PhileNews reports: Cyprus Airways has warned customers of a potential personal data breach following a phishing attack that gave unauthorised access to passenger information. The airline said in an email to customers that an unauthorised external party recently gained access to a passenger file through credential phishing, though there was no breach of the company’s servers or electronic […]
Insurance Business Magazine reports: British insurers are bracing for an escalating wave of cyberattacks after one of the world’s most notorious hacking groups, Scattered Spider, has pivoted from raiding retailers to targeting insurance and financial services companies on both sides of the Atlantic. Google’s Threat Intelligence Group has issued a fresh warning, saying it had […]
The Register reports: An extortion gang claims to have breached Freedman HealthCare, a data and analytics firm whose customers include state agencies, health providers, and insurance companies, and is threatening to dump tens of thousands of sensitive files early Tuesday morning. According to a claim posted Sunday on the shame site belonging to World Leaks, […]
KTAB/KRBC reports: The Abilene City Council has unanimously approved nearly $1 million in funding to bolster cybersecurity efforts and restore systems after a recent cyberattack knocked out several city servers. Director of Information Technology Troy Swanson addressed the council Thursday, outlining the costs and detailing the recovery process. He said the investment is aimed at […]
Jeremiah Fowler, discovered and reported to Website Planet about an unencrypted and non-password-protected database that contained 170,360 records with a total size of 116.24GB. Fowler reports: Fowler reports that although the data appear to belong to Income Property Investments Inc., he could not determine whether they are responsible for the data storage misconfiguration or if a vendor […]
The Wall Street Journal reports: A cyberattack on the Washington Post compromised email accounts of several journalists and was potentially the work of a foreign government, company officials told some affected staffers in recent days, according to people familiar with the situation. Staffers were told the intrusions compromised journalists’ Microsoft accounts and could have granted the intruder […]
YES24 is a South Korean booking and entertainment ticketing service. A ransomware attack on June 9 had impact on its services, as Chosun.Biz reports: Access to the website was completely halted, along with order histories and shipping. As a result, the entertainment industry also faced repercussions, with B.I postponing his fan meeting’s pre-sale schedule, and […]
On June 13, WestJet posted a notice about a cybersecurity incident. They updated it on Saturday: WestJet is aware of a cybersecurity incident involving internal systems and the WestJet app, which has restricted access for several users. We have activated specialized internal teams in cooperation with law enforcement and Transport Canada to investigate the matter […]
The Record reports: Ransomware gangs have been exploiting a vulnerability in remote device control software SimpleHelp during a recent string of attacks, according to federal cybersecurity officials. The Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that CVE-2024-57727 — a vulnerability affecting SimpleHelp’s widely-used remote access tools — was exploited to “compromise customers of […]
BankInfoSecurity reports: A data-leak extortion group is shaking down the government of Paraguay for a ransom payment worth $7.4 million, or $1 for every one of the country’s citizens. The group, calling itself Brigada Cyber PMC, claimed in a Sunday post to its dark web leak site that it stole personally identifiable information on citizens […]
