Qantas Customers’ Boarding Passes Exposed in Flight App Mishap

May 1, 2024 at 04:36PM Qantas is investigating a privacy breach allowing customers to view others’ boarding passes and flight details on its app, potentially canceling flights. The airline attributes the issue to a technology problem rather than a cyber security incident. Qantas resolved the problem in roughly three hours and advises affected customers to … Read more

Attack on Consumer Electronics Manufacturer boAt Leaks Data on 7.5M Customers

April 10, 2024 at 07:58AM A hacker known as “ShopifyGUY” leaked 2GB of personal info from boAt customers in India. The company controls 26% of the wearables market and 40% of earbud sales. Despite selling for $2, the info appears genuine. Companies are advised to invest in anti-exfiltration tools and encrypt their databases to safeguard … Read more

American Express Discloses Data Breach

March 5, 2024 at 08:06AM American Express informs customers of a data breach at a third-party services provider, affecting some card members’ account information. Compromised data includes names, card account numbers, and expiration dates. The company is monitoring for fraud and advises impacted individuals on protecting their information. It is unclear how many people were … Read more

23andMe data breach: Hackers stole raw genotype data, health reports

January 25, 2024 at 05:14PM Genetic testing provider 23andMe suffered a major data breach, with hackers stealing health reports and raw genotype data of 6.9 million customers over a 5-month period. The breach went undetected from April to September. The stolen data was posted on hacking forums and included vulnerable information like health reports and … Read more

Mortgage firm loanDepot cyberattack impacts IT systems, payment portal

January 7, 2024 at 03:37PM LoanDepot, a leading nonbank mortgage lender in the USA, has been hit by a cyberattack, causing system outages and impacting customer payments and services. The company is actively addressing the incident and advising customers to use its call center for payment assistance. Concerns about data theft and phishing attacks have … Read more

CISA Urges Manufacturers to Eliminate Default Passwords After Recent ICS Attacks

December 18, 2023 at 11:09AM The cybersecurity agency CISA advises manufacturers to cease using default passwords for industrial control systems (ICS) in the water sector due to recent attacks. It recommends implementing safe default behavior, eliminating widely known default passwords, and conducting field tests to ensure secure product usage. Executives are urged to drive security … Read more