Tag: breach
-
Abacus expands incident response as Kocho reveals users are struggling
As one managed security specialist increases the support it can provide from its UK base, another exposes the issues faced by users once a breach has been identified First seen on computerweekly.com Jump to article: www.computerweekly.com/microscope/news/366641920/Abacus-expands-incident-response-as-Kocho-reveals-users-are-struggling
-
Abacus expands incident response as Kocho reveals users are struggling
As one managed security specialist increases the support it can provide from its UK base, another exposes the issues faced by users once a breach has been identified First seen on computerweekly.com Jump to article: www.computerweekly.com/microscope/news/366641920/Abacus-expands-incident-response-as-Kocho-reveals-users-are-struggling
-
App host Vercel says it was hacked and customer data stolen
Vercel blamed its breach on an earlier hack at Context AI, which allowed hackers to hijack a Vercel employee’s account to steal customer data. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/20/app-host-vercel-confirms-security-incident-says-customer-data-was-stolen-via-breach-at-context-ai/
-
Vercel breached via compromised third-party AI tool
Cloud deployment and hosting platform Vercel has suffered a security breach that resulted in attackers accessing some of its internal systems and compromising Vercel … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/20/vercel-breached/
-
Vercel Data Breach Linked to Earlier Context.ai Compromise
Hackers breached systems of Vercel, a popular frontend cloud platform provider and Next.js maintainer, in an attack that’s been traced back to the compromise earlier this year of a Context.ai employee’s system. The threat group ShinyHunters is asking for $2 million for the data stolen in yet another attack linked to a third-party provider. First…
-
Vercel Data Breach Linked to Earlier Context.ai Compromise
Hackers breached systems of Vercel, a popular frontend cloud platform provider and Next.js maintainer, in an attack that’s been traced back to the compromise earlier this year of a Context.ai employee’s system. The threat group ShinyHunters is asking for $2 million for the data stolen in yet another attack linked to a third-party provider. First…
-
Hackers exploit Vercel’s trust in AI integration
Allegedly breached by ShinyHunters: According to screenshots circulating on the internet, a threat actor has already claimed the breach on the dark web and is attempting to sell the spoils. “Greetings All, Today I am selling Access Key/ Source Code/ Database from Vercel company,” the actor said in one of such posts. “Give me a…
-
Third-party AI hack triggers Vercel breach, internal environments accessed
Vercel suffered a breach after a hacked Context.ai tool exposed an employee account, letting attackers access limited internal systems and non-sensitive data. Vercel reported a security breach caused by the compromise of a third-party AI tool, Context.ai, used by one of its employees. The attacker took over the employee’s Google Workspace account and used it…
-
Vercel April 2026 Incident: Non-Sensitive Environment Variables Need Investigation Too
Vercel’s Context.ai breach exposed environment variables that weren’t marked sensitive. Learn how to pull and scan your secrets with GitGuardian. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/vercel-april-2026-incident-non-sensitive-environment-variables-need-investigation-too/
-
Trump Taxes and the Price of Privacy
Data breach litigation faces a valuation crisis as courts and the Trump v. IRS case grapple with the “concrete harm” requirement and the actual dollar value of privacy. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/trump-taxes-and-the-price-of-privacy/
-
Fake Helpdesk Attack Uses Teams and Quick Assist to Breach Targets
Attackers are increasingly abusing Microsoft Teams and Windows Quick Assist to run a helpdesk”‘themed social engineering attack chain that leads to full enterprise compromise and stealthy data theft. By impersonating IT support and relying on legitimate tools and protocols, adversaries can move laterally and exfiltrate data while blending into normal admin activity. Using names such as “Help…
-
Vercel confirms breach as hackers claim to be selling stolen data
Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems and are attempting to sell stolen data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vercel-confirms-breach-as-hackers-claim-to-be-selling-stolen-data/
-
Vercel confirms breach as hackers claim to be selling stolen data
Cloud development platform Vercel has disclosed a security incident after threat actors claimed to have breached its systems and are attempting to sell stolen data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vercel-confirms-breach-as-hackers-claim-to-be-selling-stolen-data/
-
It Takes 2 Minutes to Hack the EU’s New Age-Verification App
Plus: Major data breaches at a gym chain and hotel giant, a disruptive DDoS attack against Bluesky, dubious ICE hires, and more. First seen on wired.com Jump to article: www.wired.com/story/security-news-this-week-it-takes-2-minutes-to-hack-the-eus-new-age-verification-app/
-
It Takes 2 Minutes to Hack the EU’s New Age-Verification App
Plus: Major data breaches at a gym chain and hotel giant, a disruptive DDoS attack against Bluesky, dubious ICE hires, and more. First seen on wired.com Jump to article: www.wired.com/story/security-news-this-week-it-takes-2-minutes-to-hack-the-eus-new-age-verification-app/
-
Ignoring DPDP Compliance? Here’s the Risk to Your Organization
In boardroom discussions, data breaches are typically evaluated through the lens of financial impact, regulatory exposure, and operational disruption. While these factors are critical, they often overshadow a more fundamental concern: the consumer. Every piece of personal data collected by an organization represents a relationship built on trust. When that data is mishandled, exposed, or……
-
Ignoring DPDP Compliance? Here’s the Risk to Your Organization
In boardroom discussions, data breaches are typically evaluated through the lens of financial impact, regulatory exposure, and operational disruption. While these factors are critical, they often overshadow a more fundamental concern: the consumer. Every piece of personal data collected by an organization represents a relationship built on trust. When that data is mishandled, exposed, or……
-
Kyrgyzstan-based crypto exchange Grinex shuts down after $13.7M cyber heist, blames Western Intelligence
Grinex halted operations after a $13.7M hack, blaming Western intelligence. Stolen funds came from wallets of Russian users on the platform. Kyrgyz crypto exchange Grinex halted operations after a threat actor stole $13.7 million in a cyber attack that the company attributes to Western intelligence agencies. The stolen funds belonged to Russian users, as the…
-
Critical Exploits, AI Shifts, and Major Breaches Redefine Cybersecurity This Week
Weekly summary of Cybersecurity Insider newsletters First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/weekly-roundup/critical-exploits-ai-shifts-and-major-breaches-redefine-cybersecurity-this-week/
-
Critical Exploits, AI Shifts, and Major Breaches Redefine Cybersecurity This Week
Weekly summary of Cybersecurity Insider newsletters First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/weekly-roundup/critical-exploits-ai-shifts-and-major-breaches-redefine-cybersecurity-this-week/
-
Booking.com Breach Shows Exactly How Smishing Attacks Get Made
Booking.com’s breach exposed names, phone numbers, and booking details now being used in targeted WhatsApp phishing. Constella explains how the PII-to-smishing pipeline works and what to do about it. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/booking-com-breach-shows-exactly-how-smishing-attacks-get-made/
-
Man who hacked US Supreme Court filing system sentenced to probation
Nicholas Moore hacked into three U.S. government networks using stolen credentials, and then bragged about it and posted victims’ personal data on Instagram under the handle @ihackedthegovernment. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/17/man-who-hacked-us-supreme-court-filing-system-sentenced-to-probation/
-
When Geopolitics Writes Your Compliance Roadmap
Cyber policy has always lagged cyber reality. Regulations arrive after breaches, frameworks emerge after failures, and accountability structures materialize long after the damage lands on someone else’s balance sheet. NCC Group’s fifth edition of its Global Cyber Policy Radar suggests that cycle is finally breaking, not because governments have gotten smarter, but because the.. First…
-
DraftKings hacker sentenced to prison, ordered to pay $1.4 Million
A DraftKings hacker got 30 months in prison for selling stolen credentials and must pay over $1.4 million in fines and restitution. Kamerin Stokes, 23, from Memphis (aka TheMFNPlug), received a 30-month prison sentence for his role in a 2022 credential stuffing attack against DraftKings. He continued selling stolen login data online even after pleading…