June 21, 2024 at 06:39AM The US cybersecurity agency CISA has notified participants of the CFATS program that personal information and user accounts may have been compromised following a hack of the CSAT. The incident, considered “a major incident”, potentially impacts over 100,000 individuals. While CISA found no evidence of data exfiltration, some information may … Read more
June 18, 2024 at 06:19AM Blackbaud was ordered to pay $6.75 million in a settlement for a ransomware attack and data breach. The company paid a $250,000 ransom and later revealed that sensitive information from 13,000 organizations using its services was compromised. Blackbaud has agreed to a $49.5 million settlement and to develop a comprehensive … Read more
June 17, 2024 at 03:56PM The Los Angeles County Department of Public Health suffered a phishing attack on Feb. 19-20, leading to the compromise of 53 employees’ credentials and personal information of over 200,000 people. After disabling affected email accounts, the department launched an investigation and notified law enforcement. Potentially accessed sensitive information includes medical … Read more
June 13, 2024 at 03:59PM The New York Times notified contributors of a data breach on its GitHub repositories, leading to the exposure of personal information, including names, phone numbers, and email addresses. A 273GB torrent file containing stolen data was leaked, raising concerns about potential misuse of personal information. Affected individuals were advised to … Read more
June 11, 2024 at 04:54PM Canada and the UK are conducting a joint investigation into a 23andMe data breach after a threat actor posted 4 million company records on the Dark Web. 23andMe confirmed the breach affected 7 million people due to a credential-stuffing attack. The investigation aims to protect individuals’ privacy rights and scrutinizes … Read more
June 11, 2024 at 05:03AM Cybersecurity experts have discovered an updated version of malware called ValleyRAT with new capabilities, believed to originate from a China-based threat actor. The malware utilizes a multi-stage process and DLL side-loading to evade security solutions. Additionally, there’s a new phishing campaign targeting Spanish-speaking individuals with an updated keylogger and information … Read more
June 6, 2024 at 06:46PM LAUSD officials are investigating a threat actor’s claim of selling stolen databases holding records of millions of students and thousands of teachers. The alleged data for sale includes over 26 million student records, 24,000 teacher records, and 500 staff records. This follows a previous ransomware attack on LAUSD by the … Read more
June 6, 2024 at 01:59PM The Mallox ransomware group has introduced a new Linux variant that targets VMware ESXi environments. This variant uses a custom shell to execute ransomware on virtualized systems with high-level user privileges. The group has targeted various sectors and is now active in Taiwan, India, Thailand, and South Korea. Organizations are … Read more
June 6, 2024 at 02:24AM A malicious Python package called crytic-compilers was discovered on the Python Package Index, posing as a legitimate library named crytic-compile. It was designed to deliver an information stealer called Lumma. Additionally, more than 300 WordPress sites have been compromised with malicious Google Chrome update pop-ups, leading to the deployment of … Read more
June 3, 2024 at 03:50PM Have I Been Pwned service added a trove of 361 million stolen credentials obtained from cybersecurity researchers who collected them from Telegram cybercrime channels. The stolen data includes username and password combinations, along with raw cookies, and was shared for free on Telegram. The credentials have affected numerous websites, and … Read more