Security Affairs

MARCH 4, 2024

“Account information of some of our Card Members, including some of your account information, may have been involved. ” The security breach occurred at a service provider that lets customers book flights, hotels and other reservations using an online portal. .”

Data breaches 135

Data breaches Accountability Hacking Mobile 135

Security Affairs

FEBRUARY 7, 2021

The website, and publisher of books, courses and articles for web developers, SitePoint discloses a data breach that impacted 1M users. SitePoint is an Australian-based website, and publisher of books, courses and articles for web developers. The company has disclosed a data breach and notified its users via email.

Data breaches 131

Data breaches Passwords Cybercrime Accountability 131

Security Affairs

DECEMBER 21, 2023

The database included the personally identifiable information of Blink Mobility customers and administrators, including: Phone number Email address Encrypted password Registration date Device info and device token Details on subscription and rented vehicles (license plate, VIN, booking start and end location, etc.)

Mobile 134

Mobile Identity Theft Passwords Phishing 134

Security Affairs

NOVEMBER 22, 2019

Security experts from vpnMentor discovered that Gekko Group, an AccorHotels subsidiary, exposes hotels and travelers in a massive data leak. Gekko Group is a leading European B2B hotel booking platform that also owns smaller hospitality brands, including Teldar Travel & Infinite Hotel. of guests, room types, etc.),

B2B 115

B2B Advertising Accountability Passwords 115

Security Affairs

MARCH 20, 2024

The Pokemon Company announced it had reset the passwords for some accounts after it had detected hacking attempts, Techcrunch first reported. Then, they enter those accounts for the purpose of abusing permissions, siphoning out data, or both. of the the targeted accounts were compromised. The account system was not compromised.

Passwords 131

Passwords Accountability Authentication Hacking 131

Security Affairs

SEPTEMBER 18, 2024

Why and how to protect ourselves Once the credentials are stolen, hackers can use them to access various online accounts, including banking, e-mail, and social media accounts. Regularly update software: Keep your operating system and all applications updated to fix any security vulnerabilities.

Passwords 126

Passwords Identity Theft Education Authentication 126

Cisco Security

OCTOBER 7, 2022

By understanding the tools and methods used by those with ill intent, you’ll be better prepared to keep yourself safe and your information secure. RESTRICT: Next, you’ll tackle the shortlist of accounts and services you use actively or rely on. So let’s clear the clutter and delete these accounts you no longer need.

Media 142

Media Identity Theft Accountability Internet 142

Security Affairs

DECEMBER 16, 2020

These sites advertise account IDs for secure messaging apps such as KakaoTalk or Telegram that could allow to communicate with the escorts. In reality, the victims communicated with Goontact operators that attempt to trick them into installing (or sideload) a mobile application that steals the victim’s address book.

Spyware 143

Spyware Mobile Surveillance Malware 143

Security Affairs

JANUARY 4, 2022

Stolen employees’ data potentially included names, addresses, telephone numbers, email addresses, dates of birth, race, ethnicity, gender, disability status, medical notes, performance and disciplinary notes, Social Security numbers, health insurance plan elections, income amounts, and retirement contribution amounts.

Data breaches 127

Data breaches Ransomware Insurance Banking 127

CyberSecurity Insiders

JANUARY 30, 2023

Details are in that the info belongs to all those customers who booked their orders on the platform from the past few years(say between Nov’18 to Oct’2020) and might include sensitive details of half of the affected consumers.

Data breaches 109

Data breaches Retail Identity Theft Social Engineering 109

Security Affairs

JULY 27, 2024

“This is an opportune moment to fully implement the Kremlin’s long-desired ‘import substitution’ in the form of wooden abacuses, paper savings books, and cave paintings for accounting.” Ukraine has launched a massive cyberattack against ATMs of Russian banks, the cyber operation began on July 23. reported the KyivPost.

Banking 145

Banking Mobile Hacking Internet 145

Security Affairs

FEBRUARY 22, 2024

barely and cannot afford to leave the camp, nor to operate his own bank account but only to survive miserably. “ Do you ensure that you do not run away with the money once it is received in your bank account? ”. “ The 419 scam is very widespread and dangerous, and can cause serious economic and psychological damage to victims.

Scams 134

Scams Banking Computers and Electronics Accountability 134

Security Affairs

JUNE 12, 2020

“One tool, a VBA macro targeting Microsoft Outlook, uses the target’s email account to send spearphishing emails to contacts in the victim’s Microsoft Office address book.” ” read the post published by ESET.

Malware 142

Malware Phishing Advertising Government 142

Security Affairs

MARCH 19, 2021

According to a report published by researchers at PrivacySavvy, many travel companies expose users’ data through their booking apps. In a report published on the 16 th of March by PrivacySavvy, many travel companies expose users’ data through their booking apps.

Data breaches 122

Data breaches Encryption Hacking Healthcare 122

Security Affairs

FEBRUARY 25, 2022

The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of an ongoing spear-phishing campaign targeting private email accounts belonging to Ukrainian armed forces personnel. Now Serhiy Demedyuk, deputy secretary of the national security and defence council, told Reuters, that the Ukrainian government blamed the UNC1151 APT group.

Phishing 121

Phishing Social Engineering Government Accountability 121

Security Affairs

JANUARY 22, 2024

“My slice”, the details of the Italian campaign Last year, a highly targeted phishing campaign that I renamed “My slice” (derived from the name of a variable in the javascript code of the landing page) targeted e-mail account holders of Italian organisations. This would prevent e-mails from being sent and received.

Phishing 134

Phishing Education Social Engineering Media 134

Security Affairs

MAY 6, 2023

Z-Library is the world’s largest illegal library and claims to offer more than 11 million e-books for download. The library has been active since 2009, it offers e-book files in a variety of file formats, stripped of their copyright protections. Z-Library operates as a complex network of approximately 249 interrelated web domains.

Accountability 98

Accountability Hacking Cybersecurity Cybercrime 98

Security Affairs

FEBRUARY 12, 2024

Public Wi-Fi users are prime targets for MITM attacks because the information they send is often not encrypted, meaning it’s easy for hackers to access your data. They might even lock you out of your own accounts by resetting your passwords. Once they’re in, they can grab your emails, usernames, passwords, and more.

DNS 143

DNS VPN Encryption Passwords 143

Security Affairs

JUNE 10, 2024

“England’s top doctor has today (Monday 10 June) backed calls from NHS Blood and Transplant (NHSBT) for O Positive and O Negative blood donors to urgently book appointments to donate in one of the 25 town and city centre NHS Blood Donor Centres in England , to boost stocks of O type blood following the cyber incident in London.

Ransomware 126

Ransomware Healthcare Cyber Attacks Hacking 126

Security Affairs

NOVEMBER 27, 2021

Italy’s antitrust regulator has fined both Apple and Google €10 million each for what it calls are “aggressive” data practices and not providing consumers with clear information on commercial uses of their personal data during the account creation phase. ” reads the press release published by the AGCM.

Data collection 112

Data collection Accountability Hacking Information Security 112

Security Affairs

JUNE 17, 2024

The term money mules refers to those individuals who are recruited by criminals to transfer illicit money through their bank accounts in exchange for a commission. He is also the author of the book “La Gestione della Cyber Security nella Pubblica Amministrazione”. Education improves awareness” is his slogan.

Scams 133

Scams Marketing Education Banking 133

Security Affairs

JUNE 15, 2024

England’s top doctor has today (Monday 10 June) backed calls from NHS Blood and Transplant (NHSBT) for O Positive and O Negative blood donors to urgently book appointments to donate in one of the 25 town and city centre NHS Blood Donor Centres in England , to boost stocks of O type blood following the cyber incident in London.”

Ransomware 145

Ransomware Healthcare Cyber Attacks Hacking 145

Security Affairs

DECEMBER 6, 2023

GST Invoice Billing Inventory, a business accounting app for small and medium businesses with over 1M downloads has left a database open, exposing sensitive personal and corporate data up for grabs. Essentially, Firebase is a JSON database that stores either public or private information about an application or its users.

Penetration Testing 136

Penetration Testing Accountability Ransomware Banking 136

CyberSecurity Insiders

JANUARY 6, 2023

First launched in 2004 and updated most recently in 2018, the PCI Data Security (PCI DSS) standard is continually updated to reflect the evolving challenges of the cyberthreat landscape. is clearly failing to protect cardholder account details effectively in today’s environment. Install and maintain network security controls.

Antivirus 138

Antivirus Retail Software Accountability 138

The Last Watchdog

JULY 29, 2021

As cloud migration has ramped up, it has become typical for enterprises to have dozens to hundreds of cloud accounts, thousands of cloud data stores and tens of thousands of people and non-people identities under their purview. It was more like incredibly complex, nuanced changes seeped in.”. Visualizing dependencies.

Risk 214

Risk Cloud Migration Digital transformation Software 214

Security Affairs

DECEMBER 28, 2021

The service allows users to create personalized photo gifts such as smartphone cases, photo books, wall art, and home décor). Shutterfly , is American photography, photography products, and image sharing company that owns multiple brands such as BorrowLenses, GrooveBook, Lifetouch, Shutterfly, Snapfish, Spoonflower, and Tiny Prints.

Ransomware 116

Ransomware Manufacturing Encryption Hacking 116

SC Magazine

FEBRUARY 19, 2021

Microsoft closed the book on the SolarWinds investigation. The probe also found no evidence of access to Microsoft’s production services or customer data, according to a blog post penned by Vasu Jakkal, Microsoft corporate vice president of security, compliance and identity. Microsoft).

Authentication 90

Authentication Architecture Threat Detection Accountability 90

Security Affairs

JUNE 10, 2021

Overall, fraud accounts for 73% of all online attacks: 56% are scams (fraud that results in the victim voluntarily disclosing sensitive data) and 17% are phishing attacks (theft of bank card details). Insurance companies around the world are now suffering from phishing.

Scams 130

Scams Banking Retail Insurance 130

Security Affairs

APRIL 12, 2023

Hyundai disclosed a data breach that impacted Italian and French car owners and clients who booked a test drive. Hyundai has suffered a data breach that impacted Italian and French car owners and customers who booked a test drive.

Data breaches 98

Data breaches Media Manufacturing Education 98

CyberSecurity Insiders

JUNE 2, 2021

The Certified Information Systems Security Professional (CISSP) certification is considered to be the gold standard in information security. Those doors lead to many different types of positions and opportunities, thus making the information security community dynamic and multifaceted. There are many.

Government 93

Government Cybersecurity Authentication Technology 93

Security Affairs

SEPTEMBER 15, 2023

Read Phone State and Identity: This permission allows apps to access device information, including the phone number and unique device ID. Malicious apps could use this data for tracking or unauthorized account access. These can include Google, email, and other accounts set up on the device.

Accountability 131

Accountability Mobile Surveillance Information Security 131

Security Affairs

SEPTEMBER 3, 2022

users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches 97

Data breaches Malware Ransomware Surveillance 97

Security Affairs

OCTOBER 12, 2023

Posteinfo, confirm your identity Using spoofing techniques, a text message ostensibly from Posteinfo collected in the history of legitimate messages invites identity confirmation to avoid bank account suspension. He is also the author of the book “La Gestione della Cyber Security nella Pubblica Amministrazione”.

Phishing 136

Phishing Scams Education Passwords 136

Security Affairs

SEPTEMBER 8, 2019

Malspam campaign bypasses secure email gateway using Google Docs. Flight booking platform Option Way exposes customer and internal data. One million cracked Poshmark accounts being sold online. Cisco addresses CVE-2019-12643 critical flaw in virtual Service Container for IOS XE. Crooks stole €1.5

IoT 102

IoT Data breaches Advertising DNS 102

Security Affairs

FEBRUARY 20, 2023

Consider the impact of a voice phishing attack that replicates the voices of a company’s stakeholders to persuade employees to take a series of actions that could harm security and privacy, or the effectiveness of a phone call with simulated voices for the purpose of convincing an employee to send funds to an offshore bank account.

Social Engineering 98

Social Engineering Engineering Artificial Intelligence Computers and Electronics 98

Security Affairs

DECEMBER 30, 2022

WP Quick Booking Manager. The researchers noticed that both trojan variants contain unimplemented functionality for hacking the administrator accounts of WordPress websites through a brute-force attack using special dictionaries. WP GDPR Compliance Plugin. Newspaper Theme on WordPress Access Control (vulnerability CVE-2016-10972).

Malware 98

Malware Hacking Accountability Phishing 98

Security Affairs

MARCH 8, 2021

Early this month, Microsoft has released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported Microsoft Exchange versions that are actively exploited in the wild. reads the advisory published by Microsoft.

Authentication 119

Authentication Malware Accountability Hacking 119