Australian e-tailer digiDirect customers’ info allegedly stolen and dumped online

September 30, 2024 at 08:38PM More than 304,000 customers of Australian tech retailer digiDirect had their data leaked to a cyber crime forum. The breach included personal details such as full names, email addresses, and phone numbers. The company has not yet responded to inquiries, and there’s concern over potential fraudulent use of the stolen … Read more

‘Cybersecurity issue’ takes MoneyGram offline for three days – and counting

September 23, 2024 at 05:38PM MoneyGram’s global money transfer services are down due to a cybersecurity issue, affecting in-person and online transactions. The company has not disclosed a timeline for restoration or confirmed a ransomware attack. MoneyGram has hired cybersecurity experts, initiated an investigation, and is cooperating with law enforcement. The company stores sensitive customer … Read more

Ransomware Group Leaks Data Allegedly Stolen From Kawasaki Motors

September 16, 2024 at 09:45AM The RansomHub ransomware group leaked 487 GB of data stolen from Kawasaki Motors Europe. The company disclosed the cyberattack and isolated servers as a precaution. They have restored over 90% functionality and resumed normal operations. RansomHub threatened to release data unless a ransom was paid, but KME refused. The US … Read more

Toyota Customer, Employee Data Leaks in Confirmed Data Breach

August 20, 2024 at 03:55PM Toyota confirmed it was breached by a hacker who stole around 240GB of data but has not disclosed details of the attack or the number of customers affected. The company stated the issue is limited and not system-wide, while ZeroSevenGroup claimed responsibility for the breach and shared data containing employee, … Read more

FlightAware configuration error leaked user data for years

August 19, 2024 at 10:06AM FlightAware, a Houston-based flight tracking platform, is requesting some users to reset their account passwords due to a data security incident that may have exposed personal information. The incident, caused by a configuration error on January 1, 2021, was discovered on July 25, 2024. Potentially compromised information includes user IDs, … Read more

BreachForums v1 database leak is an OPSEC test for hackers

July 24, 2024 at 06:48AM The notorious BreachForums v1 hacking forum’s entire database was released on Telegram, exposing members’ info, private messages, cryptocurrency addresses, and every post. The data was sold by Conor Fitzpatrick and has been circulating among threat actors. This reveals a vulnerability test for involved threat actors and may lead to identifying … Read more

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data

July 17, 2024 at 04:45AM Pharmacy chain Rite Aid discloses a data breach involving 2.2 million people, with ransomware group threatening to leak stolen data. The breach, involving compromised credentials, occurred between June 6, 2017, and July 30, 2018. No Social Security or financial information was affected; affected individuals offered 12 months of free credit … Read more

Data of Millions of mSpy Customers Leaked Online

July 15, 2024 at 10:06AM Over 310GB of data from spyware maker mSpy, including 2.4 million unique emails, was leaked online and obtained by data breach notification site Have I Been Pwned. The leaked data includes user information, attachments, and support tickets from high-profile individuals. mSpy, advertised as a parental control application, has been misused … Read more

Break-in at ‘third-party cloud platform’ leaked 110M customer records, says AT&T

July 12, 2024 at 10:17AM AT&T suffered its second cyberattack this year, with data on “nearly all” wireless customers being compromised, including those with MVNOs. The breach on a third-party cloud platform exposed call and text metadata, potentially enabling customer geolocation. Around 110 million customers were affected, and the incident is linked to the Snowflake … Read more

Roblox vendor data breach exposes dev conference attendee info

July 8, 2024 at 10:01AM Roblox disclosed a data breach affecting attendees of its 2022-2024 Developer Conferences. The breach involved vendor FNTech’s systems being compromised, revealing attendees’ full names, email addresses, and IP addresses. Though not immediately risky, the exposed data raises phishing attack potential. Roblox has taken measures to prevent future breaches, acknowledging previous … Read more