September 19, 2024 at 04:50PM Iranian cyber attackers attempted to send stolen files from the Trump campaign to the Biden camp, without a response. The American agencies did not find any indication of the recipients replying. Similarly, Russian and Chinese actors seek to exploit US societal divisions and influence the election process. Meanwhile, Microsoft warns … Read more
August 27, 2024 at 05:03PM Young Consulting (now Connexure) is notifying 954,177 individuals of a data breach stemming from a BlackSuit ransomware attack on April 10, 2024. The breach exposed personal information, and those affected will receive free credit monitoring. BlackSuit has leaked the stolen data, and impacted persons are warned to be vigilant for … Read more
August 14, 2024 at 02:15PM An ongoing social engineering campaign linked to the Black Basta ransomware group involves multiple intrusion attempts aiming at credential theft and deploying the SystemBC malware dropper. Threat actors use tactics such as email bombing, phone calls, and fake solutions to persuade users to download legitimate remote access software for deploying … Read more
August 7, 2024 at 11:12AM The UK’s Information Commissioner’s Office has announced its intent to fine the Advanced Computer Software Group £6.09 million due to a ransomware attack on the National Health Service. Personal data of 82,946 patients was compromised, causing disruption to the 111 call service. The attack was linked to inadequate security measures, … Read more
June 25, 2024 at 10:47AM Luxury retailer Neiman Marcus confirmed a data breach after hackers attempted to sell the company’s data from a recent attack. Personal information of 64,472 people was affected, but gift card PINs were not compromised. The breach is linked to the Snowflake data theft attacks, with the threat actor attempting to … Read more
June 24, 2024 at 05:39AM Threat actors claimed to have stolen information on millions of Ticketek users after a data breach on the cloud-based platform. User account details, but not payment information, may have been compromised. The incident seems linked to the Snowflake campaign, and a hacker claimed to offer information on 30 million customers. … Read more
June 5, 2024 at 09:30AM Microsoft’s Recall feature, enabled by default on new Copilot+ PCs, captures user activity through regular screenshots stored locally. However, cybersecurity researchers have raised concerns over potential data theft, with demonstrations showing information-stealing malware could access sensitive data. They also highlighted the feature’s security vulnerabilities, prompting Microsoft to address the issues … Read more
June 3, 2024 at 01:30PM Live Nation confirmed the breach of a third-party cloud database containing customer data, with ShinyHunters claiming to have over half a billion Ticketmaster records for sale. The type of data and its impact remain undisclosed. Snowflake, the affected database, attributes the attack to poor customer configuration, impacting various high-profile clients. … Read more
May 21, 2024 at 09:12AM Persistent threat actors behind the SolarMarker malware have established a complex, multi-tiered infrastructure, making it challenging for law enforcement to take down. The malware targets various sectors and has evolved to enhance stealth and control over victim machines. Recorded Future’s investigation uncovered the architecture of the command-and-control (C2) servers. After … Read more
May 14, 2024 at 04:45AM Zscaler completed its investigation into hacking claims, revealing that only an isolated test environment was compromised. A hacker known as IntelBroker offered to sell access to Zscaler’s systems, but the impact was limited to a test environment without customer data. Third-party investigation findings were consistent, and the hacker’s claims appear … Read more