Tag: data-breach
-
9 things CISOs need know about the dark web
Tags: 2fa, access, ai, attack, automation, backup, blockchain, botnet, breach, captcha, ceo, ciso, communications, corporate, credentials, crypto, cyber, cybercrime, cybersecurity, dark-web, data, data-breach, ddos, deep-fake, defense, detection, dns, exploit, extortion, finance, fraud, group, guide, hacking, identity, incident, incident response, infrastructure, intelligence, international, jobs, law, leak, lockbit, malicious, malware, marketplace, mfa, monitoring, network, open-source, phishing, privacy, ransomware, resilience, risk, russia, saas, scam, service, strategy, tactics, technology, threat, tool, training, vpn, vulnerability, zero-dayNew groups form after major marketplaces are disrupted: International takedown efforts damage infrastructure and curb cybercrime operations by disrupting larger operations, removing major players from the ecosystem and scattering user bases.However, the dark web is highly adaptive and sophisticated actors often maintain contingency plans, including mirrors, backups, and alternative forums, according to Edward Currie, associate…
-
North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online
A member of North Korea’s notorious Kimsuky espionage group has experienced a significant data breach after insiders leaked hundreds of gigabytes of internal files and tools to the public. The breach, which emerged in early June 2025, exposed the group’s sophisticated backdoors, phishing frameworks, and reconnaissance operations, marking a rare setback for the state-sponsored threat…
-
North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online
A member of North Korea’s notorious Kimsuky espionage group has experienced a significant data breach after insiders leaked hundreds of gigabytes of internal files and tools to the public. The breach, which emerged in early June 2025, exposed the group’s sophisticated backdoors, phishing frameworks, and reconnaissance operations, marking a rare setback for the state-sponsored threat…
-
Carmaker Portal Flaw Could Let Hackers Unlock Cars, Steal Data
A security vulnerability in a major carmaker’s online portal exposed customer data and could have let hackers remotely… First seen on hackread.com Jump to article: hackread.com/carmaker-portal-flaw-hackers-unlock-cars-steal-data/
-
North Korean Kimsuky hackers exposed in alleged data breach
The North Korean state-sponsored hackers known as Kimsuky has reportedly suffered a data breach after two hackers, who describe themselves as the opposite of Kimsuky’s values, stole the group’s data and leaked it publicly online. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/north-korean-kimsuky-hackers-exposed-in-alleged-data-breach/
-
Sicherheits-News: Datenlecks (Google, Telekom); Schwachstellen (WinRAR, Windows) und mehr
Noch ein kleiner Sammelbeitrag zu Sicherheitsthemen. Es gibt mal wieder Datenlecks, bei Google, bei der Telekom etc. Die Software WinRAR enthält eine Schwachstelle, über die Schadsoftware ausgeliefert wird. Und Domain Controller mit Windows können in ein DDoS-Werkzeug verwandelt werden, die … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/08/11/sicherheits-news-datenlecks-google-telekom-schwachstellen-winrar-windows-und-mehr/
-
Legitimate System Functions Exploited to Steal Secrets in Shared Linux Setups
Security researcher IonuÈ› Cernica revealed how commonplace Linux utilities can be weaponized to siphon sensitive data in multi-tenant environments. His talk, “Silent Leaks: Harvesting Secrets from Shared Linux Environments,” exposed that without any root privileges or zero-day exploits, attackers can exploit standard tools”, such as ps, /proc, and temporary file handling”, to harvest database credentials, API keys,…
-
Legitimate System Functions Exploited to Steal Secrets in Shared Linux Setups
Security researcher IonuÈ› Cernica revealed how commonplace Linux utilities can be weaponized to siphon sensitive data in multi-tenant environments. His talk, “Silent Leaks: Harvesting Secrets from Shared Linux Environments,” exposed that without any root privileges or zero-day exploits, attackers can exploit standard tools”, such as ps, /proc, and temporary file handling”, to harvest database credentials, API keys,…
-
Over 29,000 Exchange servers unpatched against high-severity flaw
Over 29,000 Exchange servers exposed online remain unpatched against a high-severity vulnerability that can let attackers move laterally in Microsoft cloud environments, potentially leading to complete domain compromise. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/over-29-000-exchange-servers-unpatched-against-high-severity-flaw/
-
Connex Credit Union data breach impacts 172,000 members
Connex, one of Connecticut’s largest credit unions, warned tens of thousands of members that unknown attackers had stolen their personal and financial information after breaching its systems in early June. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/connex-credit-union-discloses-data-breach-impacting-172-000-people/
-
Security flaws in a carmaker’s web portal let one hacker remotely unlock cars from anywhere
Security researcher Eaton Zveare told TechCrunch that the flaws he discovered in the carmaker’s centralized dealer portal exposed vast access to customer and vehicle data. With this access, Zveare said he could remotely take over a customer’s account and unlock their cars, and more. First seen on techcrunch.com Jump to article: techcrunch.com/2025/08/10/security-flaws-in-a-carmakers-web-portal-let-one-hacker-remotely-unlock-cars-from-anywhere/
-
Google Hacked Approx 2.5 Million Records of Google Ads Customer Data Leaked
Google has disclosed a significant data breach involving one of its corporate Salesforce instances, compromising customer data tied to its Google Ads platform. Google has not revealed the exact number of people impacted, but according to ShinyHunters, who spoke with Cyber Security News, the breach exposed around 2.5 million records (Approx). Whether some of these…
-
Bouygues Telecom Hit by Cyberattack, 6.4 Million Customers Affected
A cyberattack on Bouygues Telecom exposed data for 6.4 million customers. Find out what information was compromised and… First seen on hackread.com Jump to article: hackread.com/bouygues-telecom-cyberattack-6-4m-customers-affected/
-
Columbia University Breach Affects Nearly 870,000 People
Columbia University has confirmed that a cyberattack exposed personal information for close to 870,000 people, including current and former students, applicants, employees, and others connected to the school. The attack began in mid-May but didn’t come to light until a system outage in late June. From there, it took several weeks of investigation to figure……
-
Google confirms data breach exposed potential Google Ads customers’ info
Google has confirmed that a recently disclosed data breach of one of its Salesforce CRM instances involved the information of potential Google Ads customers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-confirms-data-breach-exposed-potential-google-ads-customers-info/
-
How Secure Code Review Strengthen Web Apps Security?
Twitter recently suffered a data breach due to misconfigured settings in its application programming interface (API). As a result, hackers accessed the personal data of 5.4 million users and leaked it on an online forum. The stolen data was later put up for sale by threat actors for $30,000. Incidents like this serve as a……
-
Telekom-Streaming: Datenleck bei Magenta TV betrifft Millionen Nutzer
Tags: data-breachEin umfangreiches Datenleck bei Magenta TV hat offenbar mehrere Monate lang Nutzerdaten von Kunden der Deutschen Telekom preisgegeben. First seen on golem.de Jump to article: www.golem.de/news/telekom-streaming-datenleck-bei-magenta-tv-betrifft-millionen-nutzer-2508-198996.html
-
Over 28,000 Microsoft Exchange Servers Exposed Online to CVE-2025-53786 Vulnerability
Tags: access, cve, cvss, cyber, cybersecurity, data, data-breach, flaw, Internet, microsoft, threat, vulnerabilityThe cybersecurity community faces a significant threat as scanning data reveals over 28,000 unpatched Microsoft Exchange servers remain exposed on the public internet, vulnerable to a critical security flaw designated CVE-2025-53786. This high-severity vulnerability, which carries a CVSS score of 8.0 out of 10, enables attackers with administrative access to on-premises Exchange servers to escalate…
-
French firm Bouygues Telecom suffered a data breach impacting 6.4M customers
Bouygues Telecom suffered a cyberattack that compromised the personal information of 6.4 million customers. French telecommunications company Bouygues Telecom suffered a cyberattack that resulted in the compromise of personal information of 6.4 million customers. Bouygues Telecom, part of the Bouygues industrial group, is one of France’s leading telecom providers, offering mobile, internet, and IPTV services.…
-
Columbia University data breach impacted 868,969 people
Columbia University was hit by a cyberattack, exposing personal data of over 860,000 students, applicants, and employees. Columbia University suffered a cyberattack that exposed the personal data of students, applicants, and employees. According to the data breach notification sent to the Maine Attorney’s General Office, the incident impacted 868,969 people. The organization quickly notified law enforcement.…
-
860K Compromised in Columbia University Data Breach
While no data has yet to be misused, the university doesn’t rule out the possibility of that occurring in the future, prompting it to warn affected individuals to remain vigilant in the wake of the breach. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/columbia-university-data-breach
-
Tea App Data Breach Fallout: A New App with Security Flaws and Lawsuits
In the wake of the high-profile data breaches of the popular and controversial Tea app, another app called TeaOnHer for men launched that not only copied many of Tea’s features but also came with its own security flaws that expose user data. Also, the company behind Tea faces at least 10 lawsuits related to the…
-
Federal judiciary tightens digital security as it deals with ‘escalated cyberattacks’
The statement followed a Wednesday report from Politico revealing a major hack of the courts’ case filing system which officials feared exposed the identities of confidential informants in criminal cases. First seen on therecord.media Jump to article: therecord.media/federal-judiciary-tightens-digital-security-escalated-cyberattack
-
Columbia University says hacker stole SSNs and other data of nearly 900,000
Data breach notifications filed with state governments explain the types of data taken from Columbia University networks in a widely publicized cyberattack earlier this year. First seen on therecord.media Jump to article: therecord.media/columbia-university-data-breach-cyberattack-notifications
-
Columbia University Data Breach Exposes Personal and Financial Data of 870,000
Columbia University disclosed a significant cybersecurity incident that compromised personal and financial information of nearly 870,000 individuals, making it one of the largest data breaches affecting an educational institution this year. The breach, which occurred between May 16 and June 2025, was discovered on July 8, 2025, and affected individuals were notified on August 7,…
-
Australian Regulator Sues Optus Over 2022 Data Breach
The Information Commissioner has applied for a civil penalty against Optus following the 2022 data breach that exposed the personal details of 9.5 million Australians First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/australian-regulatory-sues-optus/
-
Leaked Credentials Up 160%: What Attackers Are Doing With Them
When an organization’s credentials are leaked, the immediate consequences are rarely visible”, but the long-term impact is far-reaching. Far from the cloak-and-dagger tactics seen in fiction, many real-world cyber breaches begin with something deceptively simple: a username and password.According to Verizon’s 2025 Data Breach Investigations Report, leaked credentials accounted for 22% of breaches First seen…
-
Leaked Credentials Up 160%: What Attackers Are Doing With Them
When an organization’s credentials are leaked, the immediate consequences are rarely visible”, but the long-term impact is far-reaching. Far from the cloak-and-dagger tactics seen in fiction, many real-world cyber breaches begin with something deceptively simple: a username and password.According to Verizon’s 2025 Data Breach Investigations Report, leaked credentials accounted for 22% of breaches First seen…
-
Columbia University data breach impacts nearly 870,000 individuals
An unknown threat actor has stolen the sensitive personal, financial, and health information of nearly 870,000 Columbia University current and former students and employees after breaching the university’s network in May. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/columbia-university-data-breach-impacts-nearly-870-000-students-applicants-employees/
-
Bouygues Telecom Data Breach Exposes 6.4 Million Customer Records
Bouygues Telecom revealed the attackers stole personal data of 6.4 million customers, including contact details, contractual data and international bank account numbers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bouygues-telecom-breach-customer/