Iranian Cyber Espionage Group Targets Defense Contractors with Novel Backdoor Malware
Cybersecurity researchers at Microsoft have uncovered a targeted cyber espionage campaign orchestrated by the Iranian nation-state hacking group, APT33 (also known as Peach Sandstorm, HOLMIUM, or Refined Kitten). The campaign focuses on deploying a recently discovered backdoor malware, dubbed “FalseFont,” to compromise individuals working for organizations within the crucial Defense Industrial Base (DIB) sector. The […]
First American Financial Corporation Suffers Cyberattack, Taking Systems Offline
First American Financial Corporation, the second-largest title insurance company in the United States, experienced a cybersecurity incident on December, 21, and responded by taking certain systems offline to contain the potential impact. This move serves as a stark reminder of the ever-present cyber threat within the real estate industry. Responding to the Incident In a […]
VF Corporation hit by ransomware attack and data breach
VF Corporation, one of the world’s largest apparel and footwear companies, has disclosed a security incident that impacted its business operations and compromised its data. The Colorado-based company, which owns 13 globally recognized brands, reported the cyberattack in a Form 8-K filing with the U.S. SEC (Securities and Exchange Commission) on Friday, 18. The apparel […]
INL Data Breach Exposes Personal Information of Over 45,000 People
The Idaho National Laboratory (INL), a leading research center for national security and nuclear energy, has suffered a major data breach that compromised the personal information of more than 45,000 individuals. The INL data breach occurred on November 20, 2023, when hackers accessed the lab’s cloud-based Oracle HCM HR management platform, which stores employee records […]
Toyota Warns Customers of Data Breach Exposing Personal and Financial Information
Toyota Financial Services (TFS) has notified customers of a data breach that exposed their personal and financial information. The incident involved unauthorized access to TFS systems in Europe and Africa, compromising sensitive data such as full name, residence address, contract information, lease-purchase details, and IBAN (International Bank Account Number). According to Toyota, the breach was […]
ALPHV Ransomware Site Outage: Law Enforcement Action Suspected
The ALPHV ransomware gang, also known as BlackCat, has inexplicably disappeared online. Their website, used to communicate with victims and leak stolen data, has been offline for several days, fueling speculation of law enforcement intervention. While no official confirmation exists, security researchers and news outlets like BleepingComputer suspect the outage is a result of action […]
Tipalti Investigates Data Breach Claims by Ransomware Gang
Tipalti, a leading provider of accounting and payment solutions, has confirmed that it is investigating claims by a ransomware group that they breached its network and stole 256 GB of data, including data from some of its high-profile customers. The ransomware group, known as ALPHV, posted a message on its dark web leak site on […]
How Mac Users Can Protect Themselves from Proxy Trojan Malware Attacks
Cybersecurity experts have recently uncovered a new proxy trojan malware campaign targeting Mac users who download pirated software from warez sites. The malware infects the users’ computers and turns them into proxy servers that cybercriminals can use to hide their identity and location while conducting malicious or illegal activities online. What is proxy trojan malware, […]
How a Cyberattack Disrupted Capital Health’s IT Network
Capital Health, a non-profit healthcare system that operates two hospitals and dozens of physician offices across New Jersey, was hit by a cyberattack earlier this week that caused IT outages and disruptions. The cyberattack occurred on Monday and affected the network that connects the Regional Medical Center in Trenton, the Capital Health Medical Center in […]
Dollar Tree Hit by Data Breach Affecting Nearly 2 Million People
Current or former employees of Dollar Tree or Family Dollar may be affected by a data breach that exposed their personal information to hackers. Here’s what to know about the incident and how to protect yourself. What happened? Dollar Tree is a discount retail company that operates the Dollar Tree and Family Dollar stores in […]
Samsung Data Breach Exposes Personal Information of UK Store Customers
Electronics giant Samsung has disclosed a new data breach that has exposed the personal information of some of its UK store customers. The company says that the breach impacted customers who made purchases from the Samsung UK online store between July 1, 2019, and June 30, 2020. The exposed data may include names, phone numbers, […]
The British Library Hit by Rhysida Ransomware Attack
The British Library, the national library of the United Kingdom, has been suffering from a major IT outage since October, when it was targeted by a ransomware attack. The cyberattack has affected the library’s online services, including its website, catalog, digital collections, and email system. According to a statement from the library, the attack was […]
How Boeing’s Data Breach Exposed Its Vulnerability to Ransomware Attacks
Boeing, one of the world’s leading aerospace companies, has suffered a major data breach at the hands of the LockBit ransomware gang. The hackers have published online a sample of the stolen data, which includes sensitive information about Boeing’s commercial airplanes and defense systems. The data leak occurred after Boeing failed to respond to the […]
How a Cyberattack Exposed Customer Data of Mr. Cooper
Mr. Cooper, the largest home loan servicer in the United States, has confirmed that some of its customer data was exposed during a cyberattack on October 31. The data breach has exposed the personal information of some of its customers. The company sent a notice to the affected ones informing them of the incident and […]
OpenAI API and ChatGPT Services Hit by DDoS Attacks
OpenAI, the research organization behind some of the most advanced artificial intelligence models, has been facing “periodic outages” in its API and ChatGPT services due to DDoS attacks. The attacks started yesterday and have been disrupting the availability and performance of the services that allow developers and researchers to access and use OpenAI’s models. DDoS […]
Ransomware Attackers Stole Patient Data from TransForm in Ontario Hospitals
TransForm, a shared service provider that supports five hospitals in Erie St. Clair, Ontario, has released an update on the cyberattack that disrupted its operations in October. The organization confirmed that the incident was a ransomware attack and that the perpetrators exfiltrated a database containing information on 5.6 million patient visits. According to TransForm, the […]
Samsung’s Auto Blocker: A New Way to Protect Galaxy Devices from Malware
Malware is a serious threat to any smartphone user, as it can compromise personal data, drain the battery, and slow down any device. That’s why Samsung has introduced a new security feature called ‘Auto Blocker’ as part of the One UI 6 update, offering enhanced malware protection on Galaxy devices. What is Auto Blocker? Users […]
How 40 Countries Are Fighting Back Against Ransomware Attacks
Ransomware attacks have become a major threat to the security and stability of many organizations and governments around the world. These attacks involve hackers encrypting the data or systems of their victims and demanding a ransom for their release. Data from NCC Group revealed a total of 514 ransomware attacks in September, surpassing March 2023’s […]
European Government Email Servers Hacked Using Roundcube Zero-Day
In October 2023, it was revealed that a group of hackers had exploited a zero-day vulnerability in the Roundcube webmail software to hack into the email servers of several European governments. The hackers were able to gain access to sensitive information, including emails, contacts, and calendars. What to Know About the European Government Email Server […]
University of Michigan Data Breach Affects Students, Alumni, and More
In October, the University of Michigan announced that it had suffered a data breach in August 2023. Unauthorized actors accessed systems containing personal, financial, and medical information belonging to students, applicants, alumni, donors, employees, patients, and research study participants. The university says that the unauthorized access lasted from August 23-27, 2023. University of Michigan Data […]