Tag: data-breach
-
Source Code Of macOS Banshee Stealer Leaked
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36643/Source-Code-Of-macOS-Banshee-Stealer-Leaked.html
-
Datenpanne bei brillen.de weitere Details bekannt geworden
Tags: data-breachIm Oktober 2024 wurde bekannt, dass es bei brillen.de ein Datenleck gab (siehe Bei brillen.de standen 3,5 Millionen Kundendaten offen im Internet). Die Fehlkonfiguration für AWS-Server erfolgte bereits am 7. August 2024, ein Leser hatte am 27. August 2024 deren Server … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/11/27/datenpassen-bei-brillen-de-weitere-details-bekannt-geworden/
-
New York Fines GEICO And Travelers 11.3 Million In Data Breach Cases
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36647/New-York-Fines-GEICO-And-Travelers-11.3-Million-In-Data-Breach-Cases.html
-
Banshee Stealer Quellcode geleakt: macOS-Malware unschädlich gemacht
Cyberkriminelle geben auf: Die Malware Banshee Stealer für MacOS wurde nach Veröffentlichung des Quellcodes aufgegeben. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/banshee-stealer-quellcode-geleakt-macos-malware-unschaedlich-gemacht-304847.html
-
Source Code of $3,000Month macOS Malware ‘Banshee Stealer’ Leaked
The Banshee Stealer macOS malware operation, which emerged earlier this year, was reportedly shut down following a source code leak. The post Source Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ Leaked appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/source-code-of-3000-a-month-macos-malware-banshee-stealer-leaked/
-
Apple M-1, M-2 Chips Vulnerable to GoFetch Attack, Encryption Keys Exposed
Researchers unearthed a significant vulnerability lurking within Apple’s M-1 and M-2 chips, potentially exposing a chink in the armor of the tech gian… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/gofetch-attack-apple-m1-m2-chips/
-
brillen.de: Hintergründe zum Datenleck
Tags: data-breachMitte November wurde ein Datenleck bei brillen.de bekannt. Die Untersuchung des Vorfalls liefert erste Details zu den Ursachen. First seen on heise.de Jump to article: www.heise.de/news/Datenleck-bei-brillen-de-Details-zu-den-Ursachen-10178182.html
-
Canadian privacy regulators publish details of medical testing company’s data breach
First seen on therecord.media Jump to article: therecord.media/canadian-privacy-regulators-publish-life-labs-investigation
-
200,000 WordPress Sites Exposed to Cyber Attack, Following Plugin Vulnerability
A critical security vulnerability has been discovered in the popular WordPress plugin Anti-Spam by CleanTalk, which is installed on over 200,000 websites. The vulnerability, which includes two distinct flaws (CVE-2024-10542 and CVE-2024-10781), could allow attackers to install and activate arbitrary plugins on affected websites, potentially leading to remote code execution and full site compromise. Website owners…
-
The source code of Banshee Stealer leaked online
Banshee Stealer, a MacOS Malware-as-a-Service, shut down after its source code leaked online. The code is now available on GitHub. In August 2024, Russian hackers promoted BANSHEE Stealer, a macOS malware targeting x86_64 and ARM64, capable of stealing browser data, crypto wallets, and more. BANSHEE Stealer supports basic evasion techniques, relies on the sysctl API…
-
New York fines Geico, Travelers $11 million for exposed driver’s license numbers
Tags: data-breachFirst seen on therecord.media Jump to article: therecord.media/new-york-fines-auto-insurers-11-million-leaked-data
-
Data breach compromises Bojangles
First seen on scworld.com Jump to article: www.scworld.com/brief/data-breach-compromises-bojangles
-
FlipaClip animation app data breach exposes details of almost 900,000 users
Flipaclip, an animation creation app that is particularly popular with youngsters, has exposed the details of over 890,000 users. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/flipaclip-animation-app-data-breach-900-000-users
-
New York Secures $11.3m from Insurance Firms in Data Breach Settlement
New York State has agreed a $11.3m settlement from two insurance firms following the breach of the personal data of over 120,000 drivers in the state First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/new-york-insurance-data-breach/
-
Gangster counseling center fears data leak
If personal data is stolen, it is anything but a pleasure for those affected. However, when it comes to those previously involved in, or victims of, organized crime, the potential consequences are far more serious: Life and limb could be at stake.While it may sound a little far-fetched, this apparently what happened in the Japanese…
-
Walking the Walk: How Tenable Embraces Its >>Secure by Design<< Pledge to CISA
Tags: access, application-security, attack, authentication, best-practice, business, cisa, cloud, conference, container, control, credentials, cve, cvss, cyber, cybersecurity, data, data-breach, defense, exploit, Hardware, identity, infrastructure, injection, Internet, leak, lessons-learned, mfa, open-source, passkey, password, phishing, risk, saas, service, siem, software, sql, strategy, supply-chain, theft, threat, tool, update, vulnerability, vulnerability-managementAs a cybersecurity leader, Tenable was proud to be one of the original signatories of CISA’s “Secure by Design” pledge earlier this year. Our embrace of this pledge underscores our commitment to security-first principles and reaffirms our dedication to shipping robust, secure products that our users can trust. Read on to learn how we’re standing…
-
Facebook, Deezer, Ticketmaster lohnt sich die Klage bei einem Datenleck?
Tags: data-breachFirst seen on t3n.de Jump to article: t3n.de/news/facebook-deezer-ticketmaster-klage-datenleck-1659423/
-
99% of UAE’s .ae Domains Exposed to Phishing and Spoofing
Only 1.11% of UAE’s 37,926 .ae domains have implemented DMARC, leaving most vulnerable to phishing and and spoofing attacks. First seen on hackread.com Jump to article: hackread.com/uae-ae-domains-exposed-phishing-spoofing/
-
Huge Leak of Customer Data Includes Military Personnel Info
EnamelPins, which manufactures and sells medals, pins, and other emblematic accessories, for months left open an Elasticsearch instance that exposed 300,000 customer emails, including 2,500 from military and government personnel. The company, based in California, also has links to China, Cybernews researchers wrote. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/huge-leak-of-customer-data-includes-military-personnel-info/
-
Microlise Confirms Data Breach as Ransomware Group Steps Forward
The SafePay ransomware group claims to have stolen over 1 terabyte of data from vehicle tracking solutions provider Microlise. The post Microlise Confirms Data Breach as Ransomware Group Steps Forward appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/microlise-confirms-data-breach-as-ransomware-group-steps-forward/
-
Massive Credit Card Leak, Database of 1,221,551 Cards Circulating on Dark Web
Tags: breach, credit-card, cyber, cybersecurity, dark-web, data, data-breach, finance, leak, maliciousA massive data breach has sent shockwaves across the globe, as a database containing sensitive financial information for over 1.2 million credit cards has been leaked on the dark web. According to reports from cybersecurity watchers, the database was shared for free, making it accessible to malicious actors worldwide. The alarming revelation was first highlighted…
-
Fake Identities, Real Profits: Exposing North Korea’s IT Front Companies
SentinelLabs has exposed a sophisticated network of front companies linked to North Korean IT workers. These entities, operating under the guise of legitimate businesses, were recently disrupted by U.S. law... First seen on securityonline.info Jump to article: securityonline.info/fake-identities-real-profits-exposing-north-koreas-it-front-companies/
-
Andrew Tate’s University Breach: 1 Million User Records and Chats Leaked
Andrew Tate’s >>The Real World
-
Yakuza Victim Data Leaked in Japanese Agency Attack
A local government resource for helping Japanese citizens cut ties with organized crime was successfully phished in a tech support scam, and could have dangerous consequences. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/yakuza-victim-data-leaked-japanese-attack
-
US and Europe Account for 73% of Global Exposed ICS Systems
Tags: data-breach73% of globally exposed ICS systems are in the US and Europe, with the US leading at 38%…. First seen on hackread.com Jump to article: hackread.com/us-europe-account-73-global-exposed-ics-systems/
-
400,000 Systems Potentially Exposed to 2023’s Most Exploited Flaws
VulnCheck finds hundreds of thousands of internet-accessible hosts potentially vulnerable to 2023’s top frequently exploited flaws. The post 400,000 Systems Potentially Exposed to 2023’s Most Exploited Flaws appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/400000-systems-potentially-exposed-to-2023s-most-exploited-flaws/
-
145,000 ICS Systems, Thousands of HMIs Exposed to Cyber Attacks
Critical infrastructure, the lifeblood of modern society, is under increasing threat as a new report from Censys reveals that over 145,000 industrial control system (ICS) devices are exposed to the internet. Among these, thousands of human-machine interfaces (HMIs), which allow operators to control critical systems, remain unsecured, leaving them vulnerable to exploitation by […] The…
-
Unbefugter Zugriff bei einem FinTech-Unternehmen
Fintech Giant Finastra Investigating Data Breach First seen on krebsonsecurity.com Jump to article: krebsonsecurity.com/2024/11/fintech-giant-finastra-investigating-data-breach/