Tag: data-breach
-
Mastery Schools Notifies 37,031 of Major Data Breach
A ransomware attack on Mastery Schools, Philadelphia, has compromised personal information of 37,031 individuals, exposing sensitive data First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/mastery-schools-data-breach/
-
Over 84,000 Roundcube Webmail Installations Exposed to Remote Code Vulnerabilities
Security researchers have identified a critical vulnerability in Roundcube Webmail that affects over 84,000 unpatched installations worldwide, according to data from The Shadowserver Foundation. The vulnerability, designated CVE-2025-49113, enables authenticated attackers to execute arbitrary code remotely and has already been exploited in targeted attacks potentially conducted by state actors. The vulnerability affects all Roundcube versions…
-
AI threats leave SecOps teams burned out and exposed
Security teams are leaning hard into AI, and fast. A recent survey of 500 senior cybersecurity pros at big U.S. companies found that 86% have ramped up their AI use in the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/10/ai-powered-attacks-secops-teams/
-
Data breach impacts Pennsylvanian law firm CML
First seen on scworld.com Jump to article: www.scworld.com/brief/data-breach-impacts-pennsylvanian-law-firm-cml
-
Optima Tax Relief data exposed by Chaos ransomware
First seen on scworld.com Jump to article: www.scworld.com/brief/optima-tax-relief-data-exposed-by-chaos-ransomware
-
Connected and exposed: Building a cyber future America can trust
First seen on scworld.com Jump to article: www.scworld.com/perspective/connected-and-exposed-building-a-cyber-future-america-can-trust
-
Can Online Casino Accounts Be Hacked?
Online casino platforms are not immune to compromise, but the most successful breaches don’t happen through the front door. They happen when users bring bad habits to high-risk environments. For hackers, it’s rarely about breaking encryption, it’s about exploiting behavior. Exposed Credentials Still Drive Most Attacks The majority of online casino account breaches don’t start…
-
Limited Canva Creator Data Exposed Via AI Chatbot Database
A Chroma database operated by Russian AI chatbot startup My Jedai was found exposed online, leaking survey responses… First seen on hackread.com Jump to article: hackread.com/limited-canva-creator-data-expose-ai-chatbot-database/
-
Boards Leave CISOs Exposed to Legal Risks
Attorney Jonathan Armstrong Says Board Diversity Must Include Cybersecurity Skills. Many boards lack cybersecurity expertise, leaving CISOs exposed to legal risks. New fraud laws and AI regulations compound the challenge as security leaders struggle for boardroom support, said Jonathan Armstrong, partner at Punter Southall Law. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/boards-leave-cisos-exposed-to-legal-risks-a-28621
-
Sensata Technologies says personal data stolen by ransomware gang
Sensata Technologies is warning former and current employees it suffered a data breach after concluding an investigation into an April ransomware attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sensata-technologies-says-personal-data-stolen-by-ransomware-gang/
-
Chrome extension privacy promises undone by hardcoded secrets, leaky HTTP
Extension code uses hardcoded credentials: Guo added that hardcoded credentials, such as API keys, secrets, and tokens, are exposed within popular extensions’ JavaScript, making them accessible to anyone who inspects the extension’s source code. For instance, Avast Online Security and Privacy and AVG Online Security extensions, aimed at browsing privacy and security, both contain hardcoded Google…
-
Cloud assets have 115 vulnerabilities on average, some several years old
Tags: access, ai, api, attack, cloud, credentials, data, data-breach, github, gitlab, iam, infrastructure, risk, service, strategy, threat, vulnerabilityIsolated risks lead to bigger issues: Orca also warns that half of organizations have assets exposing attack paths that can lead to sensitive data exposure, as well as 23% with paths that lead to broad permission access and compromised hosts. Attack paths are the combination of risks that appear isolated but can be combined to…
-
Ein pragmatischer Ansatz – Bereit sein fürs Worst-Case-Szenario bei sensiblen Datenlecks
Tags: data-breachFirst seen on security-insider.de Jump to article: www.security-insider.de/datenlecks-worst-case-a-b9140657beda574ae166803d67adf036/
-
Experts found 4 billion user records online, the largest known leak of Chinese personal data from a single source
Over 4 billion user records were found exposed online in a massive breach, possibly linked to the surveillance of Chinese citizens. Cybersecurity researcher Bob Dyachenko and the Cybernews team discovered a massive data leak in China that exposed billions of documents, including financial, WeChat, and Alipay data, likely affecting hundreds of millions. Researchers speculate data…
-
Expanding Bitter APT operation exposed
First seen on scworld.com Jump to article: www.scworld.com/brief/expanding-bitter-apt-operation-exposed
-
Popular Chrome Extensions Found Leaking Data via Unencrypted Connections
Popular Chrome extensions exposed user data by sending it over unencrypted HTTP, raising privacy concerns. Symantec urges caution for users. First seen on hackread.com Jump to article: hackread.com/popular-chrome-extensions-data-leak-unencrypted-connection/
-
Tax resolution firm Optima Tax Relief hit by ransomware, data leaked
U.S. tax resolution firm Optima Tax Relief suffered a Chaos ransomware attack, with the threat actors now leaking data stolen from the company. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/tax-resolution-firm-optima-tax-relief-hit-by-ransomware-data-leaked/
-
Colossal breach exposes 4B Chinese user records in surveillance-grade database
Tags: breach, china, cybercrime, cybersecurity, data, data-breach, disinformation, exploit, finance, fraud, group, identity, infrastructure, insurance, intelligence, iphone, leak, mobile, organized, phishing, phone, threataccording to cybersecurity firm Cybernews, which reported its findings based on its own research.What makes this breach particularly alarming isn’t just its size, though at four billion records, it’s believed to be the largest single-source leak of Chinese personal data ever found, it’s the breadth and depth of information that was exposed.According to the report, the researchers stumbled…
-
Why Most Exposed Secrets Never Get Fixed
Our latest State of Secrets Sprawl 2025 research reveals a troubling reality: the majority of leaked corporate secrets found in public code repositories continue to provide access to systems for years after their discovery. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/06/why-most-exposed-secrets-never-get-fixed/
-
Millions of pilfered AT&T records exposed
First seen on scworld.com Jump to article: www.scworld.com/brief/millions-of-pilfered-att-records-exposed
-
Breach Roundup: Ukraine Hacks Russian Warplane Maker
Also, Crypter Takedown, Threat Intel Naming Accord and Regulators Ping CrowdStrike. This week, Ukraine hacked Tupelov, Russian hacking, crypter sites seized and the U.S. will seize North Korean IT worker crypto. Regulators probed CrowdStrike. A Rosetta Stone for intel. A Romanian man admitted to swatting, Lee Enterprises hack exposed data and an FBI vet joined…
-
AT&T Hit by Massive Reported Identity Data Leak – Again
Leaked Records Include Names, Decrypted Social Security Numbers and Addresses. Hackers have seemingly re-released a refined trove of 86 million AT&T records, including decrypted Social Security numbers and full identity data, heightening the risk of fraud and impersonation for tens of millions of users as researchers cite structural improvements in the dataset. First seen on…
-
Yet Another Exposed Database, This Time with 184 Million Records
I had hoped by now we’d be long past the discovery of exposed or misconfigured databases, considering how dangerous they can be to businesses, governments and individuals”, and given the heightened security measures that most organizations have implemented to secure sensitive data and prevent such exposure. But here we are again”, and this time the…
-
Banking groups urge SEC to rescind Biden-era cybersecurity rule
The rule has exposed companies to liability risks while failing to provide investors with;“decision-useful” information, the coalition said in a recent letter. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/banking-groups-urge-sec-rescind-breach-reporting-rule/749928/
-
Odoo Employee Database Allegedly Exposed and Put Up for Sale on Dark Web
A data breach has reportedly struck Odoo, a leading Belgian provider of open-source business management software. On June 5, 2025, a 63.4MB employee database”, allegedly sourced through a “collaborative effort with a senior insider””, was advertised for sale on a dark web forum. The seller is demanding $25,000 in Monero (XMR) or Bitcoin (BTC) for…
-
Interlock ransomware claims Kettering Health breach, leaks stolen data
The Interlock ransomware gang has claimed a recent cyberattack on the Kettering Health healthcare network and leaked data allegedly stolen from breached systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/interlock-ransomware-claims-kettering-health-breach-leaks-stolen-data/
-
IBM Cloud login breaks for second time this week and Big Blue isn’t saying why
To make matters worse, IBM’s security software has a critical vuln caused by an exposed password First seen on theregister.com Jump to article: www.theregister.com/2025/06/05/ibm_cloud_outage_critical_vulnerability/
-
35K Solar Devices Vulnerable to Potential Hijacking
A little more than three-quarters of these exposed devices are located in Europe, followed by Asia, with 17%. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/35k-solar-devices-internet-exposure-hijacking
-
Millions of US patient data exposed by MongoDB misconfiguration
First seen on scworld.com Jump to article: www.scworld.com/brief/millions-of-us-patient-data-exposed-by-mongodb-misconfiguration