Tag: data-breach
-
Over 170K Income Property Investments records inadvertently exposed
Tags: data-breachFirst seen on scworld.com Jump to article: www.scworld.com/brief/over-170k-income-property-investments-records-inadvertently-exposed
-
UAC-0001 Hackers Target ICS Devices Running Windows-Based Server Systems
The national team for responding to cyber incidents, CERT-UA, has exposed a sophisticated cyberattack targeting the information and communication system (ICS) of a central executive body in March-April 2024. During the implementation of response measures, a technical device running a Windows operating system, functioning as a server, was found to be compromised with two malicious…
-
US Judge Okays $177 Million AT&T Data Breach Settlement
Preliminary Approval Granted to Settle Lawsuits Over Snowflake Breach, Dataset. A federal judge has granted preliminary approval for AT&T to settle multiple data breach lawsuits for $177 million. The lawsuits pertain to a customer dataset from 2021 that was circulating on cybercrime forums, and to the 2024 breach of AT&T’s Snowflake account. First seen on…
-
Cyber Fattah Leaks Data from Saudi Games in Alleged Iranian Operation
A cyber-attack by pro-Iranian group Cyber Fattah has leaked personal information from the Saudi Games online First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cyber-fattah-leaks-data-saudi-games/
-
Fake Web3 Wallet Prompt Steals $43,000 from CoinMarketCap Users
A cyber-attack on CoinMarketCap exposed users to a fake Web3 wallet prompt, draining $43,266 from wallets First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/web3-wallet-prompt-steals-43000/
-
MCP-Bug bei Asana könnte Unternehmensdaten offengelegt haben
Tags: access, ai, api, authentication, bug, business, chatgpt, ciso, cybersecurity, data-breach, LLM, microsoft, open-source, service, siem, software, tool, trainingCISOs mit einem MCP-Server von Asana in ihrer Umgebung sollten ihre Protokolle und Metadaten auf Datenlecks überprüfen.Die Software-as-a-Service-Plattform Asana zählt zu den beliebtesten Projektmanagement-Tools in Unternehmen. Der Anbieter gab kürzlich bekannt, dass sein MCP-Server (Model Context Protocol) vorübergehend aufgrund eines Bugs offline genommen wurde. Der Server war allerdings bereits nach kurzer Zeit wieder online.Laut Forschern…
-
McLaren Health Care says data breach impacts 743,000 patients
McLaren Health Care is warning 743,000 patients that the health system suffered a data breach caused by a July 2024 attack by the INC ransomware gang. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/mclaren-health-care-says-data-breach-impacts-743-000-patients/
-
McLaren Health Care Data Breach Exposes Personal Information of 743,000 Individuals
McLaren Health Care, a prominent healthcare provider based at One McLaren Parkway, Grand Blanc, MI, has disclosed a data breach that compromised the personal information of 743,131 individuals, including 25 residents of Maine. The breach, identified as an external system hacking event, occurred on July 17, 2024, and was discovered by the organization on August…
-
MCP-Bug bei Asana könnte Unternehmensdaten offengelegt haben
Tags: access, ai, api, authentication, bug, business, chatgpt, ciso, cybersecurity, data-breach, LLM, microsoft, open-source, service, siem, software, tool, trainingCISOs mit einem MCP-Server von Asana in ihrer Umgebung sollten ihre Protokolle und Metadaten auf Datenlecks überprüfen.Die Software-as-a-Service-Plattform Asana zählt zu den beliebtesten Projektmanagement-Tools in Unternehmen. Der Anbieter gab kürzlich bekannt, dass sein MCP-Server (Model Context Protocol) vorübergehend aufgrund eines Bugs offline genommen wurde. Der Server war allerdings bereits nach kurzer Zeit wieder online.Laut Forschern…
-
MCP-Bug bei Asana könnte Unternehmensdaten offengelegt haben
Tags: access, ai, api, authentication, bug, business, chatgpt, ciso, cybersecurity, data-breach, LLM, microsoft, open-source, service, siem, software, tool, trainingCISOs mit einem MCP-Server von Asana in ihrer Umgebung sollten ihre Protokolle und Metadaten auf Datenlecks überprüfen.Die Software-as-a-Service-Plattform Asana zählt zu den beliebtesten Projektmanagement-Tools in Unternehmen. Der Anbieter gab kürzlich bekannt, dass sein MCP-Server (Model Context Protocol) vorübergehend aufgrund eines Bugs offline genommen wurde. Der Server war allerdings bereits nach kurzer Zeit wieder online.Laut Forschern…
-
McLaren Health Care data breach impacted over 743,000 people
The ransomware attack that hit McLaren Health Care in 2024 exposed the personal data of 743,000 individuals. McLaren Health Care is notifying over 743,000 people of a data breach discovered on August 5, 2024. McLaren discovered suspicious activity on its and Karmanos Cancer Institute’s systems on August 5, 2024, revealing a data breach incident. McLaren…
-
Confucius Hackers Target Government and Military Entities Using WooperStealer Malware
The notorious Confucius hacking organization, first exposed by foreign security vendors in 2016, continues to pose a significant threat to government and military entities across South and East Asia. With attack activities dating back to 2013, this group has recently escalated its operations, targeting critical domestic units and industries with advanced tactics. Unveiling a Sophisticated…
-
American steel giant Nucor confirms data breach in May attack
American steel giant Nucor confirms hackers stole data in a May cyberattack, following its earlier disclosure of the incident. Nucor, North America’s largest steel maker, confirmed hackers stole some data in a May cyberattack, following its earlier disclosure of the incident. Nucor Corporation (NYSE:”¯NUE) is a major American steel company headquartered in Charlotte, North Carolina.…
-
Iran-Linked Threat Actors Cyber Fattah Leak Visitors and Athletes’ Data from Saudi Games
Cyber Fattah leaked thousands of records on athletes and visitors from past Saudi Games, per U.S.-based cybersecurity firm Resecurity. Resecurity (USA) identified the threat actors associated with the >>Cyber Fattah
-
16 Milliarden Zugangsdaten im Netz stammen von “Datenhalde”
Die offengelegten Zugangsdaten sollen von einer “Datenhalde” stammen.Bei dem angeblichen riesigen Datenleck, bei dem 16 Milliarden Zugangsdaten zu Apple, Facebook, Google und anderen Anbietern in falsche Hände geraten seien sollen, handelt sich nach Einschätzung von Cybersicherheitsexperten nicht um einen aktuellen Sicherheitsvorfall. “Wir gehen davon aus, dass es sich um ältere Daten von der Datenhalde handelt”,…
-
CoinMarketCap briefly hacked to drain crypto wallets via fake Web3 popup
CoinMarketCap, the popular cryptocurrency price tracking site, suffered a website supply chain attack that exposed site visitors to a wallet drainer campaign to steal visitors’ crypto. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/coinmarketcap-briefly-hacked-to-drain-crypto-wallets-via-fake-web3-popup/
-
Oxford City Council suffers breach exposing two decades of data
Oxford City Council warns it suffered a data breach where attackers accessed personally identifiable information from legacy systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/oxford-city-council-suffers-breach-exposing-two-decades-of-data/
-
16 Billion Leaked Records May Not Be a New Breach, But They’re a Threat
Cybernews researchers reported that since the beginning of the year, they’ve detected 30 datasets containing 16 billion stolen credentials exposed on the internet, most of which had not been previously recorded and represent a massive trove of records that can be used in ransomware, phishing, BEC, and other attacks. First seen on securityboulevard.com Jump to…
-
Die Sache mit den 16 Milliarden Zugangsdaten
Die Woche ging die Meldung über ein riesiges Datenleck mit 16 Milliarden Zugangsdaten durch die Presse. Riesen-Problem für Apple, Google, Meta, Microsoft & Co. hieß es. Hintergrund ist, dass Sicherheitsforscher auf eine entsprechende Datensammlung stießen, die 16 Milliarden Datensätze mit … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/06/22/die-sache-mit-den-16-milliarden-zugangsdaten/
-
Israeli Social Media Users Targeted in Covert Iranian Influence Campaign
A covert Iranian social media operation has been uncovered, targeting Israeli users on platform X with a psychological campaign designed to sow discord and despair. Researchers at the Foundation for Defense of Democracies (FDD) have exposed a Persian-language Telegram channel, CAR ONLINE (@caronline_original), which boasts over 400,000 subscribers and serves as the orchestration hub for…
-
Open Directories Exposes Publically Available tools Used by Hackers
A series of misconfigured web servers have been uncovered, revealing a treasure trove of publicly accessible tools and tactics employed by malicious actors targeting critical infrastructure. These exposed open directories, discovered through Hunt’s advanced scanning capabilities, highlight a significant security lapse that threat actors are exploiting with low-cost, high-reward methods. Unveiling Hidden Threats on the…
-
Internet users advised to change passwords after 16bn logins exposed
Tags: access, credentials, cybercrime, data, data-breach, google, Internet, login, malicious, password, softwareHacked credentials could give cybercriminals access to Facebook, Meta and Google accounts among othersInternet users have been told to change their passwords and upgrade their digital security after researchers claimed to have revealed the scale of sensitive information 16bn login records potentially available to cybercriminals.Researchers at Cybernews, an <a href=”https://cybernews.com/security/billions-credentials-exposed-infostealers-data-leak/”>online tech publication, said they had…
-
Anubis Ransomware Lists Disneyland Paris as New Victim
Anubis ransomware group claims a 64GB data breach at Disneyland Paris, leaking some engineering files and attraction plans via its dark web site. First seen on hackread.com Jump to article: hackread.com/anubis-ransomware-lists-disneyland-paris-new-victim/
-
Malicious AI Agent in LangSmith May Have Exposed API Data
High-Severity Flaw in LangChain’s AI Tooling Hub Now Patched. A flaw in the LangSmith platform, an open-source framework that helps developers build LLM-powered applications, can enable hackers to siphon sensitive data, said Noma Security. Dubbed AgentSmith, the flaw can allow attackers to embed malicious proxy configurations into public AI agents. First seen on govinfosecurity.com Jump…
-
Hype Alert: ‘The Largest Data Breach in History’ That Wasn’t
Experts Debunk Legitimacy of Data Sets With 16 Billion Credentials Being Circulated News broke this week that a colossal set of data comprising 16 billion stolen login credentials has been circulating on the cybercrime underground, making it the largest data breach in history. Don’t believe the hype: experts say the numbers simply don’t add up,…
-
16 Billion Credentials Leaked, Though Some Critics Question the Data
Researchers at Cybernews claim that, of the 30 exposed datasets, only one record has been reported on previously. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-16-billion-credentials-leaked/
-
New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud, and NFC Theft
Cybersecurity researchers have exposed the inner workings of an Android malware called AntiDot that has compromised over 3,775 devices as part of 273 unique campaigns.”Operated by the financially motivated threat actor LARVA-398, AntiDot is actively sold as a Malware-as-a-Service (MaaS) on underground forums and has been linked to a wide range of mobile campaigns,” PRODAFT…