September 13, 2024 at 09:57AM British authorities announced the arrest of a 17-year-old male in connection with a cyber attack on Transport for London. The attack led to unauthorized access of customer data, including bank account numbers and sort codes. The individual has been released on bail, while the investigation remains ongoing. Another 17-year-old from … Read more
September 10, 2024 at 06:06AM A trio of threat clusters linked to the People’s Republic of China have breached a dozen new targets, including a Southeast Asian government organization. Operation Crimson Palace utilizes a team-based approach for cyber heists, with three independent clusters handling various stages of the attack chain, demonstrating persistency and adaptability in … Read more
September 9, 2024 at 01:45PM Avis, the American car rental company, experienced a data breach when attackers accessed one of its business applications and unauthorizedly obtained customer personal information. Based on the meeting notes, it appears that Avis, a car rental company, experienced a data breach in one of its business applications last month. As … Read more
September 9, 2024 at 12:55PM Avis Rent A Car System notified 299,006 customers across multiple states of a data breach occurring between August 3-6. Personal information was stolen, although specifics were not disclosed in the breach notification letter. Avis is enhancing security measures and offering free credit monitoring to affected individuals due to the incident. … Read more
September 9, 2024 at 12:10PM Around 1.7 million people will receive a letter from Florida-based Slim CD following the detection of an intrusion dating back nearly a year. The company, providing payment processing solutions, acknowledged potential compromise of credit card data, names, and addresses. While no misuse has been detected, the company initiated investigations and … Read more
September 5, 2024 at 02:48PM Ransomware gang RansomHub claims to have stolen 93 GB of data from nonprofit Planned Parenthood, threatening to publish it unless a ransom is paid. The cybercriminal group has targeted over 200 victims, including organizations in various sectors. Planned Parenthood confirmed a cyberattack and is working to address the incident while … Read more
September 3, 2024 at 11:00AM Three individuals pleaded guilty to running OTP.Agency, an online platform that provided social engineering help to obtain one-time passcodes from customers of various banks and services in the U.K. They targeted more than 12,500 people, promising to deliver OTPs for over 30 online services for weekly subscriptions ranging from £30 … Read more
August 28, 2024 at 12:27PM Dick’s Sporting Goods, the largest outdoor retail chain in the US, confirmed a cyberattack on its servers. The nature and extent of the stolen information are unknown. Business operations were not disrupted, indicating ransomware was not used. The company has engaged law enforcement and an external security firm to investigate … Read more
August 28, 2024 at 11:46AM DICK’S Sporting Goods, the largest sporting goods retailer in the US, suffered a cyberattack on August 21, 2024, exposing confidential information. The company, with 857 stores and over 55,500 employees, has engaged cybersecurity experts to contain and assess the breach’s impact. They’ve reported the incident to law enforcement, with no … Read more
August 27, 2024 at 01:30PM Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list due to security concerns. The plugin was found to be used for installing keyloggers, information stealers, and malware commonly used to breach corporate networks. Based on the meeting notes, it seems that the Pidgin messaging app removed … Read more