Krebs on Security

AUGUST 15, 2024

A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. Many media outlets mistakenly reported that the National Public data breach affects 2.9

Hacking 342

Hacking Data breaches Identity Theft Accountability 342

Bleeping Computer

JUNE 25, 2024

Luxury retailer Neiman Marcus confirmed it suffered a data breach after hackers attempted to sell the company's database stolen in recent Snowflake data theft attacks. [.]

Data breaches 80

Data breaches Retail Accountability Hacking 80

Security Affairs

OCTOBER 8, 2024

MoneyGram disclosed a data breach following a cyberattack in September, during which threat actors stole customer data. ” reads the notice of data breach published by MoneyGram. MoneyGram holds a huge trove of sensitive customer data, for this reason, it is a prime target for cyber criminals.

Data breaches 126

Data breaches Government Banking Hacking 126

Security Affairs

SEPTEMBER 6, 2024

Car rental giant Avis disclosed a data breach that impacted one of its business applications in August compromising customers’ personal information. Car rental company Avis notified customers impacted in an Augus data breach. ” reads the data breach notification letter sent to the impacted individuals.

Data breaches 130

Data breaches Identity Theft Cybersecurity Hacking 130

Bleeping Computer

MARCH 11, 2024

Roku has disclosed a data breach impacting over 15,000 customers after hacked accounts were used to make fraudulent purchases of hardware and streaming subscriptions. [.]

Accountability 140

Accountability Hacking Data breaches 140

Krebs on Security

DECEMBER 2, 2020

For at least the third time in its existence, OGUsers — a forum overrun with people looking to buy, sell and trade access to compromised social media accounts — has been hacked. An offer by the apparent hackers of OGUsers, offering to remove account information from the eventual database leak in exchange for payment.

Accountability 316

Accountability Hacking Scams Media 316

Security Affairs

JANUARY 7, 2022

The appointment scheduling service FlexBooker discloses a data breach that impacted over 3.7 million accounts. Threat actors compromised the FlexBooker accounts of more than 3.7 Stolen data are now available for sale on multiple cybercrime forums. million accounts. million accounts. The post Over 3.7

Data breaches 145

Data breaches Accountability Passwords Cybercrime 145

Bleeping Computer

JANUARY 19, 2023

T-Mobile disclosed a new data breach after a threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts through one of its Application Programming Interfaces (APIs). [.]

Data breaches 140

Data breaches Mobile Accountability Hacking 140

Security Affairs

AUGUST 17, 2024

Background check service National Public Data confirms a data breach that exploded millions of social security numbers and other sensitive information. “There appears to have been a data security incident that may have involved some of your personal information. ” reads the statement published by the company.

Data breaches 142

Data breaches Hacking Accountability Cybersecurity 142

Security Affairs

JULY 4, 2024

Healthcare firm HealthEquity disclosed a data breach caused by a partner’s compromised account that exposed protected health information. Healthcare fintech firm HealthEquity disclosed a data breach after a partner’s compromised account was used to access its systems. million accounts.

Healthcare 123

Healthcare Data breaches Accountability Insurance 123

Security Affairs

MARCH 4, 2024

American Express warns customers that their credit cards were exposed due to a data breach experienced by a third-party merchant processor. American Express (Amex) notifies customers that their credit card information has been compromised in a data breach involving a third-party merchant processor.

Data breaches 135

Data breaches Accountability Hacking Mobile 135

Security Affairs

OCTOBER 14, 2024

Game Freak has been hacked. pic.twitter.com/WIZjyuwYuY — Centro LEAKS (@CentroLeaks) October 12, 2024 The Tokyo-based developer confirmed that threat actors had access to the company’s systems and allegedly stole a huge trove of data. The Japanese video game giant Nintendo admitted that threat actors breached 300,000 accounts.

Data breaches 121

Data breaches Hacking Cyber Attacks Media 121

Bleeping Computer

JUNE 11, 2024

Pure Storage, a leading provider of cloud storage systems and services, confirmed on Monday that attackers breached its Snowflake workspace and gained access to what the company describes as telemetry information [.]

Data breaches 115

Data breaches Accountability Hacking 115

Security Affairs

MAY 13, 2024

Firstmac Limited disclosed a data breach after the new Embargo extortion group leaked over 500GB of data allegedly stolen from the company. Firstmac Limited, one of the largest non-bank lenders in Australia, disclosed a data breach. The company is notifying the impacted customers. ” continues the notice.

Data breaches 129

Data breaches Cyber Attacks Identity Theft Banking 129

Security Affairs

SEPTEMBER 30, 2024

Community Clinic of Maui experienced a data breach impacting over 120,000 people following a LockBit ransomware attack. LockBit breached the Community Healthcare Clinic of Maui as they are still rebuilding from the devastating fire last year. .’ ” reads the notice of breach published by Malama.

Data breaches 135

Data breaches Ransomware Healthcare Identity Theft 135

Security Affairs

JULY 7, 2024

Alabama’s education superintendent disclosed a data breach following a hacking attempt on the Alabama State Department of Education. The Alabama State Department of Education announced it had thwarted a ransomware attack on June 17, however, threat actors accessed some data and disrupted services before the attack was stopped.

Education 139

Education Data breaches Banking Hacking 139

Security Affairs

JUNE 1, 2024

Ticketmaster owner Live Nation confirmed the Ticketmaster data breach that compromised the data of 560 million customers. ShinyHunters, the current administrator of BreachForums , recently claimed the hack of Ticketmaster and offered for sale 1.3 TB of data, including full details of 560 million customers, for $500,000.

Data breaches 138

Data breaches Hacking Accountability Risk 138

Bleeping Computer

MAY 12, 2023

Discord is notifying users of a data breach that occurred after the account of a third-party support agent was compromised. [.]

Data breaches 144

Data breaches Hacking Accountability 144

Security Affairs

NOVEMBER 1, 2020

A threat actor is offering for sale account databases containing an aggregate total of 34 million user records stolen from 17 companies. A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. SecurityAffairs – hacking, account databases).

Data breaches 145

Data breaches Accountability Advertising Passwords 145

Security Affairs

DECEMBER 23, 2023

Mobile virtual network operator Mint Mobile suffered a new data breach, threat actors had access to customers’ personal information. Mint Mobile experienced a recent data breach, exposing customers’ personal information to unauthorized access by threat actors.

Mobile 136

Mobile Data breaches Wireless Data collection 136

Security Affairs

JANUARY 10, 2024

The Healthcare services provider HMG Healthcare has disclosed a data breach that impacted 40 affiliated nursing facilities. In November 2023, the Healthcare services provider HMG Healthcare discovered a data breach that exposed personal health information related to residents and employees at HMG affiliated nursing facilities.

Data breaches 132

Data breaches Healthcare Hacking Accountability 132

Security Affairs

JULY 2, 2024

Fintech firms Wise and Affirm confirmed they were both impacted by the recent data breach suffered by Evolve Bank. Fintech companies Wise and Affirm have confirmed that they were both affected by the recent data breach at Evolve Bank. Evolve has not yet reveal which Wise data has been compromised by the security incident.

Data breaches 130

Data breaches Banking Retail Technology 130

Security Affairs

APRIL 29, 2024

Financial Business and Consumer Solutions (FBCS) suffered a data breach that exposed information 2 million individuals. Debt collection agency Financial Business and Consumer Solutions (FBCS) disclosed a data breach that may have impacted 1,955,385 individuals. ” reads the notice of data breach.

Data breaches 134

Data breaches Hacking Accountability Cybercrime 134

Security Affairs

OCTOBER 23, 2023

The City of Philadelphia discloses a data breach that resulted from a cyber attack that took place on May 24 and that compromised City email accounts. The incident was discovered on May 24, but further investigation revealed that threat actors have had access to the compromised email accounts at least since March 2023.

Data breaches 134

Data breaches Identity Theft Accountability Scams 134

Security Boulevard

MARCH 18, 2024

Criminals are using every technology tool at their disposal to hack into people’s accounts. The post Top 5 Data Breaches That Cost Millions appeared first on Wallarm. The post Top 5 Data Breaches That Cost Millions appeared first on Security Boulevard. The entire [.]

Data breaches 109

Data breaches Accountability Technology Hacking 109

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services 139

Financial Services Data breaches Identity Theft Banking 139

Security Affairs

JANUARY 6, 2024

Law firm Orrick, Herrington & Sutcliffe disclosed a data breach that took place in early 2023, which impacted roughly 600,000 individuals. The law firm Orrick, Herrington & Sutcliffe, disclosed a data breach that impacted 638,000 individuals. ” reads the data breach notification.

Data breaches 135

Data breaches Insurance Technology Hacking 135

Security Affairs

APRIL 15, 2024

Cisco Duo warns that a data breach involving one of its telephony suppliers exposed multifactor authentication (MFA) messages sent by the company via SMS and VOIP to its customers. The security breach occurred on April 1, 2024, the threat actors used a Provider employee’s credentials that illicitly obtained through a phishing attack.

Data breaches 140

Data breaches Social Engineering Engineering Authentication 140

Security Affairs

MAY 1, 2024

Panda Restaurant Group disclosed a data breach that occurred in March, resulting in the theft of associates’ personal information. Panda Restaurant Group disclosed a data breach that occurred in March, resulting in the theft of personal information belonging to its associates. Panda Restaurant Group , Inc.

Data breaches 135

Data breaches Identity Theft Hacking Accountability 135

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts.

Data breaches 98

Data breaches Mobile Accountability Telecommunications 98

Security Affairs

MAY 19, 2024

WebTPA, a third-party administrator that provides healthcare management and administrative services, disclosed a data breach. The US company disclosed a data breach that impacted almost 2.5 The exposed data may vary for each individual. million people. According to the report sent by the WebTPA to the U.S.

Data breaches 138

Data breaches Healthcare Insurance Identity Theft 138

SecureWorld News

AUGUST 15, 2024

In what could be one of the largest data breaches in history, personal information of potentially billions of individuals may have been compromised in a hack of National Public Data (NPD), a Florida-based background check company. The hackers initially offered this data for sale on the dark web for $3.5

Data breaches 106

Data breaches Identity Theft Password Management Data collection 106

Bleeping Computer

JUNE 21, 2024

The Los Angeles Unified School District has confirmed a data breach after threat actors stole student and employee data by breaching the company's Snowflake account. [.]

Accountability 105

Accountability Data breaches Hacking 105

Security Affairs

AUGUST 20, 2024

Toyota has confirmed a data breach after a threat actor leaked 240GB of data stolen from its infrastructure on a cybercrime forum. Toyota disclosed a data breach after a threat actor leaked an archive of 240GB of data stolen from its systems on a cybercrime forum, BleepingComputer reported.

Data breaches 118

Data breaches Cybercrime Financial Services Hacking 118

Security Affairs

MAY 16, 2024

The Spanish bank Santander disclosed a data breach at a third-party provider that impacted customers in Chile, Spain, and Uruguay. The Spanish financial institution Santander revealed a data breach involving a third-party provider that affected customers in Chile, Spain, and Uruguay. ” continues the statement.

Data breaches 138

Data breaches Banking Passwords Marketing 138

Troy Hunt

APRIL 12, 2021

This post has been brewing for a while, but the catalyst finally came after someone (I'll refer to him as Jimmy) recently emailed me regarding the LOQBOX data breach from 2020. The data never began circling within the usual hacking groups, it never turned up publicly and thus never appeared in Have I Been Pwned (HIBP).

Data breaches 345

Data breaches Phishing Scams Advertising 345

Security Affairs

AUGUST 3, 2020

Havenly, a Denver-Based company, that realized an interior designer marketplace has disclosed a data breach that impacted 1.3 The US-based interior design web site Havenly has disclosed a data breach after the known threat actor ShinyHunters has leaked for free the databases of multiple companies on a hacker forum.

Data breaches 135

Data breaches Accountability Passwords Advertising 135