January 24, 2024 at 03:12PM Jason’s Deli alerted its Deli Dollars rewards program members about potential exposure of personal data due to a credential-stuffing attack. It impacted over 344,000 customers. Names, addresses, phone numbers, birth dates, and partial credit card numbers were compromised. The restaurant is urging customers to update their login credentials and emphasizes … Read more
January 24, 2024 at 09:24AM Jason’s Deli has reported potential compromise of customer accounts and personal information through credential stuffing attacks. Attackers accessed user accounts using credentials from other data breaches, leading to possible exposure of personal details such as addresses, contact lists, and payment information. Jason’s Deli is working to identify impacted users and … Read more
January 24, 2024 at 06:18AM Veolia North America and Southern Water were both hit by ransomware attacks resulting in data breaches. Veolia assures its water operations weren’t affected, but personal data may have been compromised. Southern Water is investigating a ransomware group’s claim of stealing personal information and documents. The water sector has seen increased … Read more
January 24, 2024 at 06:07AM Microsoft revealed a second breach by Russian cyber spies, Cozy Bear, who stole emails and files from the tech giant’s leadership and security teams. The company is uncertain about the breach’s financial impact but has faced similar incidents before. Concerns about Microsoft’s security practices were raised by a US Senator, … Read more
January 24, 2024 at 02:32AM A password-less database with 1.3 million Dutch COVID-19 testing records was exposed online, including personal data like names, birth dates, and passport numbers. The database belonged to CoronaLab, a recommended commercial COVID-19 test provider in the Netherlands. Despite attempts to notify them, no response was received, and it took three … Read more
January 23, 2024 at 04:37PM An exposed Trello API allowed the creation of millions of data profiles, linking public and private information. A threat actor attempted to sell the data of 15,115,516 Trello members containing emails, usernames, and full names. The leaked email addresses were accessed through a publicly exposed API, elevating the severity of … Read more
January 23, 2024 at 03:56PM Subway is investigating claims by the LockBit 3.0 ransomware gang that they’ve breached the company’s internal system and plan to sell the data unless a ransom is paid. This potential shift in LockBit’s targets raises concerns, as they typically focus on midsize or small companies. Experts recommend implementing robust cybersecurity … Read more
January 23, 2024 at 12:12PM Approximately 16.6 million people had their personal information stolen in a ransomware attack on mortgage lender loanDepot. The attack forced the company to shut down systems and caused delays in payment history. The company has confirmed it will notify individuals impacted and provide free credit monitoring. This is loanDepot’s second … Read more
January 23, 2024 at 11:50AM Jason’s Deli warns of a data breach affecting customers’ personal data in a credential stuffing attack. Hackers obtained member account credentials from other sources and used them to target the restaurant’s website. The breach exposes various customer information. The company cannot specify the number of affected accounts but is notifying … Read more
January 23, 2024 at 09:12AM AerCap, an aircraft leasing company, confirmed being targeted by ransomware on January 17. The company asserted control of its IT systems and reported no financial loss. It notified law enforcement and is investigating potential data compromise. ‘Slug’ claimed responsibility, threatening to leak stolen data unless a ransom is paid. AerCap … Read more