December 18, 2023 at 07:04PM Xfinity, the subsidiary of Comcast Cable Communications, reported a security breach where attackers stole sensitive customer information after exploiting a Citrix server. The breach, discovered in November, resulted in the exfiltration of customer data, including usernames, hashed passwords, contact information, and partial social security numbers. Xfinity has proactively reset affected … Read more
December 18, 2023 at 02:47PM VF Corp experienced a cyber intrusion, disrupting operations and order fulfillment for its major brands, including The North Face and Vans. While stores remain open and orders are accepted, fulfillment is impacted. The incident, possibly ransomware, prompted immediate containment and remediation efforts. Similar cyberattacks affected Clorox and MGM Resorts, resulting … Read more
December 18, 2023 at 01:59PM VF Corporation, a Colorado-based global apparel firm with 13 brands, including Supreme and The North Face, experienced a cyberattack on December 13, 2023, causing operational disruptions. The company is working to restore IT systems and minimize impact on retail and e-commerce operations, but the full extent and impact of the … Read more
December 18, 2023 at 10:20AM Predatory Sparrow claims responsibility for a cyberattack on Iranian gas stations, disrupting operations at 60-70% of sites. Iran’s petrol stations association spokesman attributed it to a software issue, while Iran’s oil minister suggested outside interference. The group posted evidence of the attack and stated they warned emergency services beforehand to … Read more
December 18, 2023 at 10:03AM Former IT manager of a New Jersey high school, Conor LaHiff, admitted to cyberattacking his ex-employer following termination. He pleaded guilty to unauthorized damage to protected computers, targeting Apple and IT administrator accounts. His actions caused over $5,000 in losses to the school. LaHiff faces up to 10 years in … Read more
December 18, 2023 at 08:45AM Mr. Cooper has reported a data breach incident, affecting 14.7 million customers. The breach, discovered on November 1, 2023, exposed personal information, including names, addresses, phone numbers, SSNs, birth dates, and bank account numbers. The company took immediate action to mitigate the incident and is offering identity protection services to … Read more
December 15, 2023 at 09:54AM SecurityWeek’s weekly cybersecurity roundup offers a concise compilation of notable stories, covering topics like Chinese APT hacking, Ukraine’s server destruction, cryptocurrency theft, ransomware gang arrests, vulnerabilities, and software patches. It also highlights industry news such as Dragos CEO joining DataTribe and the launch of 5th Gen Intel Xeon processors with … Read more
December 14, 2023 at 10:50AM Israeli CEO Doron Amir has recruited hackers from around the world to counter anti-Israel online activity. He believes that permitting offensive cyber operations, with proper supervision, would deter cyberattacks. This concept has been met with skepticism by cybersecurity experts, citing concerns about sufficient oversight and accountability. CyTaka has not commented … Read more
December 14, 2023 at 08:00AM OilRig, an Iranian cyber espionage group, has deployed three new downloader malware named ODAgent, OilCheck, and OilBooster to maintain access to victim organizations in Israel. These lightweight downloaders use legitimate cloud service APIs for command-and-control communication, aiming to blend with authentic network traffic. The targets include healthcare, manufacturing, and governmental … Read more
December 13, 2023 at 05:36AM Ukraine’s largest telecom operator, Kyivstar, was hit by a cyber attack, causing disruptions in mobile and internet services. The attack, linked to the conflict with Russia, led to nationwide impacts. While the company works to restore services, it assured compensation for affected users and warned against potential scams. Meanwhile, pro-Russia … Read more