#cybersecurity-incident

[ follow ]
#data-breach #phishing-attack #companies-house #incident-response #data-security-breach #ransomware
fromKotaku
2 days ago

Gacha Game Distributes Malware, Apologizes With 10 Free Pulls

Umbral Stealer is an infostealer virus that can record keystrokes and take screenshots. In basic terms, it attempts to harvest sensitive information from the machines it infects, as it's primarily geared towards stealing users' passwords and cryptocurrency. The virus was distributed via a patch to Duet Night Abyss' launcher, which went live on Steam at 7:39 am UTC on March 18.
Information security
#data-breach
Information security
fromSecurityWeek
3 weeks ago

Wynn Resorts Confirms Data Breach After Hackers Remove It From Leak Site

Wynn Resorts confirmed hackers stole employee data including SSNs from over 800,000 records, but operations remain unaffected and the company claims the stolen data has been deleted.
Privacy professionals
fromTheregister
3 months ago

Kensington and Chelsea Council confirms data breach

Kensington and Chelsea Council confirmed attackers copied and removed data during a cyber incident, prompting residents to monitor accounts and communications closely.
Privacy professionals
fromSecurityWeek
2 days ago

Security Firm Aura Discloses Data Breach Impacting 900,000 Records

Aura suffered a data breach affecting 900,000 records after a phishing attack compromised an employee account for approximately one hour, exposing names, email addresses, and contact information of roughly 35,000 customers.
Privacy professionals
fromComputerWeekly.com
5 days ago

Companies House restarts online services following cyber breach | Computer Weekly

Companies House restored its WebFiling service after discovering a security flaw that exposed personal data and allowed unauthorized actions to logged-in users with authorization codes.
Privacy professionals
fromSecurityWeek
1 week ago

Starbucks Data Breach Impacts Employees

Starbucks experienced a data breach affecting approximately 900 employees through phishing attacks that compromised Partner Central accounts, exposing names, social security numbers, dates of birth, and financial information.
more#data-breach
fromSecuritymagazine
6 days ago

Targeted Phishing Attack Breaches Biotech Company Data

This phishing attack enabled the threat actor to access 'certain internal IT business applications.' The malicious actor gained unauthorized entry by compromising an employee's access to the organization's internal network for business administration.
Information security
#data-security-breach
fromwww.bbc.com
5 days ago
Privacy professionals

Firms urged to check if other users edited their data on Companies House

Companies House experienced a security vulnerability in its WebFiling system that allowed logged-in users to view and edit other companies' sensitive data, including directors' home addresses and emails, before being resolved within three days.
fromTheregister
5 days ago
Privacy professionals

UK's corporate registry fixes data exposing technical error

Companies House shut down its WebFiling platform for a weekend to fix a security flaw that exposed directors' personal details and allowed unauthorized modifications to company records for any logged-in user.
Privacy professionals
fromwww.bbc.com
5 days ago

Firms urged to check if other users edited their data on Companies House

Companies House experienced a security vulnerability in its WebFiling system that allowed logged-in users to view and edit other companies' sensitive data, including directors' home addresses and emails, before being resolved within three days.
Privacy professionals
fromTheregister
5 days ago

UK's corporate registry fixes data exposing technical error

Companies House shut down its WebFiling platform for a weekend to fix a security flaw that exposed directors' personal details and allowed unauthorized modifications to company records for any logged-in user.
more#data-security-breach
Information security
fromSecurityWeek
1 week ago

Polyfill Supply Chain Attack Impacting 100k Sites Linked to North Korea

The 2024 Polyfill.io supply chain attack affecting over 100,000 websites involved both Chinese and North Korean threat actors, with Funnull serving as a corporate front for the operation.
Information security
fromSecurityWeek
1 week ago

Michelin Confirms Data Breach Linked to Oracle EBS Attack

Michelin confirmed a data breach from the Cl0p ransomware group's Oracle EBS zero-day exploitation campaign affecting over 100 organizations.
fromComputerworld
2 weeks ago

FBI wiretap system tapped by hackers

The FBI identified and addressed suspicious activities on FBI networks, and we have leveraged all technical capabilities to respond.
Information security
Cryptocurrency
fromDataBreaches.Net
3 weeks ago

South Korean Authorities Accidentally Hand Hackers $4.8M in Crypto - DataBreaches.Net

South Korea's National Tax Service exposed a crypto wallet recovery key in a press release photo, enabling hackers to steal $4.8 million from seized assets.
Information security
fromSecurityWeek
3 weeks ago

Medical Device Maker UFP Technologies Hit by Cyberattack

UFP Technologies detected a cybersecurity intrusion on February 14 involving file theft and IT system disruption, with operations continuing despite impacts to billing and delivery label systems.
fromSecurityWeek
3 weeks ago

Ad Tech Company Optimizely Targeted in Cyberattack

The threat actor gained access to Optimizely's systems through a sophisticated voice-phishing attack, but was unable to escalate privileges, install software, or create any backdoors in the Optimizely environment. The incident was confined to certain internal business systems including Zendesk, records in our Salesforce CRM, and a limited set of internal documents used for back-office operations.
Information security
Information security
fromTheregister
5 months ago

SonicWall breach hit every cloud backup customer, not 5%

All customers who used SonicWall's MySonicWall cloud backup service had their firewall configuration backup files accessed in a cybersecurity breach.
#healthcare-data-breach
more#healthcare-data-breach
fromDataBreaches.Net
7 months ago

Pharmaceutical Company Inotiv Confirms Ransomware Attack - DataBreaches.Net

"The company's preliminary investigation determined that a threat actor gained unauthorized access to, and encrypted certain of, the company's systems," Inotiv says.
Information security
Information security
fromDatabreaches
10 months ago

OK: Cyberattack shuts down Bartlesville School network, state testing postponed

A network security incident disrupted Bartlesville Public Schools' systems, leading to canceled state testing and an investigation into the breach.
[ Load more ]