Tag: data-breach
-
Low-Code, High Risk: Millions of Records Exposed via Misconfigured Microsoft Power Pages
Security researcher investigated Microsoft Power Pages installations and found several with misconfigurations allowing unintentional access to confidential data. The post Low-Code, High Risk: Millions of Records Exposed via Misconfigured Microsoft Power Pages appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/low-code-high-risk-millions-of-records-exposed-via-misconfigured-microsoft-power-pages/
-
Destatis von Hackern angegriffen: Sensible Unternehmensdaten im Darknet aufgetaucht
Destatis-Hack: Unternehmensdaten deutscher Firmen im Darknet aufgetaucht. Das Datenleck betrifft sensible Informationen. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/destatis-von-hackern-angegriffen-sensible-unternehmensdaten-im-darknet-aufgetaucht-304250.html
-
1.1 Million UK NHS Employee Records Exposed From Microsoft Power Pages Misconfiguration
Security researchers from AppOmni have uncovered millions of business records that are accessible to anyone through low-code website builder Microsoft Power Pages. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/uk-nhs-employee-records-exposed/
-
IT specialist Jack Teixeira jailed for 15 years after leaking classified military documents on Discord
Jack Teixeira, the 22-year-old former Air National Guardsman who leaked hundreds of classified documents online, has been sentenced to 15 years in prison. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/it-specialist-jack-teixeira-jailed-for-15-years-after-leaking-classified-military-documents-on-discord
-
Kids’ shoemaker Start-Rite trips over security again, spilling customer card info
Full details exposed, putting shoppers at serious risk of fraud First seen on theregister.com Jump to article: www.theregister.com/2024/11/14/smartrite_breach/
-
5 BCDR Oversights That Leave You Exposed to Ransomware
Ransomware isn’t just a buzzword; it’s one of the most dreaded challenges businesses face in this increasingly digitized world. Ransomware attacks are not only increasing in frequency but also in sophistication, with new ransomware groups constantly emerging. Their attack methods are evolving rapidly, becoming more dangerous and damaging than ever. Almost all respondents (99.8%) in…
-
Datenleck bei Online-Auskunftei: Hackerin kann beliebige Bonitätsdaten einsehen
Tags: data-breachDie Aktivistin Lilith Wittmann fand einen neuen Weg, beliebige Bonitätsdaten mit wenig Aufwand abzurufen. Der Anbieter reagierte mit Abschaltung. First seen on heise.de Jump to article: www.heise.de/news/Datenleck-bei-Online-Auskunftei-Hackerin-kann-beliebige-Bonitaetsdaten-einsehen-10034774.html
-
WIRTE: Hamas-Linked Cyber Espionage Group Now Wielding SameCoin Wiper Malware
Check Point Research recently exposed ongoing activity from WIRTE, a Hamas-affiliated cyber-espionage group, that continues despite the intensifying conflict in the Middle East. Historically focused on espionage, WIRTE has expanded... First seen on securityonline.info Jump to article: securityonline.info/wirte-hamas-linked-cyber-espionage-group-now-wielding-samecoin-wiper-malware/
-
Leaked info of 122 million linked to B2B data aggregator breach
The business contact information for 122 million people circulating since February 2024 is now confirmed to have been stolen from a B2B demand generation platform. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/leaked-info-of-122-million-linked-to-b2b-data-aggregator-breach/
-
Hot Topic data breach exposed personal data of 57 million customers
Millions of customers of Hot Topic have been informed that their personal data was compromised during an October data breach at the American retailer. Have I Been Pwned (HIBP), the breach notification service, said this week that it alerted 57 million Hot Topic customers that their data had been compromised. The stolen data includes email…
-
Exposed United Nations Database Left Sensitive Information Accessible Online
More than 115,000 files related to UN Women included detailed financial disclosures from organizations around the world, and personal details and test… First seen on wired.com Jump to article: www.wired.com/story/un-women-database-exposure/
-
D-Link won’t fix critical bug in 60,000 exposed EoL modems
Tens of thousands of exposed D-Link routers that have reached their end-of-life are vulnerable to a critical security issue that allows an unauthenticated remote attacker to change any user’s password and take complete control of the device. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/d-link-wont-fix-critical-bug-in-60-000-exposed-eol-modems/
-
Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned
Cybersecurity researchers have flagged a massive campaign that targets exposed Git configurations to siphon credentials, clone private repositories, a… First seen on thehackernews.com Jump to article: thehackernews.com/2024/11/massive-git-config-breach-exposes-15000.html
-
Citrix ‘Recording Manager’ Zero-Day Bug Allows Unauthenticated RCE
The security vulnerability is due to an exposed Microsoft Message Queuing (MSMQ) instance and the use of the insecure BinaryFormatter. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/citrix-recording-manager-zero-day-bug-unauthenticated-rce
-
Halliburton Optimistic Amid $35M Data Breach Loss
Though its third-quarter earnings report confirms that the company remains on track, it’s unclear how that will be affected if the threat actors commit further damage. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/halliburton-optimistic-35m-data-breach-losses
-
Amazon confirms employee data exposed in leak linked to MOVEit vulnerability
Over 5 million records from 25 organizations posted to black hat forum First seen on theregister.com Jump to article: www.theregister.com/2024/11/12/amazon_moveit_breach/
-
Form I-9 Compliance Data Breach Impacts Over 190,000 People
The impact of a data breach suffered by Form I-9 Compliance is growing, with the number of affected individuals reaching 190,000. The post Form I-9 Compliance Data Breach Impacts Over 190,000 People appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/form-i-9-compliance-data-breach-impacts-over-190000-people/
-
Millions of Hot Topic Customers Impacted by Data Breach
Hot Topic has suffered a data breach impacting approximately 57 million unique email addresses and the personal information of roughly 25 million. The post Millions of Hot Topic Customers Impacted by Data Breach appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/millions-of-hot-topic-customers-impacted-by-data-breach/
-
Halliburton Remains Optimistic Amid $35M Data Breach Losses
Though its third-quarter earnings report confirms that the company remains on track, it’s unclear how that will be affected if the threat actors commit further damage. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/halliburton-optimistic-35m-data-breach-losses
-
Amazon Employee Data Leaked by Hacker
Amazon has confirmed that some employee data was compromised as a result of a MOVEit hack last year. The post Amazon Employee Data Leaked by Hacker appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/amazon-employee-data-leaked-by-hacker/
-
Massive troves of Amazon, HSBC employee data leaked
A threat actor who goes by the online moniker >>Nam3L3ss
-
Amazon Confirms Employee Data Breach Via Third-party Vendor
Amazon has confirmed that sensitive employee data was exposed due to a breach at a third-party vendor. The breach arose from exploiting a critical vulnerability in MOVEit, a widely used file transfer software. The vulnerability, first reported in mid-2023 under the code CVE-2023-34362, has been linked to a massive leak of corporate information affecting multiple…
-
SEO Poisoning: Unmasking the Malware Networks Behind Fake E-Commerce
In a joint study with Japanese authorities and universities, Trend Micro has exposed a web of SEO malware families orchestrating fake e-commerce scams targeting Japanese users. The study highlights a... First seen on securityonline.info Jump to article: securityonline.info/seo-poisoning-unmasking-the-malware-networks-behind-fake-e-commerce/
-
Amazon discloses employee data breach after May 2023 MOVEit attacks
Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks. Amazon disclosed a data breach that exposed employee information after data was allegedly stolen during the May 2023 MOVEit attacks. The company said that the data was stolen from a third-party vendor. Amazon did not disclose the…
-
HIBP notifies 57 million people of Hot Topic data breach
Have I Been Pwned warns that an alleged data breach exposed the personal information of 56,904,909 accounts for Hot Topic, Box Lunch, and Torrid customers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hibp-notifies-57-million-people-of-hot-topic-data-breach/
-
Amazon confirms employee data breach after vendor hack
Amazon confirmed a data breach involving employee information after data allegedly stolen during the May 2023 MOVEit attacks was leaked on a hacking forum. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/amazon-confirms-employee-data-breach-after-vendor-hack/
-
Debt Relief Firm Forth Discloses Data Breach Impacting 1.5 Million People
Forth says the personal information of 1.5 million people was compromised in a May 2024 data breach. The post Debt Relief Firm Forth Discloses Data Breach Impacting 1.5 Million People appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/debt-relief-firm-forth-discloses-data-breach-impacting-1-5-million-people/
-
Law Firm Data Breach Impacts 300,000 Presbyterian Healthcare Patients
The information of over 300,000 Presbyterian Healthcare Services patients was compromised as a result of a data breach at law firm Thompson Coburn. The post Law Firm Data Breach Impacts 300,000 Presbyterian Healthcare Patients appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/law-firm-data-breach-impacts-300000-presbyterian-healthcare-patients/
-
Many Legacy D-Link NAS Devices Exposed to Remote Attacks via Critical Flaw
D-Link warns of a critical-severity command injection vulnerability impacting multiple discontinued NAS models. The post Many Legacy D-Link NAS Devices Exposed to Remote Attacks via Critical Flaw appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/many-legacy-d-link-nas-devices-exposed-to-remote-attacks-via-critical-flaw/