Security Affairs

JULY 8, 2024

Threat actors leaked the largest password compilation ever, known as RockYou2024, on a popular hacking forum. The Cybernews researchers reported that threat actors leaked the largest password compilation ever, known as RockYou2024, on a popular hacking forum. billion passwords from various internet data leaks.

Passwords 133

Passwords Data breaches Hacking Accountability 133

Security Affairs

AUGUST 24, 2022

The streaming media platform Plex is urging its users to reset passwords after threat actors gained access to its database. The company disclosed a data breach after threat actors have access to a limited subset of data stored in a compromised database. Exposed data includes emails, usernames, and encrypted passwords.

Data breaches 136

Data breaches Passwords Media Accountability 136

Security Boulevard

JULY 11, 2024

The Heritage Foundation, which authored a controversial policy roadmap called project2025, has been hacked. The group that hacked it, SiegedSec, has now disbanded. The post The Heritage Foundation Hacked, User Should Reset Passwords appeared first on Security Boulevard.

Passwords 116

Passwords Hacking Data breaches Cybersecurity 116

Security Boulevard

JULY 11, 2024

By having your […] The post Billions of passwords leaked; Twilio experiences data breach through Authy appeared first on BlackCloak | Protect Your Digital Life™. The post Billions of passwords leaked; Twilio experiences data breach through Authy appeared first on Security Boulevard.

Data breaches 59

Data breaches Passwords Hacking 59

Security Affairs

SEPTEMBER 5, 2023

The nonprofit organization Freecycle Network (Freecycle.org) confirmed that it has suffered a data breach that impacted more than 7 million users. The security breach was discovered on August 30, exposed data includes usernames, User IDs, email addresses and passwords.

Data breaches 134

Data breaches Passwords Phishing Hacking 134

Krebs on Security

AUGUST 15, 2024

A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. Many media outlets mistakenly reported that the National Public data breach affects 2.9

Hacking 342

Hacking Data breaches Identity Theft Accountability 342

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking 300

Hacking Cybercrime Phishing Passwords 300

Malwarebytes

OCTOBER 1, 2024

Ireland’s privacy watchdog Data Protection Commission (DPC) has fined Meta €91M ($101M) after the discovery in 2019 that Meta had stored 600 million Facebook and Instagram passwords in plaintext. The DPC ruled that Meta was in violation of GDPR on several occasions related to this breach.

Passwords 139

Passwords Data breaches Media Phishing 139

Security Affairs

APRIL 26, 2024

Media reported [ 1 , 2 ] that the company is notifying millions of current and former members of a data breach. Exposed data does not include usernames, passwords, Social Security Numbers (SSNs), and financial data. The exposed data included names, medical records, dates of service, and lab test results.

Data breaches 139

Data breaches Healthcare Advertising Mobile 139

Security Affairs

MAY 16, 2024

The Spanish bank Santander disclosed a data breach at a third-party provider that impacted customers in Chile, Spain, and Uruguay. The Spanish financial institution Santander revealed a data breach involving a third-party provider that affected customers in Chile, Spain, and Uruguay. ” continues the statement.

Data breaches 139

Data breaches Banking Passwords Marketing 139

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 231

Data breaches Government InfoSec Passwords 231

Security Affairs

NOVEMBER 16, 2023

Samsung Electronics disclosed a data breach that exposed customer personal information to an unauthorized individual. Samsung Electronics suffered a data breach that exposed the personal information of some of its customers to an unauthorized individual. ” reads the data breach notification sent to the customers.

Data breaches 140

Data breaches eCommerce Hacking Authentication 140

SecureWorld News

AUGUST 15, 2024

In what could be one of the largest data breaches in history, personal information of potentially billions of individuals may have been compromised in a hack of National Public Data (NPD), a Florida-based background check company. The hackers initially offered this data for sale on the dark web for $3.5

Data breaches 106

Data breaches Identity Theft Password Management Data collection 106

WIRED Threat Level

DECEMBER 28, 2022

The password manager's most recent data breach is so concerning, users need to take immediate steps to protect themselves.

Password Management 125

Password Management Data breaches Passwords Hacking 125

Security Affairs

DECEMBER 23, 2023

Mobile virtual network operator Mint Mobile suffered a new data breach, threat actors had access to customers’ personal information. Mint Mobile experienced a recent data breach, exposing customers’ personal information to unauthorized access by threat actors.

Mobile 138

Mobile Data breaches Wireless Data collection 138

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services 140

Financial Services Data breaches Identity Theft Banking 140

Security Affairs

APRIL 11, 2020

San Francisco International Airport (SFO) disclosed a data breach, its websites SFOConnect.com and SFOConstruction.com were hacked last month. In March hackers compromised two websites of San Francisco International Airport (SFO) and now it disclosed a data breach. ” continues the data breach notice.

Data breaches 145

Data breaches Hacking Telecommunications Passwords 145

Graham Cluley

MARCH 13, 2024

Streaming company Roku has revealed that over 15,000 customers' accounts were hacked using stolen login credentials from unrelated data breaches. Read more in my article on the Hot for Security blog.

Data breaches 122

Data breaches Accountability Hacking Passwords 122

Security Affairs

AUGUST 20, 2024

Toyota has confirmed a data breach after a threat actor leaked 240GB of data stolen from its infrastructure on a cybercrime forum. Toyota disclosed a data breach after a threat actor leaked an archive of 240GB of data stolen from its systems on a cybercrime forum, BleepingComputer reported.

Data breaches 120

Data breaches Cybercrime Financial Services Hacking 120

Security Affairs

MARCH 16, 2024

Unemployment agency France Travail (Pôle Emploi) recently suffered a data breach that could impact 43 million people. On August 2023, the French government employment agency Pôle emploi suffered a data breach and notified 10 million individuals impacted by the security breach.

Data breaches 140

Data breaches Cybercrime Government Ransomware 140

CSO Magazine

FEBRUARY 28, 2023

Password management company LastPass, which was hit by two data breaches last year , has revealed that data exfiltrated during the first intrusion, discovered in August, was used to target the personal home computer of one of its devops engineers and launch a second successful cyberatttack, detected in November.

Data breaches 133

Data breaches Engineering Password Management Hacking 133

Security Affairs

SEPTEMBER 27, 2023

DarkBeam left an Elasticsearch and Kibana interface unprotected, exposing records from previously reported and non-reported data breaches. DarkBeam has apparently been collecting information to alert its customers in case of a data breach. Sample of leaked data. What to do if your password was leaked?

Passwords 145

Passwords Data breaches Phishing Hacking 145

Krebs on Security

MAY 19, 2020

In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection of stolen data in history.” ” Items SBU authorities seized after raiding Sanix’s residence.

Passwords 351

Passwords Accountability Hacking Password Management 351

Krebs on Security

SEPTEMBER 22, 2023

The password manager service LastPass is now forcing some of its users to pick longer master passwords. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass.

Passwords 288

Passwords Encryption Password Management Cryptocurrency 288

Security Affairs

AUGUST 25, 2022

Password management software firm LastPass has suffered a data breach, threat actors have stole source code and other data. The company engaged a leading cybersecurity and forensics firm to investigate the incident, it confirmed that the data breach did not compromise users’ Master Passwords.

Data breaches 145

Data breaches Password Management Passwords Architecture 145

CyberSecurity Insiders

DECEMBER 1, 2022

LastPass, a password management service offering company, has disclosed that it has suffered a data breach in an attack that might be linked to the August data leak where hackers stole vital information from the servers of the said company.

Data breaches 132

Data breaches Passwords Password Management Encryption 132

Security Affairs

JANUARY 23, 2022

OpenSubtitles has suffered a data breach, the maintainers confirmed that the incident impacted 7 Million subscribers. OpenSubtitles is a popular subtitles websites, it suffered a data breach that affected 6,783,158 subscribers. The hack is the result of poor cyber security since its launch in 2006, administrator OSS said.

Data breaches 139

Data breaches Passwords Hacking Accountability 139

Malwarebytes

JULY 8, 2024

On a popular hacking form, a user has leaked a file that contains 9,948,575,739 unique plaintext passwords. The list appears to be a compilation of passwords that were obtained during several old and more recent data breaches. To cybercriminals the list has some value because it contains real-world passwords.

Passwords 130

Passwords Authentication Data breaches Accountability 130

Security Affairs

MARCH 10, 2023

AT&T is warning some of its customers that some of their information was exposed after the hack of a third-party vendor’s system. AT&T is notifying millions of customers that some of their information was exposed after a third-party vendor was hacked. ”​ Exposed data don’t include financial information (i.e.

Data breaches 98

Data breaches Hacking Wireless Telecommunications 98

Identity IQ

JULY 8, 2024

RockYou2024: Nearly 10 Billion Passwords Exposed in Data Leak IdentityIQ In a cybersecurity incident that has sent shockwaves through the online community, nearly 10 billion unique passwords have been exposed in the “RockYou2024” data breach. billion passwords. .” billion passwords.

Passwords 104

Passwords Identity Theft Data breaches Password Management 104

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Also, no customer account passwords were accessed. million of them.

Retail 138

Retail Data breaches Passwords Accountability 138

Security Affairs

NOVEMBER 22, 2021

GoDaddy suffered a data breach that impacted up to 1.2 GoDaddy discloses a data breach that impacted up to 1.2 million of its customers, threat actors breached the company’s Managed WordPress hosting environment. The original WordPress Admin password that was set at the time of provisioning was exposed.

Data breaches 142

Data breaches Passwords Accountability Information Security 142

Security Affairs

JANUARY 7, 2022

The appointment scheduling service FlexBooker discloses a data breach that impacted over 3.7 Stolen data are now available for sale on multiple cybercrime forums. The threat actors claim the stolen database contains customer information, including names, emails, phone numbers, hashed passwords, and password salt.

Data breaches 145

Data breaches Accountability Passwords Cybercrime 145

The Last Watchdog

JUNE 9, 2021

Massive data base breaches today generally follow a distinctive pattern: hack into a client -facing application; manipulate an API; follow the data flow to gain access to an overly permissive database or S3 bucket (cloud storage). A classic example of this type of intrusion is the Capital One data breach.

Data breaches 203

Data breaches Software Hacking Mobile 203

SecureWorld News

DECEMBER 7, 2023

New revelations have shed light on the extensive fallout of the 23andMe data breach, which exposed the personal information of a staggering 6.9 This significant update comes almost two months after the genetic testing company initially reported a breach affecting 14,000 individuals. million users.

Data breaches 104

Data breaches Passwords Data privacy Accountability 104

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The hack of the FTA server took place in March, but the hacker had access to the data of Morgan Stanley customers in May.

Data breaches 133

Data breaches Hacking Banking Financial Services 133

Security Affairs

OCTOBER 2, 2023

The European Telecommunications Standards Institute (ETSI) disclosed a data breach, threat actors had access to a database of its users. ” reads the data breach notification published by the European Telecommunications Standards Institute. The vulnerability on which the attack was based has been fixed.”

Telecommunications 138

Telecommunications Data breaches Technology Passwords 138