June 12, 2024 at 06:04AM Last spring, BlackCat/AlphV’s ransomware implosion left affiliates without money and infrastructure. RansomHub recruited the Scattered Spider threat group with promising ads on the Dark Web, offering attractive ransom splits and payment terms to avoid exit scams. This has resulted in rapid growth for RansomHub, with a prediction for continued expansion. … Read more
June 11, 2024 at 12:39PM BlackBerry’s cybersecurity firm Cylance confirmed that the data being sold on the Dark Web doesn’t pose a threat to customers. They believe the information is related to marketing data before BlackBerry’s acquisition, and it came from an undisclosed third-party platform. Cylance also stated that their systems remain secure. The validity … Read more
June 11, 2024 at 09:03AM BlackBerry is investigating a potential data breach involving Cylance data being sold on the dark web. The company states that the data appears to be old and not from their own systems. No current Cylance customers seem to be affected, and the data was accessed from a third-party platform unrelated … Read more
June 6, 2024 at 06:18AM Tom, an employee at a financial institution, unknowingly used his strong password for multiple accounts, leading hackers to compromise his credentials and potentially launch an account takeover attack. These attacks are hard to detect because they involve legitimate user credentials. Implementing strong password security and multi-factor authentication is crucial to … Read more
June 5, 2024 at 06:50PM The FBI has obtained over 7,000 LockBit decryption keys to help victims recover encrypted data for free. This follows the takedown of LockBit’s infrastructure in “Operation Cronos.” Despite this, LockBit remains active, targeting victims worldwide and leaking stolen data. The U.S. State Department offers rewards for information leading to arrests … Read more
June 5, 2024 at 02:00PM Cyber criminals from the Qilin ransomware operation have targeted pathology services provider Synnovis, impacting several major NHS hospitals in London. The attack has caused disruptions to primary healthcare services and led to the postponement and cancellation of non-emergency appointments and surgeries. The group is known for double-extortion attacks, demanding ransom … Read more
June 5, 2024 at 05:06AM Northern Minerals, an Australian rare-earth metals producer, fell victim to a data breach by the BianLian ransomware gang. Exfiltrated data, including operational, financial, and personal information, was released on the dark web. Despite the breach, the company’s operations and systems were not materially impacted. The incident coincided with political developments, … Read more
May 31, 2024 at 05:46PM Live Nation has confirmed a data breach at Ticketmaster, with data stolen from a third-party cloud database, likely Snowflake. The breach exposed over 500,000 users’ data. Live Nation is working to mitigate the risk, cooperating with authorities, and notifying regulatory bodies and affected users. They don’t expect a significant impact … Read more
May 31, 2024 at 07:36AM Proton and Constella Intelligence found hundreds of British, French, and European Parliament politicians’ email addresses on dark web marketplaces. 918 addresses were leaked, with 68% of British MPs affected. Proton warned that using government email addresses for third-party services puts politicians and sensitive information at risk, as exposed passwords and … Read more
May 29, 2024 at 05:41PM Following the shutdown of BreachForums by the FBI and the DOJ, the alleged reappearance of the site has raised suspicions among researchers. The revival includes attempts to sell purported personal data of 560 million customers. There are doubts regarding the legitimacy of the revival, with experts pointing to potential law … Read more