The Indian Express reports: A cybersecurity researcher has identified critical vulnerabilities in an app developed by sex toy manufacturer Lovense that not only exposed the private email addresses of users but also enabled threat actors to hijack a user’s account on the platform. The anonymous researcher published their findings about the two in-app security flaws […]
The Record reports: Orange, one of France’s largest companies and among the biggest mobile service providers in both Europe and Africa, announced on Monday detecting a cyberattack affecting one of its internal systems. The company — which serves a customer base of more than 290 million people, and has retail, business and enterprise clients — […]
NASCAR has confirmed it was the victim of a data breach after hackers demanded a $4million ransom following a ransomware attack. The racing organization says it suffered the breach between March 31, 2025 and April 3, 2025. Correspondence with multiple state regulators this week (including this example from New Hampshire) confirms the data breach, and says […]
Invezz reports: Federal prosecutors have launched a forfeiture action to claim $2.3 million in Bitcoin allegedly tied to a ransomware actor from the newly identified Chaos group. According to a July 28 press release from the US Attorney’s Office for the Northern District of Texas, the Department of Justice filed a civil complaint seeking the forfeiture of […]
Reuters reports: Russian airline Aeroflot cancelled dozens of flights on Monday after what it called a failure in its information systems, and a shadowy hacking group claimed responsibility for what it said was a crippling cyberattack. The national carrier did not provide further details about the cause of the problem or how long it would take […]
TechCrunch reports: U.S. insurance giant Allianz Life has confirmed to TechCrunch that hackers stole the personal information of the “majority” of its customers, financial professionals, and employees during a mid-July data breach. The company disclosed the data breach on Saturday in a legally required filing with Maine’s attorney general, but did not immediately provide a number of […]
The Record reports: Cleaning product giant Clorox has filed a lawsuit against Cognizant, a company it hired to operate its IT services call-in help desk, accusing the contractor of being directly responsible for a 2023 cyberattack that cost hundreds of millions. The case, filed on Tuesday in California Superior Court, alleges that contractors working for […]
Help Net Security reports that an alleged administrator of xss.is, a dominant Russian-speaking cybercrime forum, was arrested in Kyiv, Ukraine, on 22 July. The takedown followed a long-running investigation led by the French Police and Paris Prosecutor, in close cooperation with Ukrainian authorities and Europol. As Help Net summarizes the allegations: The forum’s administrator is […]
There is an update to a data breach reported in February involving Australia IVF giant Genea. ABC News in Australia now reports: Patients of Australia’s third-largest IVF provider, Genea, have been informed that their sensitive information — including medical history — has been posted on the dark web. The update comes more than five months […]
Bleeping Computer reports: AMEOS Group, an operator of a massive healthcare network in Central Europe, has announced it has suffered a security breach that may have exposed customer, employee, and partner information. The organization published a statement on its website, as required by Article 34 of the General Data Protection Regulation (GDPR), which mandates a […]
