July 22, 2024 at 11:36AM Florida-based safety equipment company Cadre Holdings disclosed a cyberattack that impacted its operations and technology systems. The company has shut down some systems and initiated a response protocol including an investigation, notifying law enforcement, and taking systems offline. The incident, in its early stages, seems consistent with a ransomware attack, … Read more
July 17, 2024 at 12:34PM A threat actor leaked personal data of over 440,000 Life360 customers by exploiting a flaw in the login API. The breach also impacted Trello accounts, and Life360 disclosed an extortion attempt linked to a separate Tile customer support platform breach. The exposed information includes names, addresses, email addresses, and phone … Read more
July 17, 2024 at 10:56AM MarineMax, the world’s largest recreational boat and yacht retailer, reported a data breach affecting over 123,000 individuals. The breach, claimed by the Rhysida ransomware gang, involved stolen personal information and financial documents. While the breach was initially downplayed, the attackers accessed the company’s network for ten days, ultimately leading to … Read more
July 16, 2024 at 10:58AM Rite Aid, the third-largest US drugstore chain, suffered a data breach affecting 2.2 million customers’ personal information. The breach, detected on June 6, involved purchase-related data such as names, addresses, and driver’s license numbers, but not Social Security, financial, or health information. The ransomware gang RansomHub claimed responsibility and threatened … Read more
July 16, 2024 at 08:01AM AutoNation reported a negative impact on quarterly earnings due to a ransomware attack that disrupted CDK Global’s systems. The incident affected core functions, with an estimated impact of $1.50 per share. While most systems have been restored, certain integrations remain unavailable. However, AutoNation expects no material impact on its overall … Read more
July 16, 2024 at 08:01AM Disney is investigating a data leak by hacker group NullBulge, who claim to have obtained 1.1 Tb of data from Disney’s internal Slack channels. The data allegedly includes unreleased projects, source code, and login credentials. Disney is yet to verify the breach, but has confirmed they are investigating the matter. … Read more
July 9, 2024 at 03:35PM Fujitsu confirmed a data breach compromising individuals’ and customers’ business information, revealing that the attack involved sophisticated malware infecting 49 computers. This incident led to the potential exfiltration of personal and customer data, prompting Fujitsu to enhance security measures and monitor all business computers to prevent future breaches. Based on … Read more
July 9, 2024 at 03:28PM Evolve Bank & Trust confirmed a data breach with 7,640,112 individuals affected. The breach involved unauthorized access and download of customer data, including names, Social Security numbers, and dates of birth. The breach was claimed by LockBit, but it was later discovered to be from Evolve rather than the US … Read more
July 7, 2024 at 11:29AM Shopify denies data breach following a threat actor’s sale of alleged customer data stolen from its network. The company attributes the data loss to a third-party app and expects the app developer to notify affected customers. The threat actor, ‘888,’ has a history of selling or leaking data from various … Read more
July 3, 2024 at 03:39PM HealthEquity, a healthcare fintech firm, experienced a data breach when a partner’s account was compromised, resulting in unauthorized access to sensitive health information. The investigation revealed that hackers gained access through the partner’s account and exfiltrated data. HealthEquity is notifying affected individuals and offering credit monitoring and identity restoration services … Read more