Malware Ransomware, Data Breach News, News
April 27, 2025
11 views 9 secs 0

DragonForce expands ransomware model with white-label branding scheme

Bleeping Computer reports: The ransomware scene is re-organizing, with one gang known as DragonForce working to gather other operations under a cartel-like structure. DragonForce is now incentivizing ransomware actors with a distributed affiliate branding model, providing other ransomware-as-a-service (RaaS) operations a means to carry out their business without dealing with infrastructure maintenance cost and effort. […]

Commentaries and Analyses, Data Breach News, News
April 27, 2025
10 views 59 secs 0

FBI IC3, Verizon DBIR, Google M-Trends reports are out—here are key takeaways

Risky Biz News reports: There are a handful of seminal reports in the cybersecurity industry, and lo and behold, three of them were released on Wednesday. Mandiant’s team, now part of Google Cloud, released M-Trends, Verizon released its Data Breach Investigations Report (aka DBIR), and the FBI Internet Crime Complaint Center (IC3) released its yearly Internet Crime Report [PDF]. […]

Data Breach News
April 26, 2025
18 views 38 secs 0

Hackers release millions of files after Oregon DEQ cyberattack

Oregon Public Broadcasting reports: A ransomware group has released over a million files that the group says it stole from the Oregon Department of Environmental Quality. The files appear to include sensitive information about DEQ employees. It’s not clear if private vehicle registration data or other information related to Oregonians who don’t work at DEQ […]

Cyberattack, Data Breach News
April 26, 2025
11 views 57 secs 0

Army Nursing College Website Hacked By Pakistan-Based Hackers, Defaced With Pahalgam Attack Graphics

Jagran reports: The Army College of Nursing website has been allegedly hacked by a Pakistan-based hacker group called Team Insane PK, days after the Pahalgam terror attack in Jammu and Kashmir. The hacker attack took place two days after India announced five strict measures against Pakistan including the suspension of the Indus Waters Treaty and declaring […]

Data Breach News, News
April 25, 2025
25 views 14 secs 0

Yale New Haven Health Notifying 5.5 Million of March Hack

BankInfoSecurity reports: Connecticut-based Yale New Haven Health System is notifying more than 5.5 million patients that their personal information, including Social Security numbers, could have been stolen in a March hack. The incident, which is among several other recent major health data hacks, ranks as the largest health data breach reported to federal regulator so […]

Data Breach News, Insurance News
April 24, 2025
26 views 14 secs 0

Blue Shield of California shared the private health data of 4.7 million people with Google for years

Blue Shield of California joined the ranks of entities that discovered they were unlawfully sending personal or protected health information of website visitors to advertisers via tracking pixels embedded on their sites. TechCrunch reports: Health insurance giant Blue Shield of California is notifying millions of people of a data breach. The company confirmed on Wednesday […]

Data Breach News
April 23, 2025
31 views 57 secs 0

Cyberattack Knocks Texas City’s Systems Offline

Security Week reports that The city of Abilene, Texas, has been working on restoring systems that were taken offline to contain a cyberattack: The assault started on April 18, when some of the systems in the city’s internal network were reported as unresponsive, and prompted the immediate activation of the incident response plan. To secure […]

Data Breach News, News, Vendor News, Vulnerabilities
April 19, 2025
45 views 2 mins 0

100,000 Americans Exposed As Hertz Warns Customers’ Names, Contact Details, Credit Card Information, Social Security Numbers Leaked in Vendor’s Data Breach

The Daily Hodl reports: A car rental giant says sensitive customer data has been exposed in a cybersecurity incident involving one of its vendors. In a notice posted on its website, Hertz says that its vendor, Cleo Communications US, witnessed a zero-day vulnerability exploit late last year that enabled thieves to siphon customer data. Notifications on various […]