hacks related to a smart home device, 41% of US respondents said Yes.

Identity Theft 189

Identity Theft IoT Banking Internet 189

Security Affairs

JUNE 29, 2024

Infosys McCamish Systems (IMS) revealed that the 2023 data breach following the LockBit ransomware attack impacted 6 million individuals. The investigation determined that threat actors gained access to the company systems between October 29, 2023, and November 2, 2023. ” reads a press release published by the company.

Data breaches 107

Data breaches Identity Theft Insurance Ransomware 107

Security Affairs

NOVEMBER 10, 2023

The company became aware of anomalous activity on or about August 22, 2023, and immediately launched an investigation with the help of third-party forensic experts. The investigation revealed that threat actors gained unauthorized access to McLaren’s network between July 28, 2023, and August 23, 2023. million of their patients.

Data breaches 134

Data breaches Identity Theft Insurance Ransomware 134

Security Affairs

AUGUST 31, 2023

On March 20, 2023, the fashion retailer Forever 21 has discovered a cyber incident that impacted a limited number of systems. The investigation revealed that threat actors had access to certain Forever 21 systems at various times between January 5, 2023 and March 21, 2023.

Retail 137

Retail Data breaches Identity Theft Banking 137

Security Affairs

MAY 27, 2024

Prescription service company Sav-Rx disclosed a data breach after 2023 cyberattack. The investigation conducted by the company with the help of external cybersecurity experts revealed that threat actors first gained access to the IT System on or around October 3, 2023. million people in the United States.

Data breaches 132

Data breaches Identity Theft Insurance Technology 132

SecureWorld News

OCTOBER 26, 2023

20 said: "On May 24, 2023, the City initially became aware of suspicious activity in its email environment. However, to date, the investigation determined that between May 26, 2023 and July 28, 2023, an unauthorized actor may have gained access to certain City email accounts and certain information contained therein.

Hacking 104

Hacking Energy and Utilities Identity Theft Healthcare 104

Security Affairs

JULY 11, 2024

The ransomware attack that hit Dallas County in October 2023 has impacted more than 200,000 individuals exposing their personal information. In October 2023 the Play ransomware group hit Dallas County, Texas, and added the city to its Tor leak site claiming the theft of sensitive documents from multiple departments.

Ransomware 126

Ransomware Identity Theft Data breaches Insurance 126

Security Affairs

AUGUST 13, 2024

Knoot operated a “laptop farm” from July 2022 to August 2023, where he received laptops shipped to a fake identity, installed unauthorized software, and allowed North Korean workers in China to access U.S. His operations were raided in August 2023. whose identity was stolen.” company networks. to Knoot’s residences.

Identity Theft 124

Identity Theft Accountability Software Technology 124

Security Affairs

JANUARY 4, 2024

HEC discovered that an unknown actor gained access to some of its systems between July 14, 2023 and July 23, 2023, and copied some files. The healthcare firm began notifying impacted clients on October 26, 2023, and worked with them to notify potentially impacted individuals. ” concludes the notice. .

Data breaches 136

Data breaches Healthcare Artificial Intelligence Identity Theft 136

Security Affairs

OCTOBER 23, 2023

The incident was discovered on May 24, but further investigation revealed that threat actors have had access to the compromised email accounts at least since March 2023. “On May 24, 2023, the City initially became aware of suspicious activity in its email environment. ” reads the notice of incident published by the City.

Data breaches 132

Data breaches Identity Theft Accountability Scams 132

Security Affairs

NOVEMBER 12, 2023

The State of Maine was the victim of the large-scale hacking campaign that targeted organizations using the MOVEit file transfer tool. Threat actors exploited the zero-day vulnerability CVE-2023-34362 to hack the file transfer platform and steal the data of the organization. million individuals. million Genworth 2.5

Data breaches 139

Data breaches Insurance Identity Theft Education 139

Security Affairs

MAY 18, 2024

The operations coordinated by the North Korean government took place between October 2020 and October 2023. years in prison, including a mandatory minimum of two years in prison on the aggravated identity theft count. years in prison, including a mandatory minimum of two years for aggravated identity theft.

Identity Theft 136

Identity Theft Accountability Government Technology 136

Security Affairs

APRIL 8, 2024

The data breach occurred on May 30, 2023, and was discovered on February 7, 2024. “On May 30, 2023, we detected unusual activity on our internal network, and we promptly took steps to mitigate the incident. The company announced that it deleted DOJ data from its systems after the incident.

Data breaches 136

Data breaches Identity Theft Insurance Hacking 136

Security Affairs

MAY 11, 2024

“On or about December 24, 2023, the Ohio Lottery detected unauthorized access to our internal office network as a result of a cybersecurity incident that resulted in the exposure of the data we maintain. ” Ohio Lottery is providing impacted individuals free credit monitoring and identity theft protection services through IDX. .

Data breaches 123

Data breaches Identity Theft Cybercrime Cyber Attacks 123

Security Affairs

JULY 19, 2024

The incident impacted individuals who received services from MediSecure between March 2019 and November 2023. million Australians who used the MediSecure prescription delivery service during the approximate period of March 2019 to November 2023 are impacted by this Incident based on individuals’ healthcare identifiers. .”

Data breaches 130

Data breaches Unstructured Data Healthcare Identity Theft 130

Security Affairs

FEBRUARY 13, 2024

The bank has sent notification letters to 57,000 customers, informing them that their personal information has been compromised Infosys disclosed the security breach on November 3, 2023, in a filing with SEC the company reported it was the victim of a cyberattack that resulted in the non-availability of certain applications and systems.

Data breaches 136

Data breaches Banking Identity Theft Ransomware 136

Security Affairs

JANUARY 10, 2024

District Court in Seattle to three years in prison and more than $5 million in restitution for conspiracy to commit wire fraud and aggravated identity theft. Sebastien Raoult (also known as “Seyzo Kaizen”), is a French national that has been extradited from Morocco to the United States in January 2023. He sold hacked data.

Identity Theft 125

Identity Theft Hacking Cryptocurrency Advertising 125

Security Affairs

SEPTEMBER 30, 2024

Mālama has no evidence that any personal information has been or will be misused for identity theft as a direct result of this incident.” Unfortunately, the ransomware group claimed the hack of other hospitals in the same period. ” reads the notice of breach published by Malama.

Data breaches 133

Data breaches Ransomware Healthcare Cyber Attacks 133

Security Affairs

DECEMBER 11, 2023

On November 17, 2023, the Medusa ransomware gang claimed responsibility for the attack and threatened to leak the purportedly stolen data if the company doesn’t pay the ransom. Medusa Toyota set the deadline for November 26 and published a sample of the stolen data as proof of the hack.

Financial Services 138

Financial Services Data breaches Identity Theft Banking 138

CyberSecurity Insiders

MAY 23, 2023

Located in Western Virginia, Bluefield University, a private Baptist educational institute was the unfortunate victim of this file encrypting malware attack on April 30th,2023. Bluefield IT staff are confident that the hack did not result in any sort of financial fraud or identity theft yet.

Ransomware 123

Ransomware Identity Theft Education Wireless 123

Security Affairs

MARCH 14, 2024

The ransomware attack that hit the systems of Nissan Oceania in December 2023 impacted roughly 100,000 individuals. Nissan Oceania, the regional division of the multinational carmaker, announced in December 2023 that it had suffered a cyber attack and launched an investigation into the incident.

Data breaches 128

Data breaches Identity Theft Financial Services Cybercrime 128

Security Affairs

JUNE 12, 2023

The attack took place earlier this year, the attackers have exploited the GoAnywhere zero-day vulnerability tracked as CVE-2023-0669. On March 24, 2023, ITx completed its initial review of the logs provided to it by Fortra. ITx began notifying potentially affected data owners on April 11, 2023.”

Data breaches 98

Data breaches Identity Theft Ransomware Data privacy 98

Security Affairs

SEPTEMBER 4, 2023

The bad actors attributed to Chinese-speaking cybercriminals are leveraging a package tracking text scam sent via iMessage to collect personal (PII) and payment information from the victims with the goal of identity theft and credit card fraud. Further technical details are available in the report published by ReSecurity.

Identity Theft 128

Identity Theft Scams Banking Phishing 128

Security Affairs

NOVEMBER 19, 2023

Israeli man sentenced to 80 months in prison for providing hacker-for-hire services Russian APT Gamaredon uses USB worm LitterDrifter against Ukraine The board of directors of OpenAI fired Sam Altman Medusa ransomware gang claims the hack of Toyota Financial Services CISA adds Sophos Web Appliance bug to its Known Exploited Vulnerabilities catalog (..)

Data breaches 127

Data breaches Identity Theft Ransomware Hacking 127

SecureWorld News

AUGUST 29, 2024

The breach, detailed in the notification , occurred due to a hack on the MOVEit file transfer software more than a year ago—on May 29, 2023—which was only discovered on July 30th. The extended exposure of sensitive personal information—while victims remained unaware—significantly raises the risk of identity theft and financial fraud."

Data breaches 109

Data breaches Identity Theft Risk Ransomware 109

Security Affairs

JANUARY 26, 2024

Dunaev pleaded guilty on November 30, 2023, he admitted to conspiring to engage in computer fraud and identity theft, as well as conspiring to commit wire fraud and bank fraud. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Trickbot)

Malware 132

Malware Identity Theft Banking Ransomware 132

Security Affairs

APRIL 1, 2023

On March 29, 2023, The Lock Bit ransomware gang announced the hack of the South Korean National Tax Service. The group added the South Korean agency to its Tor leak site and announced the release of stolen data by April 1st, 2023 in case the ransom was not paid.

Identity Theft 98

Identity Theft Ransomware Scams Education 98