April 1, 2024 at 08:43AM AT&T confirmed a data dump of 73 million customer records from 2019 or earlier, impacting both current and former customers. The information includes personal details such as names, contact information, Social Security numbers, and account credentials. While AT&T denies unauthorized system access, the source of the data remains uncertain, potentially … Read more
March 30, 2024 at 11:06PM AT&T disclosed that data pertaining to about 73 million current and former customers, including social security numbers, was revealed on the dark web. The telecom firm suspects the data dates back to 2019 or earlier, affecting around 7.6 million current account holders and 65.4 million former account holders. AT&T assured … Read more
March 21, 2024 at 11:33AM Rhysida ransomware group claimed responsibility for a cyberattack on MarineMax, a US luxury yacht dealer, disrupting its business operations. Despite MarineMax’s denial of maintaining sensitive data in the affected information environment, Rhysida posted stolen documents on its website and announced a seven-day auction. The group has a history of similar … Read more
March 18, 2024 at 08:10PM The Kimsuky-attributed campaign involves an eight-step process for compromising systems, starting with initial execution and culminating in establishing stealth and persistence by downloading additional code from Dropbox and executing it. Based on the meeting notes, it appears that the Kimsuky-attributed campaign involves eight steps to compromise systems. These steps include … Read more
March 18, 2024 at 04:51AM The IMF uncovered a cybersecurity incident involving nearly a dozen hacked email accounts. Discovered on February 16, 2024, an investigation revealed 11 compromised accounts, which were promptly secured. The IMF emphasized its serious approach to cybersecurity and the absence of further unauthorized access. The attackers’ motives and potential data obtained … Read more
March 15, 2024 at 04:45PM Cybersecurity vulnerabilities in Ireland and Scotland highlight the precarious nature of protecting sensitive private healthcare data. From the meeting notes, it appears that there are concerns about vulnerabilities in cyber protections for sensitive private healthcare data in Ireland and Scotland, specifically referencing “whoopsies.” This suggests a potential fragility or uncertainty … Read more
March 15, 2024 at 11:29AM Former telecom manager in New Jersey pleads guilty to conspiracy charges for unauthorized SIM swaps enabling hacking of customer accounts. SIM swaps involve porting a person’s phone number without authorization. The swaps aim to receive SMS-based one-time passwords for account takeovers. Telecom providers have since implemented measures to prevent such … Read more
March 12, 2024 at 09:51AM EquiLend has notified employees of a data breach resulting from a January 2024 ransomware attack. The company restored client-facing services by February 5 but recently disclosed the breach’s scope to the Massachusetts OCABR. Personal data, including Social Security numbers and payroll information, was compromised. EquiLend is providing impacted individuals with … Read more
March 7, 2024 at 06:27AM Fidelity Investments Life Insurance Company notified 28,000 individuals of a data breach at third-party provider Infosys McCamish System, compromising personal data including names, birth dates, Social Security numbers, bank and credit card details. The breach stems from a cyberattack in October 2023. Affected individuals are offered two years of free … Read more
February 25, 2024 at 06:31AM The RCMP disclosed a recent cyber attack on their networks, prompting a criminal investigation. Despite the website being down, the RCMP assured no threat to public safety and security. The incident reportedly doesn’t impact foreign police or intelligence services. The Office of the Privacy Commissioner was notified. The situation is … Read more