Troy Hunt

SEPTEMBER 27, 2024

As it relates to the UK GDPR, there are two essential concepts to understand, and they're the first two bulleted items in their personal data breaches guide : The UK GDPR introduces a duty on all organisations to report certain personal data breaches to the relevant supervisory authority.

Data breaches 320

Data breaches Risk Passwords Government 320

SecureWorld News

NOVEMBER 13, 2024

On Monday, November 11, Amazon confirmed a data breach that impacted its employee data. The breach, linked to the infamous MOVEit Transfer vulnerability, underscores the far-reaching consequences of last year's major supply chain attack. Beyond that, the data is somewhat dated, which certainly helps.

Data breaches 117

Data breaches Identity Theft Education Software 117

Malwarebytes

OCTOBER 25, 2024

Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach. Every breach is different, so check with the vendor to find out what’s happened, and follow any specific advice they offer. Check the vendor’s advice. Take your time.

Healthcare 119

Healthcare Data breaches Passwords Identity Theft 119

Krebs on Security

MARCH 23, 2021

A phishing attack last week gave attackers access to email and files at the California State Controller’s Office (SCO), an agency responsible for handling more than $100 billion in public funds each year. A notice of breach posted by the California State Controller’s Office. Source: sco.ca.gov. .

Phishing 339

Phishing Data breaches Accountability Technology 339

Security Affairs

DECEMBER 6, 2024

Atrium Health disclosed a data breach affecting 585,000 individuals to the HHS, potentially linked to the use of online tracking tools. Healthcare company Atrium Health disclosed a data breach that impacted 585,000 individuals. The company notified the US Department of Health and Human Services (HHS).

Data breaches 109

Data breaches Identity Theft Accountability Technology 109

Tech Republic Security

JULY 1, 2022

Triggered by an employee from an external vendor who shared email addresses with an unauthorized party, the breach could lead to phishing attempts against affected individuals. The post Data breach of NFT marketplace OpenSea may expose customers to phishing attacks appeared first on TechRepublic.

Data breaches 203

Data breaches Phishing 203

Malwarebytes

APRIL 15, 2025

The Hertz Corporation, on behalf of Hertz, Dollar, and Thrifty brands, is sending breach notifications to customers who may have had their name, contact information, driver’s license, andin rare casesSocial Security Number exposed in a data breach. 2FA that relies on a FIDO2 device cant be phished. Take your time.

Data breaches 84

Data breaches Ransomware Passwords B2B 84

Schneier on Security

AUGUST 19, 2021

It’s a big one : As first reported by Motherboard on Sunday, someone on the dark web claims to have obtained the data of 100 million from T-Mobile’s servers and is selling a portion of it on an underground forum for 6 bitcoin, about $280,000.

Mobile 363

Mobile Data breaches Phishing Cybercrime 363

SecureWorld News

FEBRUARY 6, 2025

Grubhub recently confirmed a data breach stemming from a third-party vendor, exposing the ongoing risks associated with supply chain security. However, even seemingly limited breaches can have downstream effects, enabling phishing attacks and social engineering schemes. How did this happen?

Data breaches 95

Data breaches Accountability Social Engineering Passwords 95

Schneier on Security

SEPTEMBER 16, 2022

. “They pretty much have full access to Uber,” said Sam Curry, a security engineer at Yuga Labs who corresponded with the person who claimed to be responsible for the breach. ” It looks like a pretty basic phishing attack; someone gave the hacker their login credentials.

Data breaches 276

Data breaches Engineering Phishing Hacking 276

Malwarebytes

FEBRUARY 25, 2025

Employment screening company DISA Global Solutions has filed a data breach notification after a cyber incident on their network. Given the field that DISA is active in, that information could interest cybercriminals for use as background information for targeted phishing attempts or extortion. Check the vendors advice.

Data breaches 98

Data breaches Passwords Phishing Password Management 98

Tech Republic Security

APRIL 3, 2023

Some 43% of employees have been targeted with work-related phishing attacks on their personal devices, says a survey from SlashNext. The post BYOD and personal apps: A recipe for data breaches appeared first on TechRepublic.

Data breaches 207

Data breaches Phishing Mobile Cybersecurity 207

Troy Hunt

MARCH 30, 2025

On that note, stay tuned for the promised "Passkeys for Normal People" blog post, I hope to be talking about that in next week's video (travel schedule permitting).

Phishing 209

Phishing Data breaches Scams 209

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 278

Data breaches Government InfoSec Passwords 278

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals are shifting their focus from emails to text messages, using mishing a more deceptive form of phishing to target mobile users and infiltrate corporate networks, according to new security research by Zimperium. Vishing: Also known as voice phishing. What is mishing? and 9%in Brazil.

Phishing 87

Phishing Mobile Social Engineering Data breaches 87

The Last Watchdog

OCTOBER 23, 2024

Tip 1: Educating and Training the Workforce Regularly Human error remains one of the leading causes of data breaches. According to the Verizon 2024 Data Breach Investigations Report , 68% of cybersecurity breaches are caused by human error. Many cyber attacks exploit vulnerabilities in outdated software.

Small Business 162

Small Business Data breaches Backups Passwords 162

Security Boulevard

MARCH 27, 2025

Explore major data breaches and phishing attacks, their impact, and key lessons. The post Famous Data Breaches & Phishing Attacks: What We Can Learn appeared first on Security Boulevard. Learn how companies fell victim and how to protect against such threats.

Data breaches 101

Data breaches Phishing 101

The Last Watchdog

JULY 14, 2022

Phishing itself is not a new or a particularly complicated threat. But the emergence of advanced phishing techniques – “DeepSea Phishing” – poses an entirely new challenge for enterprises. The financial impact of phishing attacks quadrupled over the past six years, with the average cost for U.S. companies rising to $14.8

Phishing 277

Phishing Education Cybersecurity Threat Detection 277

Malwarebytes

JUNE 1, 2024

Live Nation Entertainment has confirmed what everyone has been speculating on for the last week : Ticketmaster has suffered a data breach. For now, Ticketmaster users should keep an eye on their credit and bank accounts for an unauthorized transactions and follow our general data breach tips below. Take your time.

Data breaches 145

Data breaches Passwords Phishing Password Management 145

Troy Hunt

NOVEMBER 8, 2024

Email addresses and usernames, that's it, and of course, their association with the service, which may lead to some very targeted spam or phishing attempts. , the amount of attention this has garnered from both Earth 2 users and the company itself is incommensurate with the impact of the incident itself. It's a nothing-burger.

Data breaches 240

Data breaches Phishing 240

Tech Republic Security

JULY 14, 2024

Phishing attacks are one of the most common types of data breach attempts, with 31,000 phishing attacks launching every single day, according to cybersecurity firm SlashNext. Furthermore, 77% of cybersecurity professionals report being targeted by phishing attacks, proving just how widespread these attacks are.

Phishing 172

Phishing Data breaches Cybersecurity 172

Malwarebytes

APRIL 8, 2025

By purchasing prominent Google Ads, they are creating highly convincing fake login pages designed to pilfer sensitive information, including usernames, passwords, and even one-time passcodes (OTPs) the keys to someone’s financial data needed for tax compliance.

Phishing 82

Phishing Scams Accountability Passwords 82

Hacker's King

DECEMBER 28, 2024

Data breaches and account hacks are a growing concern for users, especially with the personal and professional information shared on the platform. If youre worried about your Instagram account being hacked , it's essential to take proactive steps to protect your data. Revoke access to any app you no longer use or trust.

Data breaches 52

Data breaches Hacking Passwords Accountability 52

Malwarebytes

MAY 10, 2024

Dell is warning its customers about a data breach after a cybercriminal offered a 49 million-record database of information about Dell customers on a cybercrime forum. So, this is another big data breach that leaves us with more questions than answers. 2FA that relies on a FIDO2 device can’t be phished.

Data breaches 143

Data breaches Passwords Phishing Big data 143

Krebs on Security

AUGUST 17, 2023

You’ve probably never heard of “ 16Shop ,” but there’s a good chance someone using it has tried to phish you. A 16Shop phishing page spoofing Apple and targeting Japanese users. Image: Akamai.com. The INTERPOL statement says the platform sold hacking tools to compromise more than 70,000 users in 43 countries.

Phishing 231

Phishing Passwords Internet Internet 231

Malwarebytes

NOVEMBER 4, 2024

In a data breach notification filed by the Attorney General for the state of Maine, the cybersecurity incident that affected Columbus, Ohio impacted half a million people. Because of the data breach notification from Maine’s Attorney General, that number now has a little more clarity. Check the vendor’s advice.

Data breaches 115

Data breaches Passwords Ransomware Phishing 115

Security Affairs

APRIL 29, 2024

The Los Angeles County Department of Health Services reported a data breach that exposed thousands of patients’ personal and health information. The Los Angeles County Department of Health Services disclosed a data breach that impacted thousands of patients. Attackers obtained the credentials of 23 DHS employees.

Data breaches 139

Data breaches Phishing Hacking Cybercrime 139

The Last Watchdog

AUGUST 19, 2021

Could be phished credentials. It’s too early to assess compliance to data loss regulations. Often inadvertent data breaches stem from a well-meaning employee trying to meet the needs of clients but without the technical systems to facilitate. Could be weak application security practices. Could be a bad actor.

Mobile 235

Mobile Data breaches Authentication Accountability 235

Malwarebytes

JULY 19, 2024

The Identity Theft Resource Center (ITRC) tracked 1,041,312,601 data breach victims in Q2 2024, an increase of 1,170% over Q2 2023 (81,958,874 victims). Because both of these breaches were announced/updated in the second quarter of 2024 they have a huge impact on the numbers. 2FA that relies on a FIDO2 device can’t be phished.

Data breaches 127

Data breaches Passwords Identity Theft Phishing 127

Security Affairs

MAY 28, 2024

Dutch bank ABN Amro discloses data breach following a ransomware attack hit the third-party services provider AddComm. Dutch bank ABN Amro disclosed a data breach after third-party services provider AddComm suffered a ransomware attack. The bank also warns clients to stay alert to phishing messages.

Data breaches 135

Data breaches Banking Ransomware Phishing 135

Malwarebytes

OCTOBER 8, 2024

Money transfer company MoneyGram has notified its customers of a data breach in which it says certain customers had their personal information taken between September 20 and 22, 2024. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 123

Data breaches Passwords Identity Theft Phishing 123

Malwarebytes

AUGUST 27, 2024

The Texas Dow Employees Credit Union (TDECU) has filed a data breach notification , reporting that the data of 500,474 people has been accessed in an external system breach. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches 119

Data breaches Passwords Phishing Password Management 119

Security Boulevard

JULY 18, 2024

The number of data breach victims in the first half (H1) of 2024 has surged to 1,078,989,742, marking a 490% increase compared to the same period in 2023, which saw 182,645,409 victims. The post Data Breaches Impact Growing Number of Victims, ITRC Finds appeared first on Security Boulevard.

Data breaches 129

Data breaches Social Engineering Engineering Security Awareness 129

Krebs on Security

JULY 29, 2021

Every time there is another data breach, we are asked to change our password at the breached entity. Here’s a closer look at what typically transpires in the weeks or months before an organization notifies its users about a breached database. TARGETED PHISHING. customers this month. Take a deep breath.

Passwords 363

Passwords Password Management Phishing Scams 363

Penetration Testing

JULY 26, 2024

On the popular pirate e-book site Z-Library, or rather its phishing clone Z-lib, created in late 2022, there was a recent data breach affecting nearly 10 million users. On June 27, 2024, the Cybernews... The post 10 Million Users Compromised in Z-Library Phishing Site Hack appeared first on Cybersecurity News.

Phishing 131

Phishing Hacking Data breaches Cybersecurity 131

Tech Republic Security

NOVEMBER 22, 2023

Phishing, infostealer malware, ransomware, supply chain attacks, data breaches and crypto-related attacks are among the top evolving threats in the financial sector, says Sekoia.

Cyber threats 211

Cyber threats Data breaches Phishing Ransomware 211

Security Affairs

APRIL 15, 2024

Cisco Duo warns that a data breach involving one of its telephony suppliers exposed multifactor authentication (MFA) messages sent by the company via SMS and VOIP to its customers. The security breach occurred on April 1, 2024, the threat actors used a Provider employee’s credentials that illicitly obtained through a phishing attack.

Data breaches 138

Data breaches Social Engineering Engineering Authentication 138