SecureWorld News

FEBRUARY 6, 2025

Grubhub recently confirmed a data breach stemming from a third-party vendor, exposing the ongoing risks associated with supply chain security. Mandate multi-factor authentication (MFA) Require MFA for all vendor accounts accessing critical systems.

Data breaches 87

Data breaches Accountability Social Engineering Passwords 87

Krebs on Security

OCTOBER 30, 2024

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. which suffered a data breach in 2015 affecting 78.8

Healthcare 294

Healthcare Insurance Computers and Electronics Data breaches 294

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Internet 128

Internet Internet Data breaches Authentication 128

Troy Hunt

SEPTEMBER 9, 2021

As technology has evolved, fingers (and palms and irises and faces) have increasingly been used as a means of biometric authentication. What happens if someone obtains, say, my fingerprint just like they may obtain my password in a data breach or a phishing attack? But doesn't this all make biometrics like passwords?

Authentication 335

Authentication Passwords Data breaches Risk 335

Tech Republic Security

SEPTEMBER 24, 2024

Implementing multi-factor authentication, supplier risk-management frameworks, and staff security training could help to reduce data breaches.

Data breaches 154

Data breaches Authentication Risk Cyber Attacks 154

Hacker's King

DECEMBER 28, 2024

Data breaches and account hacks are a growing concern for users, especially with the personal and professional information shared on the platform. If youre worried about your Instagram account being hacked , it's essential to take proactive steps to protect your data.

Data breaches 52

Data breaches Hacking Passwords Accountability 52

Malwarebytes

JUNE 1, 2024

Live Nation Entertainment has confirmed what everyone has been speculating on for the last week : Ticketmaster has suffered a data breach. For now, Ticketmaster users should keep an eye on their credit and bank accounts for an unauthorized transactions and follow our general data breach tips below.

Data breaches 145

Data breaches Passwords Phishing Password Management 145

The Last Watchdog

AUGUST 19, 2021

The attacker claims to have compromised an end-of-lifed GPRS system that was exposed to the internet and was able to pivot from it to the internal network, where they were able to launch a brute force authentication attack against internal systems. Most immediately is the ubiquity of 2-factor authentication.

Mobile 235

Mobile Data breaches Authentication Accountability 235

Security Boulevard

OCTOBER 10, 2024

A user authentication database was stolen from the nonprofit , which also was been beset by a series of DDoS attacks, and a pro-Palestinian threat group has taken credit for the attacks and the data breach. The post Internet Archive is Attacked and 31 Million Files Stolen appeared first on Security Boulevard.

Internet 115

Internet Internet DDOS Data breaches 115

The Last Watchdog

JULY 24, 2023

In fact, according to Verizon’s most recent data breach report, approximately 80 percent of all breaches are caused by phishing and stolen credentials. The next big thing is passwordless authentication. First and foremost, most solutions rely on connected devices like mobile phones to authenticate users.

Authentication 245

Authentication Passwords Phishing Social Engineering 245

Security Affairs

APRIL 15, 2024

Cisco Duo warns that a data breach involving one of its telephony suppliers exposed multifactor authentication (MFA) messages sent by the company via SMS and VOIP to its customers. ” reads the data breach notification send to the impacted individuals. date and time of the message, type of message, etc.).”

Data breaches 140

Data breaches Social Engineering Engineering Authentication 140

Malwarebytes

FEBRUARY 21, 2025

One of the most impactful data breaches last year was of Change HealthCare, which impacted an estimated 190 million people. HNFS denies all the allegations and maintains that no data breaches or loss of servicemember information occurred, but they still agreed to pay $11,253,400 to settle the allegations.

Healthcare 117

Healthcare Data breaches Passwords Phishing 117

Krebs on Security

JULY 12, 2024

disclosed today that a new data breach has exposed phone call and text message records for roughly 110 million people — nearly all of its customers. AT&T also acknowledged the customer records were exposed in a cloud database that was protected only by a username and password (no multi-factor authentication needed).

Data breaches 347

Data breaches Passwords Authentication Accountability 347

Malwarebytes

MARCH 25, 2024

Vans says there’s no evidence suggesting any actual impact on any individual consumer whose personal data were part of the affected data set, but it does warn about phishing and fraud attempts which could lead to identity theft. Enable two-factor authentication (2FA). Check the vendor’s advice.

Data breaches 134

Data breaches Phishing Identity Theft Passwords 134

Security Affairs

JUNE 19, 2024

. “We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.” ” Earlier this week IntelBroker announced on the BreachForums cybercrime forum that they were “selling the AMD.com data breach.”

Data breaches 138

Data breaches Firmware Cybercrime Media 138

Malwarebytes

NOVEMBER 4, 2024

In a data breach notification filed by the Attorney General for the state of Maine, the cybersecurity incident that affected Columbus, Ohio impacted half a million people. Because of the data breach notification from Maine’s Attorney General, that number now has a little more clarity. Check the vendor’s advice.

Data breaches 115

Data breaches Passwords Ransomware Phishing 115

Malwarebytes

JULY 19, 2024

The Identity Theft Resource Center (ITRC) tracked 1,041,312,601 data breach victims in Q2 2024, an increase of 1,170% over Q2 2023 (81,958,874 victims). Because both of these breaches were announced/updated in the second quarter of 2024 they have a huge impact on the numbers. Enable two-factor authentication (2FA).

Data breaches 127

Data breaches Passwords Identity Theft Phishing 127

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. In March 2024, more than 70,000,000 records from an unspecified division of AT&T were leaked onto Breached forum, vx-underground researchers reported.

Data breaches 144

Data breaches Telecommunications Cybercrime Hacking 144

Security Affairs

OCTOBER 4, 2023

Sony Interactive Entertainment has notified current and former employees and their family members about a data breach. Sony Interactive Entertainment (SIE) has notified current and former employees and their family members about a data breach that exposed their personal information.

Data breaches 145

Data breaches Ransomware Hacking Software 145

Security Affairs

MAY 13, 2024

Firstmac Limited disclosed a data breach after the new Embargo extortion group leaked over 500GB of data allegedly stolen from the company. Firstmac Limited, one of the largest non-bank lenders in Australia, disclosed a data breach. The company is notifying the impacted customers. ” continues the notice.

Data breaches 129

Data breaches Cyber Attacks Identity Theft Banking 129

Malwarebytes

OCTOBER 8, 2024

Money transfer company MoneyGram has notified its customers of a data breach in which it says certain customers had their personal information taken between September 20 and 22, 2024. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 123

Data breaches Passwords Identity Theft Phishing 123

Security Affairs

OCTOBER 26, 2023

On August 10, 2023, the Japanese maker of watches Seiko disclosed a data breach following a cyber attack. Seiko Group Corporation (hereinafter referred to as “the Company” or “we”) has confirmed that on July 28th of this year, the Company suffered a possible data breach.

Data breaches 143

Data breaches Ransomware Education Cybersecurity 143

Malwarebytes

AUGUST 27, 2024

The Texas Dow Employees Credit Union (TDECU) has filed a data breach notification , reporting that the data of 500,474 people has been accessed in an external system breach. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 119

Data breaches Passwords Phishing Password Management 119

Penetration Testing

APRIL 30, 2024

SonicWall has released a security patch for its Global Management System (GMS) software, addressing two vulnerabilities that could be exploited by attackers to gain unauthorized access to sensitive data (CVE-2024-29010) and bypass authentication mechanisms... The post SonicWall Patches GMS Flaws to Block Data Breaches and Bypass Attacks (..)

Data breaches 122

Data breaches Penetration Testing Authentication Software 122

Krebs on Security

JANUARY 7, 2025

Lookout researchers discovered multiple voice phishing groups were using a new phishing kit that closely mimicked the single sign-on pages for Okta and other authentication providers. Perm’s group and other crypto phishing gangs rely on a mix of homemade code and third-party data broker services to refine their target lists.

Phishing 338

Phishing Cryptocurrency Accountability Social Engineering 338

Security Affairs

APRIL 10, 2024

AT&T confirmed that the data breach impacted 51 million former and current customers and is notifying them. AT&T revealed that the recently disclosed data breach impacts more than 51 million former and current customers and is notifying them. ” reads the data breach notification.

Data breaches 127

Data breaches Telecommunications Identity Theft Hacking 127

The Last Watchdog

SEPTEMBER 24, 2024

As more personal data is collected, stored, and shared online, providers and their organizations must take proactive steps to safeguard this information from cyberattacks. This begs the question, did NPD have too much data? Did they understand the data they had, and why was it not properly protected?

Authentication 216

Authentication Identity Theft Banking Data breaches 216

Malwarebytes

APRIL 2, 2024

In particular, this information will make it easier for criminals to pose as AT&T, and all 73 million people affected by this breach will need to be on their guard for scammers using it as a pretext to send personalised, AT&T-branded emails and messages. Enable two-factor authentication (2FA). Check the vendor’s advice.

Data breaches 145

Data breaches Passwords Phishing Accountability 145

SecureWorld News

JULY 12, 2024

RELATED: Snowflake Data Breach Rocks Ticketmaster, Live Nation, and Others ] "Companies using Snowflake should immediately implement multi-factor authentication (MFA) to enhance security and protect sensitive data. Notifying affected customers: Transparency is crucial in the wake of a data breach.

Data breaches 120

Data breaches Passwords Authentication Artificial Intelligence 120

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals.

Data breaches 132

Data breaches Telecommunications Banking Mobile 132

Malwarebytes

FEBRUARY 14, 2025

Over the years Zacks has suffered a few data breaches. In 2023, data allegedly belonging to Zacks containing 8,615,098 records was leaked online. The most recent data in this database is from May 2020. This would be the 2nd (hacked back in 2020) major data breach for Zacks. Check the vendors advice.

Accountability 84

Accountability Data breaches Passwords Phishing 84

Malwarebytes

JULY 2, 2024

million people had been impacted by the resulting data breach. At first, Prudential said it believed only 36,000 people had had their data stolen, but that number has now been revised to 2.5 million in a new breach notification. Below are some general tips on what to do after you’ve fallen victim to a data breach.

Data breaches 119

Data breaches Identity Theft Passwords Phishing 119

eSecurity Planet

SEPTEMBER 5, 2024

This breach, orchestrated by a hacker known as “Satanic,” highlights the vulnerability of even seemingly secure online platforms. The leaked data, which includes names, email addresses, phone numbers, and location data, poses significant risks to the affected individuals. Subscribe The post Tracelo Data Breach: 1.4

Data breaches 115

Data breaches Identity Theft Data privacy Risk 115

Malwarebytes

JULY 12, 2024

Back in March, AT&T confirmed that 73 million people had been affected in a breach that people had been speculating about for some time. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 144

Data breaches Passwords Phishing Password Management 144

Krebs on Security

SEPTEMBER 13, 2023

Credentials stolen by info-stealers often end up for sale on cybercrime shops that peddle purloined passwords and authentication cookies (these logs also often show up in the malware scanning service VirusTotal ).

Cybercrime 338

Cybercrime Passwords Authentication Malware 338

Malwarebytes

SEPTEMBER 10, 2024

Customers are often unaware which payment provider is used by their online shops, so a data breach notice may come as a surprise to many of the 1,693,000 affected people. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 122

Data breaches Identity Theft Passwords Phishing 122

Malwarebytes

MARCH 5, 2024

Beware of scammers Scammers are always on the lookout for data breaches as it presents an opportunity for phishing. Data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach. Enable two-factor authentication (2FA). Check the vendor’s advice.

Data breaches 130

Data breaches Accountability Passwords Identity Theft 130