Insurance Business Magazine reports: A Texas woman has sued Goosehead Insurance Agency over a data breach that exposed sensitive customer information, alleging the company waited seven months to sound the alarm. Jayda Slaughter filed the proposed class action in federal court on October 24, claiming the national insurance agency’s network was infiltrated in early March […]
Reuters reports: Hackers working for an unnamed nation-state breached networks at Ribbon Communications, a key U.S. telecommunications services company, and remained within the firm’s systems for nearly a year without being detected, a company spokesperson confirmed in a statement on Wednesday. Ribbon Communications, a Texas-based company that provides technology to facilitate voice and data communications […]
The Grand Junction Daily Sentinel reports: On Tuesday morning, Family Health West Hospital in Fruita discovered that it was the target of a cyberattack. While the cyberattack forced the hospital to shut down its electronic systems, a hospital spokesperson said that patient care has not been impacted, nor do they expect it will be. They […]
GGR Asia reports: The operator of the casino resort Marina Bay Sands in Singapore has been fined SGD315,000 (US$243,200) in relation to a data breach that took place in 2023 and involved the personal data of more than 665,000 clients. Singapore’s Personal Data Protection Commission (PDPC) said in an announcement on Tuesday that it had “imposed a […]
The Register reports: Iran’s school for state-sponsored cyberattackers admits it suffered a breach exposing the names and other personal information of its associates and students. The Ravin Academy was established in 2019, ostensibly to train individuals in all facets of cybersecurity and recruit the best to work on Iranian intelligence (MOIS) projects. As part of […]
Vibra Hospital of Sacramento, LLC recently reported a data breach to the California Attorney General’s Office. According to their notification, they became aware of suspicious activity in several employee email accounts on March 13. Their investigation subsequently revealed that six employees’ email accounts had been subject to unauthorized access between March 11 and March 22. […]
Security Week reports: Swedish state-owned power grid operator Svenska kraftnät on Monday confirmed that it fell victim to a cyberattack that resulted in a data breach. The incident, the company said, was discovered on Saturday and affected an isolated, external file transfer solution, but not the power grid. The country’s electricity supply has not been affected […]
The Cyber Security Hub Newsletter reports: British retail giant Marks & Spencer (M&S) has officially ended its long-standing partnership with Indian IT services leader Tata Consultancy Services (TCS) after suffering one of the most damaging cyberattacks in its history. The high-profile breach, which occurred earlier this year, is estimated to have cost the company around […]
Cyber Press reports: Cisco Talos has identified a sophisticated technique employed by the Qilin ransomware group, in which threat actors leverage legitimate Windows utilities, specifically MSPaint and Notepad, to inspect and locate high-sensitivity information across compromised networks manually. […] During the credential access and exfiltration phase, attackers execute a comprehensive credential-harvesting workflow using tools such […]
HackRead reports: Today, the Everest ransomware group published listings for two new victims, Dublin Airport and Air Arabia, on its dark web leak site. This announcement comes just days after the group claimed responsibility for breaching AT&T Careers, alleging the theft of 576,000 records containing personal details of applicants and employees. Like the AT&T listing, both […]
