LATEST POST
Stolen LastPass backups enable crypto theft through 2025
Security Affairs reports: The blockchain intelligence firm TRM Labs warns that encrypted vault backups stolen in the 2022 LastPass breach are still being cracked using weak master passwords, enabling crypto theft as late as 2025. In 2022, hackers breached LastPass, stealing encrypted backups of roughly 30 million vaults containing sensitive credentials, including crypto keys. TRM […]
228,876 Americans Warned After Hackers Hit Accounting Firm – Names, Social Security Numbers and More Potentially Exposed
The Daily Hodl reports: Nearly a quarter of a million Americans are being warned that their personal and financial information may have been exposed after hackers breached a US-based financial services firm. According to disclosures made to state regulators, the accounting and advisory firm SAX LLP reported that an unauthorized party gained access to parts of its […]
US shuts down phisherfolk’s $14.6M password-hoarding platform
The Register reports: The US says it has shut down a platform used by cybercriminals to break into Americans’ bank accounts. A law enforcement splash page now appears when trying to reach web3adspanels.org, which supported SEO poisoning campaigns designed to steal people’s bank account credentials. Criminals would pay for prime slots in search engine results, […]
More than 22.6 million Aflac customers impacted by June data breach
There is an update the Aflac breach previously reported on this site. The Record reports: A data breach in June exposed the information of more than 22 million Aflac customers, according to a new statement from the company. The Georgia-based insurance giant published a statement on Friday about the conclusion of a months-long investigation into a cybersecurity […]
FTC Takes Action Against Illusory Systems Over $186 Million Data Breach
By Hunton Andrews Kurth’s Privacy and Cybersecurity Blog: On December 16, 2025, the Federal Trade Commission (“FTC”) announced an enforcement action against Illusory Systems Inc., a Utah-based company doing business as Nomad, following a major data breach in which hackers stole $186 million from consumers. The FTC alleges that Illusory Systems failed to implement adequate data security […]
Pro-Russian hackers claim cyberattack on French postal service
AP reports: A pro-Russian hacking group claimed responsibility for a major cyberattack that halted package deliveries by France’s national postal service just days before Christmas, prosecutors said Wednesday. After the claim by the cybercrime group known as Noname057, French intelligence agency DGSI took over the investigation into the hacking attack, the Paris prosecutor’s office said in a […]
Interpol-led action decrypts 6 ransomware strains, arrests hundreds
Bleeping Computer reports: An Interpol-coordinated initiative called Operation Sentinel led to the arrest of 574 individuals and the recovery of $3 million linked to business email compromise, extortion, and ransomware incidents. Between October 27 and November 27, the investigation, which involved law enforcement in 19 countries, took down more than 6,000 malicious links and decrypted […]
Former Israeli cybercompany employee pleads guilty to extorting millions from US companies
The Jerusalem Post reports: A former employee of the Israeli cybersecurity company Sygnia pleaded guilty to federal offences in the US for being involved in ransomware attacks in an attempt to extort millions of dollars from companies around the US. Ryan Clifford Goldberg, who served as a cyber incident response supervisor at the company, admitted he was part of […]