LATEST POST
Germany: Compensation for Facebook data breach victims
DW reports that Germany’s Federal Court of Justice (BGH), which is Germany’s highest civil court, has ruled that victims of a Facebook data breach could be entitled to compensation: The court in the southwestern city of Karlsruhe, Germany’s highest court for civil cases, said that the basic loss of control over data online was grounds for […]
Hackers are exploiting Microsoft 365 to send extortion emails
PCWorld reports that in the past week, a number of people have started receiving extortion demands that were sent via emails from the Microsoft 365 Message Center. These emails are demanding users to pay $2,000 worth of cryptocurrency to a specific address, under the threat of stealth nude webcam photos of them being leaked to […]
Five Eyes infosec agencies list 2024’s most exploited software flaws
The cyber security agencies of the UK, US, Canada, Australia, and New Zealand have issued their annual list of the 15 most exploited vulnerabilities. The Register reports: The top two spots on the list go to Citrix, which topped the chart with a remote code execution bug in versions 12 and 13 of NetScaler ADC and Gateway. […]
Bitfinex Hacker Sentenced in Money Laundering Conspiracy Involving Billions in Stolen Cryptocurrency (Updated)
Ilya Lichtenstein was sentenced today to five years in prison for his involvement in a money laundering conspiracy arising from the hack and theft of approximately 120,000 bitcoin from Bitfinex, a global cryptocurrency exchange. His sentencing was announced by the U.S. Department of Justice. According to court documents, Lichtenstein, 35, hacked into Bitfinex’s network in […]
Form I-9 Compliance updates its breach report once again; number affected keeps climbing
Employee eligibility verification solutions provider Form I-9 Compliance suffered a data breach on February 5, 2024. Its impact is way, waaaaay bigger than initially reported. Security Week reports: In late May, the company started informing customers that someone had gained unauthorized access to its network in early February. The intrusion was detected on April 12 […]
Amazon confirms employee data compromised amid 2023 MOVEit breach; dozens of other companies also affected
The MOVEit breach was one of the biggest breaches of 2023. Cl0p threat actors exploited vulnerabilities in the file transfer software and exfiltrated massive amounts of data from entities in all sectors. Now data from Amazon and almost three dozen other MOVEit victim entities is being leaked on BreachForums by a forum user calling themself […]
Halliburton reports cyberattack already cost it $35 million
The suspected ransomware attack Halliburton experienced in August had already cost it $35 million by the end of September, the oilfield service giant disclosed. Security Week reports: The incident came to light on August 22, when Halliburton, one of the world’s largest oilfield service providers, confirmed unauthorized access to some of its systems. The company immediately launched […]
Veterans Day 2024
Thank you to all those who have served our country. May today be a day where you feel appreciated for your sacrifices and for the rest of us to remember what you did and honor you.