Security Affairs

AUGUST 20, 2024

Toyota has confirmed a data breach after a threat actor leaked 240GB of data stolen from its infrastructure on a cybercrime forum. Toyota disclosed a data breach after a threat actor leaked an archive of 240GB of data stolen from its systems on a cybercrime forum, BleepingComputer reported.

Data breaches 126

Data breaches Cybercrime Financial Services Hacking 126

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 250

Data breaches Government InfoSec Passwords 250

Security Affairs

SEPTEMBER 12, 2024

Fortinet disclosed a data breach after a threat actor claimed the theft of 440GB of files from the company’s Microsoft Sharepoint server. 440 GB of data available on my S3 bucket.” ” reads the announcement published by Fortibitch on a cybercrime forum. Guess what? Their Azure Sharepoint got leaked.

Data breaches 143

Data breaches Cybersecurity Cybercrime Hacking 143

Security Affairs

APRIL 2, 2024

Threat actors claimed the hack of the PandaBuy online shopping platform and leaked data belonging to more than 1.3 At least two threat actors claimed the hack of the PandaBuy online shopping platform and leaked data of more than 1.3 million customers on a cybercrime forum. million customers.

Data breaches 144

Data breaches Cybercrime Hacking Information Security 144

Krebs on Security

DECEMBER 16, 2020

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as a “killswitch” designed to turn the sprawling cybercrime operation against itself, KrebsOnSecurity has learned.

Hacking 361

Hacking Malware Software Cybercrime 361

Security Affairs

JULY 17, 2024

The world’s largest recreational boat and yacht retailer MarineMax, disclosed a data breach following a cyber attack. The world’s largest recreational boat and yacht retailer MarineMax disclosed a data breach that impacted over 123,000 individuals. ” reads a FORM 8-K filed with SEC.

Data breaches 137

Data breaches Retail Cyber Attacks Ransomware 137

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. co — first came online in February 2023.

Hacking 149

Hacking Cybercrime Advertising Data breaches 149

Security Affairs

NOVEMBER 11, 2024

Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks. Amazon disclosed a data breach that exposed employee information after data was allegedly stolen during the May 2023 MOVEit attacks. A threat actor using the handle Nam3L3ss leaked over 2.8

Data breaches 133

Data breaches Hacking Technology Ransomware 133

Security Affairs

JUNE 19, 2024

. “We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.” ” Earlier this week IntelBroker announced on the BreachForums cybercrime forum that they were “selling the AMD.com data breach.”

Data breaches 142

Data breaches Firmware Cybercrime Media 142

Security Affairs

MARCH 16, 2024

Unemployment agency France Travail (Pôle Emploi) recently suffered a data breach that could impact 43 million people. On August 2023, the French government employment agency Pôle emploi suffered a data breach and notified 10 million individuals impacted by the security breach.

Data breaches 143

Data breaches Cybercrime Government Ransomware 143

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. In their online statement about the hack (updated on Feb. ET: The ICRC just published an update to its FAQ on the breach.

Hacking 281

Hacking Ransomware Media Accountability 281

Security Affairs

OCTOBER 7, 2024

Universal Music Group notified hundreds of individuals about a data breach compromising their personal information. Universal Music Group is notifying 680 individuals about a data breach that compromised their personal information, including their Social Security number.

Data breaches 139

Data breaches Identity Theft Hacking Ransomware 139

Security Affairs

JULY 2, 2024

million individuals were affected by the data breach it suffered in February 2024. The insurance company Prudential Financial confirmed that the data breach it suffered in February 2024 affected over 2.5 Prudential Financial confirmed that more than 2.5 million individuals.

Data breaches 143

Data breaches Insurance Cyber Attacks Ransomware 143

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. In March 2024, more than 70,000,000 records from an unspecified division of AT&T were leaked onto Breached forum, vx-underground researchers reported.

Data breaches 145

Data breaches Telecommunications Cybercrime Hacking 145

Security Affairs

MAY 9, 2024

Cybersecurity firm Zscaler is investigating claims of a data breach after hackers offered access to its network. Cybersecurity firm Zscaler is investigating allegations of a data breach following reports that threat actors are offering for sale access to its network.

Data breaches 135

Data breaches Cybercrime Cryptocurrency Internet 135

Security Affairs

AUGUST 17, 2024

Background check service National Public Data confirms a data breach that exploded millions of social security numbers and other sensitive information. “There appears to have been a data security incident that may have involved some of your personal information. ” reads the statement published by the company.

Data breaches 144

Data breaches Hacking Accountability Cybersecurity 144

Krebs on Security

SEPTEMBER 13, 2023

The FBI responded by reverifying InfraGard members and by seizing the cybercrime forum where the data was being sold. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus , while promising to visit the same treatment on top U.S. But on Sept. But on Sept.

Cybercrime 323

Cybercrime Passwords Authentication Malware 323

Security Affairs

OCTOBER 18, 2024

Omni Family Health disclosed a data breach affecting nearly 470,000 current and former patients and employees. Omni Family Health is notifying nearly 470,000 individuals that their personal information was compromised in a data breach resulting from a cyberattack that occurred earlier this year.

Data breaches 143

Data breaches Healthcare Insurance Engineering 143

Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment.

Cybercrime 138

Cybercrime Data breaches Technology Banking 138

Security Affairs

JANUARY 23, 2024

Financial services company LoanDepot disclosed a data breach that impacted roughly 16.6 LoanDepot disclosed this week a data breach that impacted roughly 16.6 LoanDepot disclosed this week a data breach that impacted roughly 16.6 million individuals. million individuals. million individuals.

Data breaches 140

Data breaches Financial Services Ransomware Encryption 140

Security Affairs

JULY 13, 2024

The American drugstore chain Rite Aid Corporation disclosed a data breach following the cyber attack that hit the company in June. The American drugstore chain giant Rite Aid suffered a data breach following a cyberattack in June conducted by the RansomHub ransomware group. 148 in the Fortune 500 in 2022.

Data breaches 142

Data breaches Ransomware Hacking Insurance 142

Security Affairs

SEPTEMBER 6, 2024

Car rental giant Avis disclosed a data breach that impacted one of its business applications in August compromising customers’ personal information. Car rental company Avis notified customers impacted in an Augus data breach. ” reads the data breach notification letter sent to the impacted individuals.

Data breaches 137

Data breaches Identity Theft Cybersecurity Hacking 137

Security Affairs

APRIL 26, 2024

Media reported [ 1 , 2 ] that the company is notifying millions of current and former members of a data breach. In a notice filed with the US government, the integrated managed care consortium disclosed a data breach impacting 13.4 The exposed data included names, medical records, dates of service, and lab test results.

Data breaches 142

Data breaches Healthcare Advertising Mobile 142

Krebs on Security

MARCH 17, 2023

Federal Bureau of Investigation (FBI) this week arrested a New York man on suspicion of running BreachForums , a popular English-language cybercrime forum where some of the world biggest hacked databases routinely show up for sale. that suffered a data breach this month. In April 2022, U.S.

Data breaches 334

Data breaches Cybercrime Insurance Internet 334

Security Affairs

MARCH 4, 2024

American Express warns customers that their credit cards were exposed due to a data breach experienced by a third-party merchant processor. American Express (Amex) notifies customers that their credit card information has been compromised in a data breach involving a third-party merchant processor.

Data breaches 140

Data breaches Accountability Hacking Mobile 140

Security Affairs

OCTOBER 7, 2024

238,000 Comcast customers were impacted by the FBCS data breach following the February ransomware attack, Comcast reports. Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. reads the notice of data breach.

Data breaches 138

Data breaches Telecommunications Accountability Ransomware 138

Security Affairs

NOVEMBER 16, 2023

Samsung Electronics disclosed a data breach that exposed customer personal information to an unauthorized individual. Samsung Electronics suffered a data breach that exposed the personal information of some of its customers to an unauthorized individual. ” reads the data breach notification sent to the customers.

Data breaches 143

Data breaches eCommerce Hacking Passwords 143

Security Affairs

MAY 11, 2024

. “On or about December 24, 2023, the Ohio Lottery detected unauthorized access to our internal office network as a result of a cybersecurity incident that resulted in the exposure of the data we maintain. The incident did not impact the gaming network,” reads the notice of data breach sent to the impacted individuals.

Data breaches 133

Data breaches Identity Theft Cybercrime Cyber Attacks 133

Security Affairs

APRIL 8, 2024

Greylock McKinnon Associates, a service provider for the Department of Justice, suffered a data breach that exposed data of 341650 people. GMA disclosed a data breach that impacted medicare and other information belonging to 5465 people. ” reads the data breach notification.

Data breaches 142

Data breaches Identity Theft Insurance Hacking 142

Security Affairs

APRIL 29, 2024

Financial Business and Consumer Solutions (FBCS) suffered a data breach that exposed information 2 million individuals. Debt collection agency Financial Business and Consumer Solutions (FBCS) disclosed a data breach that may have impacted 1,955,385 individuals. ” reads the notice of data breach.

Data breaches 140

Data breaches Hacking Accountability Cybercrime 140

Krebs on Security

JULY 22, 2020

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. ” Twice in the past year, the OGUsers forum was hacked , and both times its database of usernames, email addresses and private messages was leaked online.

Hacking 299

Hacking Accountability Scams Media 299

Security Affairs

MAY 1, 2024

Panda Restaurant Group disclosed a data breach that occurred in March, resulting in the theft of associates’ personal information. Panda Restaurant Group disclosed a data breach that occurred in March, resulting in the theft of personal information belonging to its associates. Panda Restaurant Group , Inc.

Data breaches 140

Data breaches Identity Theft Hacking Accountability 140

Security Affairs

MAY 27, 2024

Prescription service firm Sav-Rx disclosed a data breach that potentially impacted over 2.8 Prescription service company Sav-Rx disclosed a data breach after 2023 cyberattack. The company is notifying 2,812,336 individuals impacted by the security breach in the United States. million people in the United States.

Data breaches 140

Data breaches Identity Theft Insurance Technology 140

Security Affairs

JUNE 1, 2024

Ticketmaster owner Live Nation confirmed the Ticketmaster data breach that compromised the data of 560 million customers. ShinyHunters, the current administrator of BreachForums , recently claimed the hack of Ticketmaster and offered for sale 1.3 TB of data, including full details of 560 million customers, for $500,000.

Data breaches 142

Data breaches Hacking Accountability Risk 142

Security Affairs

MAY 19, 2024

WebTPA, a third-party administrator that provides healthcare management and administrative services, disclosed a data breach. The US company disclosed a data breach that impacted almost 2.5 Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, data breach)

Data breaches 142

Data breaches Healthcare Insurance Identity Theft 142

Krebs on Security

MARCH 14, 2023

men have been charged with hacking into a U.S. Both are alleged to be part of a larger criminal organization that specializes in using fake emergency data requests from compromised police and government email accounts to publicly threaten and extort their victims. federal government portal without authorization. ” Image: USDOJ.

Hacking 289

Hacking Government Media Accountability 289

Security Affairs

MAY 11, 2024

Notorius threat actor IntelBroker claims that Europol has suffered a data breach that exposed FOUO and other classified data. The threat actor IntelBroker announced on the cybercrime forum Breach the hack of the European law enforcement agency Europol. Thanks for reading, enjoy!”

Hacking 133

Hacking Data breaches Cybercrime Cryptocurrency 133