November 12, 2024 at 08:37AM Amazon employees’ data was included in a leak linked to the MOVEit vulnerability, affecting over 2.86 million records. Although Amazon maintains system security, the stolen information includes employee contact details, potentially facilitating social engineering threats. The data is being circulated by a user named Nam3L3ss on BreachForums. ### Meeting Takeaways … Read more
September 30, 2024 at 08:38PM More than 304,000 customers of Australian tech retailer digiDirect had their data leaked to a cyber crime forum. The breach included personal details such as full names, email addresses, and phone numbers. The company has not yet responded to inquiries, and there’s concern over potential fraudulent use of the stolen … Read more
August 10, 2024 at 12:28PM Two suspects, Pavel Kublitskii and Alexandr Khodyrev, were arrested in Florida for their roles in the cybercrime platform WWH-Club, known for selling stolen credit cards and offering training for cybercriminals. The two lived lavishly without evidence of legal employment, drawing law enforcement’s attention, and now face charges with possible prison … Read more
May 29, 2024 at 08:24AM The U.S. Department of Justice sentenced Malachi Mullings to 10 years for laundering $4.5 million through BEC and romance scams. He opened fake bank accounts and used the proceeds for luxury items. Meanwhile, Russian citizen Evgeniy Doroshenko has been indicted for selling access to corporate networks on cybercrime forums. Both … Read more
May 9, 2024 at 04:00AM Zscaler initiated an investigation after a hacker, IntelBroker, claimed to have access to its systems and offered to sell confidential data for $20,000. Zscaler found no evidence of a compromise in its customer and production environments. The company confirmed that its environments were not impacted, but a test environment was … Read more
April 16, 2024 at 04:27AM Two individuals were arrested in Australia and the U.S. for their involvement in developing and distributing the remote access trojan Hive RAT. Edmond Chakhmakhchyan, also known as “Corruption,” from Los Angeles, was charged with selling the malware and faces conspiracy and device advertising charges. Additionally, Charles O. Parks III was … Read more
April 2, 2024 at 12:42PM Ecommerce platform Pandabuy faces a data breach as cybercriminals hawk personal information from 1.3 million customers, including user IDs, names, phone numbers, and more. Despite admitting the breach and offering a 10% discount to sellers, backlash ensues due to alleged attempts to silence discussions and deflect from the incident. Customers … Read more
March 6, 2024 at 06:54AM The Alphv/BlackCat gang has announced the shutdown of its ransomware operation and the sale of its source code. This follows a dispute over a $22 million ransom payment from Change Healthcare, with an affiliate claiming the gang refused to share the fee, prompting suspicions of an exit scam. The incident … Read more
February 5, 2024 at 06:06PM AnyDesk Software, the German developer of remote access software, experienced a security breach. The company initiated a security audit after detecting suspicious activity and found that their production systems were compromised. AnyDesk has taken measures to secure its systems and has engaged CrowdStrike for investigation. Cybersecurity firm Resecurity reported the … Read more
January 18, 2024 at 11:10AM The U.S. government proposed a 15-year prison sentence for Conor Brian Fitzpatrick, the administrator of the BreachForums hacking platform. He was arrested for facilitating the trade of stolen data and using unauthorized access devices. The government also seeks penalties for possession of child pornography and restitution to victims. Fitzpatrick’s final … Read more