Identity IQ

DECEMBER 20, 2023

2023: A Year of Record-Breaking Data Breaches IdentityIQ This past year has been an eye-opening year in the realm of digital security. Data breaches reached an all-time high, leaving a trail of identity theft cases. Protecting yourself from the damages of data breaches and identity theft is paramount.

Data breaches 90

Data breaches Identity Theft Cybercrime Social Engineering 90

CyberSecurity Insiders

MAY 23, 2023

It is customary for the ransomware spreading hackers to take control of the systems and encrypt them until a ransom is paid. Located in Western Virginia, Bluefield University, a private Baptist educational institute was the unfortunate victim of this file encrypting malware attack on April 30th,2023.

Ransomware 123

Ransomware Identity Theft Education Wireless 123

Malwarebytes

JANUARY 15, 2024

In November 2023, real estate services company Fidelity National Financial (FNF) got its systems knocked offline for a week after a cyberincident. As is often the case these days, it turns out that the cyberincident was very likely a ransomware attack that included a data breach. Unfortunately the gang did re-appear soon after.

Data breaches 135

Data breaches Identity Theft Passwords Ransomware 135

Security Affairs

SEPTEMBER 30, 2024

Community Clinic of Maui experienced a data breach impacting over 120,000 people following a LockBit ransomware attack. In June, the Lockbit ransomware gang took credit for the attack. ’ The Community Clinic of Maui now discloses a data breach impacting 123882 people following the LockBit ransomware attack.

Data breaches 140

Data breaches Ransomware Healthcare Identity Theft 140

CyberSecurity Insiders

JANUARY 10, 2023

this tumultuous climate, it’s a safe bet to say that 2023 will be a year in which cybersecurity remains top of mind. Customer networks will become increasingly complex in 2023 as companies continue to move their critical assets to the cloud environment. In 2023, Microsoft Active Directory (AD) will continue to be a major risk.

Cybersecurity 108

Cybersecurity Identity Theft Digital transformation Cyber Insurance 108

Security Affairs

JUNE 29, 2024

Infosys McCamish Systems (IMS) revealed that the 2023 data breach following the LockBit ransomware attack impacted 6 million individuals. At the time, the company did not reveal the type of attack it suffered, however, on November 4, the LockBit ransomware gang claimed responsibility for the attack.

Data breaches 110

Data breaches Identity Theft Insurance Ransomware 110

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. stole at least $800,000 from at least five victims between August 2022 and March 2023. 9, 2024, U.S. technology companies during the summer of 2022.

Social Engineering 340

Social Engineering Mobile Passwords Cybercrime 340

The Last Watchdog

SEPTEMBER 24, 2024

The breach was initially caused by a third-party malicious actor who infiltrated NPD’s systems in December 2023. This drives public awareness of the risks associated with identity theft. Related: Class-action lawsuits pile up in wake of NPD hack So what’s the connection? NPD reported the exposure of over 2.7 billion records.

Authentication 215

Authentication Identity Theft Banking Data breaches 215

Security Affairs

NOVEMBER 10, 2023

The company became aware of anomalous activity on or about August 22, 2023, and immediately launched an investigation with the help of third-party forensic experts. The investigation revealed that threat actors gained unauthorized access to McLaren’s network between July 28, 2023, and August 23, 2023.

Data breaches 141

Data breaches Identity Theft Insurance Ransomware 141

Malwarebytes

SEPTEMBER 25, 2023

BORN—an Ontario perinatal and child registry that collects, interprets, shares, and protects critical data about pregnancy, birth, and childhood—says it was attacked on May 31, 2023. This vulnerability was exploited by a ransomware gang known as Cl0p, before Progress was even aware a vulnerability existed.

Identity Theft 129

Identity Theft Data breaches Ransomware Healthcare 129

Security Affairs

FEBRUARY 13, 2024

The bank has sent notification letters to 57,000 customers, informing them that their personal information has been compromised Infosys disclosed the security breach on November 3, 2023, in a filing with SEC the company reported it was the victim of a cyberattack that resulted in the non-availability of certain applications and systems.

Data breaches 142

Data breaches Banking Identity Theft Ransomware 142

SecureWorld News

JANUARY 5, 2024

Ransomware continues to pose an alarming threat to critical infrastructure, with the healthcare sector being particularly vulnerable to its devastating effects. In 2023, the United States witnessed a surge in ransomware attacks, with 46 hospital systems comprising 141 hospitals directly impacted.

Healthcare 108

Healthcare Ransomware Computers and Electronics Identity Theft 108

Malwarebytes

NOVEMBER 13, 2023

This vulnerability is known to be used by the Cl0p ransomware gang. Progress Software, who make MOVEit Transfer, issued a patch for the exploited vulnerability on May 31, 2023. However, the State of Maine says the cybercriminals gained access and started downloading files between May 28 and 29, 2023, before the patch was available.

Data breaches 136

Data breaches Identity Theft Insurance Education 136

Security Affairs

JULY 19, 2024

million individuals was exposed in a ransomware attack on Australian digital prescription services provider MediSecure. In May, the company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack. Personal and health information of 12.9 million individuals.

Data breaches 138

Data breaches Unstructured Data Healthcare Identity Theft 138

Security Affairs

AUGUST 31, 2023

On March 20, 2023, the fashion retailer Forever 21 has discovered a cyber incident that impacted a limited number of systems. The investigation revealed that threat actors had access to certain Forever 21 systems at various times between January 5, 2023 and March 21, 2023.

Retail 142

Retail Data breaches Identity Theft Banking 142

SecureWorld News

NOVEMBER 22, 2024

Scattered Spider has gained infamy for its high-profile cyberattacks, including the ransomware assault on MGM Casino in 2023 , which caused widespread disruption. Known for targeting employee credentials through phishing schemes, the group uses stolen access to infiltrate systems, extract sensitive data, and deploy ransomware.

Phishing 87

Phishing Identity Theft Cryptocurrency Cybercrime 87

Security Affairs

JANUARY 26, 2024

Dunaev pleaded guilty on November 30, 2023, he admitted to conspiring to engage in computer fraud and identity theft, as well as conspiring to commit wire fraud and bank fraud. million via ransomware deployed by Trickbot.” million via ransomware deployed by Trickbot.”

Malware 140

Malware Identity Theft Banking Ransomware 140

Security Affairs

MAY 29, 2023

According to the notification filed with the Office of the Maine Attorney General, the company discovered unauthorized access to its computer systems on March 6th, 2023, and immediately launched an investigation into the incident. “On March 6, 2023, MCNA became aware that an unauthorized party was able to access certain MCNA systems.

Ransomware 98

Ransomware Insurance Data breaches Identity Theft 98

Security Affairs

AUGUST 14, 2024

Kootenai Health suffered a data breach impacting over 464,000 patients following a 3AM ransomware attack. Kootenai Health disclosed a data breach impacting over 464,088 patients following the leak of their personal information by the ThreeAM (3AM) ransomware gang. 3AM is a brand new ransomware written in Rust.

Data breaches 136

Data breaches Identity Theft Encryption Ransomware 136

Security Affairs

MAY 11, 2024

“On or about December 24, 2023, the Ohio Lottery detected unauthorized access to our internal office network as a result of a cybersecurity incident that resulted in the exposure of the data we maintain. The DragonForce ransomware group claimed responsibility for the attack and the theft of 94GB of data.

Data breaches 133

Data breaches Identity Theft Cybercrime Cyber Attacks 133

Webroot

JANUARY 4, 2023

If the beginning of the new year follows the trends of the last, there’s a good chance phishing will spike in the first four months of 2023. Start 2023 off right with comprehensive device and identity protection. To learn more, visit Webroot Premium with Allstate Identity Protection. Product may be updated or modified.

Identity Theft 93

Identity Theft Insurance Password Management Phishing 93

Security Affairs

MAY 22, 2023

Satellite TV giant Dish Network disclosed a data breach after the February ransomware attack and started notifying impacted individuals. The American satellite broadcast provider Dish Network went offline on February 24, 2023 , the outage impacted Dish.com, Dish Anywhere app, and many other services owned by the company.

Ransomware 98

Ransomware Data breaches Identity Theft Backups 98

Malwarebytes

APRIL 12, 2023

"We are writing to provide you with information about a cybersecurity incident involving your personal information that occurred mid-January 2023," says the breach notice. The notice revealed that employee names, driver's license numbers, and other ID card numbers are among the data that ransomware attackers took. Detect intrusions.

Ransomware 98

Ransomware Identity Theft Backups Malware 98

Security Affairs

FEBRUARY 4, 2024

Ransomware Revenue Down As More Victims Refuse to Pay Energy giant Schneider Electric hit by Cactus ransomware attack Hundreds Of Network Operators’ Credentials Found Circulating In Dark Web Fla.

Identity Theft 131

Identity Theft VPN Malware Ransomware 131

Malwarebytes

JULY 24, 2023

The Tampa General Hospital (TGH) has promised to reach out to individuals whose information has been stolen by a ransomware group. In a cybersecurity notice, TGH said it noticed unusual activity on its computer systems on May 31, 2023. The Snatch ransomware added itself as a service which ran in safe mode.

Ransomware 98

Ransomware Computers and Electronics Passwords Identity Theft 98

Security Affairs

DECEMBER 11, 2023

On November 17, 2023, the Medusa ransomware gang claimed responsibility for the attack and threatened to leak the purportedly stolen data if the company doesn’t pay the ransom. Impacted customers are at risk on fraudulent activities, including identity theft and financial fraud.

Financial Services 143

Financial Services Data breaches Identity Theft Banking 143

Malwarebytes

MARCH 25, 2024

On December 13, 2023, Vans said it detected unauthorized activities on its IT systems, attributed to “external threat actors.” The data incident turned out to be a ransomware attack. The attack was claimed by the ALPHV/BlackCat ransomware group. million individual consumers. Check the vendor’s advice.

Data breaches 140

Data breaches Phishing Identity Theft Passwords 140

Malwarebytes

DECEMBER 12, 2023

Healthcare company Norton says a May breach led to the theft of data of around 2.5 In a filing with Maine’s attorney general on Friday, Norton said that on May 9, 2023, it discovered an “external system breach.” Our podcast host David Ruiz talked to ransomware expert Allan Liska about the why of the SEC complaint.

Healthcare 137

Healthcare Identity Theft Passwords Data breaches 137

SecureWorld News

NOVEMBER 13, 2024

The MOVEit vulnerability (CVE-2023-34362), first exploited in May 2023, allowed unauthenticated attackers to gain unauthorized access to vulnerable systems. The MOVEit data theft and extortion attacks in May 2023 impacted a significant number of individuals and organizations globally. Public advisories: The U.S.

Data breaches 109

Data breaches Identity Theft Education Software 109

Security Affairs

APRIL 1, 2023

The LockBit ransomware gang announced the publishing of data stolen from the South Korean National Tax Service. On March 29, 2023, The Lock Bit ransomware gang announced the hack of the South Korean National Tax Service.

Identity Theft 98

Identity Theft Ransomware Scams Education 98

Security Affairs

AUGUST 14, 2023

“While HCPF confirmed that no other HCPF systems or databases were impacted, on June 13, 2023, the investigation identified that certain HCPF files on the MOVEit application used by IBM were accessed by the unauthorized actor on or about May 28, 2023. state of Colorado. CDHE did not disclose the number of impacted individuals.

Identity Theft 98

Identity Theft Data breaches Ransomware Education 98

Security Affairs

JUNE 12, 2023

The Clop ransomware group has stolen stole personal and health information of 489,830 individuals as a result of a ransomware attack on the technology firm Intellihartx. The attack took place earlier this year, the attackers have exploited the GoAnywhere zero-day vulnerability tracked as CVE-2023-0669.

Data breaches 98

Data breaches Identity Theft Ransomware Data privacy 98

Malwarebytes

DECEMBER 19, 2023

A month ago, in November 2023, the company stated that the number of affected customers was limited to around 4 million, because banking information related to mortgage payments is hosted with a third-party provider, whose systems were believed not to be compromised. million homeowners may be affected by the data breach.

Data breaches 139

Data breaches Identity Theft Passwords Phishing 139

Security Affairs

FEBRUARY 11, 2024

Now Cybersecurity expert says the next generation of identity theft is here: ‘Identity hijacking’ Were 3 Million Toothbrushes Really Used for a DDoS Attack? Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Spyware 133

Spyware Surveillance DDOS Identity Theft 133

The Last Watchdog

JANUARY 3, 2023

At the start of 2023, consumers remain out in the cold when it comes to online protection. It can cost a company millions of dollars, or lead to individual identity theft and invasion of privacy. Related: Leveraging employees as human sensors. Cybercriminals often target the young.

Risk 203

Risk Cybersecurity Antivirus Phishing 203

Security Affairs

JULY 19, 2024

million individuals was exposed in a ransomware attack on Australian digital prescription services provider MediSecure. In May, the company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack. Personal and health information of 12.9 million individuals.

Data breaches 98

Data breaches Unstructured Data Healthcare Identity Theft 98

SecureWorld News

AUGUST 29, 2024

The breach, detailed in the notification , occurred due to a hack on the MOVEit file transfer software more than a year ago—on May 29, 2023—which was only discovered on July 30th. Groups including the infamous Cl0p ransomware group quickly took advantage of this Zero-Day opportunity to exploit targets of interest for high payouts.

Data breaches 91

Data breaches Identity Theft Risk Ransomware 91